Senior Cloud and Software Development Security Engineer - Walker & Dunlop

Department:

We are Walker & Dunlop. We are one of the largest providers of capital to the commercial real estate industry, enabling real estate owners and operators to bring their visions of communities — where people live, work, shop, and play — to life. We are committed to creating meaningful social, environmental, and economic change in our communities.

Department Overview

WDTech is W&D’s in-house technology team – a group of collaborative and highly skilled technology professionals, all of whom are leading experts in real estate data, data science, and technology.

WDTech Information Security protects W&D's information assets by way of a comprehensive policy framework that oversees and operates cybersecurity countermeasures and technology risk controls.

The Impact You Will Have

As a Senior Cloud and Software Development Security Engineer, you will play a critical role in securing the company’s cloud and application environments, including AWS, Azure, Kubernetes, and CI/CD pipelines. You will design and implement security architectures, embed “security as code” practices, and guide developers on secure design patterns. Acting as an escalation point for complex security events, you will mentor teammates, advance security program maturity, and stay ahead of emerging threats. Your work will directly protect company assets, ensure compliance, and foster a culture of security by design.

Primary Responsibilities

Lead and manage security projects.

Assess, design, and document security solutions and processes for Amazon Web Service (AWS) and Azure.

Direct tasks and develop milestones for Information Security projects in support of Information Security goals in line with the Company's direction.

Work with software developers on secure best practices in Infrastructure as Code, cloud design patterns and CI/CD with built-in application security controls.

Work with key areas of business and IT to develop baseline network, cloud, container, and application security standards and integrate into the CI/CD pipeline.

Implement and automate “security as code” using cloud services and CI/CD components as necessary.

Design security architecture, methods, and controls required to meet security, compliance, and audit requirements.

Develop, review, and update a library of technical documentation.

Develop metrics and provide regular reports to senior management.

Set requirements and direct managed security service providers (MSSPs) to ensure that they are appropriately managing the services to provide security to the company.

Perform regular security audits and automated compliance checks on AWS and Azure resources.

Collaborate with SRE and development teams to ensure secure coding, build, and deployment practices.

Work closely with DevOps, SREs, and developers to