Principal, Incident Response Engineer; Red Team

Position Summary

The Red Team's Mission is to:
Inform Walmart by demonstrating attack paths that are assumed unviable. Contribute to measurement of Walmart’s defensive capability by demonstrating likely attacks.

To deliver on this mission, we execute a variety of campaigns each year. To support these campaigns we focus on infrastructure, research and development, training and education.

Plan to leverage your expertise with scripting, development, attack infrastructure, social engineering and offensive security tooling to execute simulated attacks against Walmart's networks and subsidiaries spanning the globe.

• Execute a variety of campaigns (full-scale, assume breach, transparent / collaborative)
• Develop, curate, and leverage offensive security tooling
• Manage and configure campaign infrastructure
• Research and develop attacks on vulnerable systems and defensive tooling (e.g. Anti Virus, EDR, XDR)
• Provide ongoing consulting to defense teams as they design and implement responses to campaign findings

About Walmart Global Tech

At Walmart, we believe it is essential to keep innovating while safeguarding our data. Our team ensures that Walmart maintains a secure operating environment and the trust of our customers, associates, and stakeholders. We bring together a variety of services and capabilities to help prevent fraud, detect threats, and manage digital risk and access. In addition to mitigating attack risks and securing cloud transformation, we foster in our team members a secure and reliable working ethics.

At Walmart, we prioritize innovation and data security. Our team is dedicated to maintaining a secure operating environment and preserving the trust of our customers, associates, and stakeholders. We combine a range of services and expertise to prevent fraud, detect threats, and manage digital risk and access. Our focus is on mitigating attack risks, securing cloud transformation, and fostering a culture of security and reliability within our team.

What you’ll do:

• Execute a variety of campaigns (full-scale, assume breach, transparent / collaborative)
• Develop, curate, and leverage offensive security tooling
• Manage and configure campaign infrastructure
• Research and develop attacks on vulnerable systems and defensive tooling (e.g. Anti Virus, EDR, XDR)
• Provide ongoing consulting to defense teams as they design and implement responses to campaign findings

Outlined below are the required minimum qualifications for this position. If none are listed, there are no minimum qualifications.

• Option 1:
  Bachelor’s degree in computer science, information technology, engineering, information systems, cybersecurity, or related area and 5 years’ experience in incident response or related area at a technology, retail, or data-driven company.
• Option 2: 7 years’ experience in incident response or related area at a technology, retail, or data-driven company.

Outlined below are the optional preferred qualifications for this position. If none are listed, there are no preferred qualifications.

• Certifications in Security+, Network+, GISF, GSEC, CISSP, CCSP, or GCIH
• Master’s degree in Computer Science, Information Technology, Engineering, Information Systems, Cybersecurity, or related area
• 3 years’ experience leading/working on Information Security / Cyber Security projects
• Knowledge of accessibility best practices and WCAG 2.2 AA standards, assistive technologies, and integrating digital accessibility into products and services

Primary

Location:

2245 Monroe St, Herndon, VA 20171, United States of America

Walmart and its subsidiaries are committed to maintaining a drug-free workplace and has a no tolerance policy regarding the use of illegal drugs and alcohol on the job. This policy applies to all employees and aims to create a safe and productive work environment.