W

STAFF, SOFTWARE ENGINEER, INFORMATION SECURITY

Walmart Global Tech India · Bengaluru, Karnataka, India

~₹50L (est.)10–18 yrs experienceRemotefull_timePosted 2w ago
Apply now →

Job description

**About The Team** The Information Security team has the critical responsibility of ensuring that customers and associates can securely and seamlessly access Walmart systems. Within this organization, the Identity and Access Management (IAM) team builds and operates the authentication, authorization, and federation platforms that power secure access across enterprise and customer-facing applications. The Single Sign-On (SSO) Engineering team is responsible for designing, building, and operating highly scalable identity platforms that provide secure, resilient, and intelligent authentication experiences across web, mobile, APIs, workforce, and partner ecosystems. As identity threats evolve, we are increasingly leveraging Agentic AI and intelligent automation to enhance authentication decisions, detect anomalous access patterns, and dynamically enforce policies in real time. We are looking for a Staff Engineer who is passionate about building secure, high-availability authentication systems at enterprise scale — and who can help shape the next generation of AI-enabled identity platforms. What You’ll Do Lead the secure design and development of scalable SSO and federation platforms, partnering closely with IAM, application, platform, and security engineering teams. Architect and implement authentication and identity solutions using standards such as OAuth 2.0, OpenID Connect (OIDC), SAML 2.0, SCIM, and LDAP/AD. "Design and build high-performance authentication services using Java, Go, Python, and modern frontend technologies, integrating with REST APIs and identity stores. Develop and enhance identity lifecycle flows including login, MFA, adaptive authentication, token issuance/validation, session management, and secure logout. Drive modernization initiatives such as Zero Trust authentication, password less authentication (FIDO2/WebAuth), and device trust integration. Design and implement AI-driven adaptive authentication mechanisms that leverage behavioral signals, contextual risk scoring, and anomaly detection. Partner with data science and security teams to build Agentic AI capabilities that: Dynamically adjust access policies based on risk posture Detect credential abuse or session hijacking in real time Recommend or autonomously enforce remediation actions (step-up MFA, token revocation, session termination) Continuously learn from telemetry and endpoint signals Architect secure telemetry pipelines to support AI-based identity intelligence while maintaining privacy and compliance. Own the end-to-end lifecycle of SSO services including deployment, reliability, monitoring, observability, and operational excellence. Establish best practices around secure token handling, key management, certificate rotation, signing/encryption strategies, and secure communications. Mentor engineers and influence architecture decisions to ensure secure-by-design identity implementations across teams. What You’ll bring 10+ years of experience designing, building, and operating highly scalable, distributed authentication or identity platforms. Deep hands-on expertise in Java, Go, or Python, with strong backend system design fundamentals. Proven experience implementing and scaling SSO and federation technologies, including: OAuth 2.0 OpenID Connect (OIDC) SAML 2.0 SCIM LDAP / Active Directory Strong understanding of authentication flows (Authorization Code + PKCE, Client Credentials, Device Code, Token Exchange). Experience implementing and securing:JWT and opaque tokens Token introspection and revocation Secure session management Hands-on experience with MFA, adaptive authentication, risk-based authentication, and password less authentication (FIDO2/WebAuth). Experience working with Identity Providers (e.g., Azure AD, Okta, Ping, custom IdPs). Strong understanding of identity threat detection and response, including session risk, credential abuse detection, and policy enforcement. Exposure to AI/ML-driven security systems, such as:Behavioral analytics Risk scoring models Anomaly detection systems Automated response orchestration Interest or experience in building Agentic AI systems capable of:Autonomous policy evaluation and enforcement Security signal aggregation and contextual reasoning Continuous feedback loops for improving authentication decisions Strong knowledge of cryptography fundamentals, PKI, key lifecycle management, and secure token signing (RSA/ECDSA). Experience building cloud-native identity systems in Azure or GCP, using Docker and Kubernetes. Strong Linux fundamentals and troubleshooting skills. Proven ability to influence cross-functional teams and drive enterprise-wide IAM standards. Excellent communication skills, with the ability to translate complex authentication, AI, and risk concepts into clear business and engineering guidance. Security certifications such as CISSP, CSSLP, GIAC, or Cloud Security certifications are a plus. **About Walmart Global Tech** Imagine working in an environment where one line of code can make life easier for hundreds of millions of people. That’s what we do at Walmart Global Tech. We’re a team of software engineers, data scientists, cybersecurity expert's and service professionals within the world’s leading retailer who make an epic impact and are at the forefront of the next retail disruption. People are why we innovate, and people power our innovations. We are people-led and tech-empowered. We train our team in the skillsets of the future and bring in experts like you to help us grow. We have roles for those chasing their first opportunity as well as those looking for the opportunity that will define their career. Here, you can kickstart a great career in tech,