Security jobs in United States

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

The role will work as a member of the Global Cybersecurity organisation - Security Architecture team, which is focused on improving technology and architecture decision-making through collaboration with management, staff and customers on technology strategy, enterprise architecture, and investments in strategic security technology.

The individual will deliver security assessments while supporting our direction, lifecycle management and leadership for security architecture and technology. The individual will perform a key role in security assessments while supporting various critical initiatives through the identification, analysis, evaluation, lifecycle management and adoption of security architectures and technologies. The Security Architect will work closely with other security functions and will provide guidance to ensure that there is coordination with their activities in technology choices. In addition, the Security Architect will be involved with education and mentorship, supporting the delivery framework, development of technical architecture and associated documentation, as well as advanced topics of research.

Essential Functions:

1. Be a product security champion by driving Security Architecture and Design, implementation and optimization for Web, API and Mobile backend applications across Visa.
2. Applying security design principles to develop security solutions architectures.
3. Engage in the initial requirements definition including analysis of threats and risks and alignment with Visa security, Engineering, IT and Architecture standards.
4. Conduct and facilitate security reviews, threat modelling including deep design reviews throughout the development lifecycle.
5. Facilitate 'table-top'/red-team/scenario analysis exercises in conjunction with other SMEs. Plan the resolution of any identified vulnerabilities/issues.
6. Enable/build security controls which protect the applications from attacks on various platforms and technologies, like Linux, Windows, VMWare, Openstack, SDN, Public cloud like AWS, Google.
7. Utilize cybersecurity tools like IDS, SIEM, Tripwire, Tanium, Netwitness, Netflow, WAF.
8. Work with HSMs, Tokenization systems, data encryption solutions from Safenet, Vormetric etc.
9. Implement caching services like Hazelcast, Coherence, and messaging systems like Kafka, MQ.
10. Manage Web Access Management solutions like Forgerock, Siteminder, Custom/in-house Security Frameworks.
11. Help business and product teams achieve various compliance certifications like PCI, FFIEC etc.
12. Identify and analyse system and application level vulnerabilities to provide recommended counter measures or mitigating controls.
13. Drive security technologies evaluations, proof-of-concepts, and production pilots.
14. Build strong cross-organizational relationships through integration with the teams to effectively influence staff across the IT organisation and product groups.
15. Manage the lifecycle of security technologies.
16. Stay current with security technologies, as well as development techniques and methodologies to make recommendations for use based on business value.
17. Maintain oversight of the design and implementation of IT systems to ensure appropriate and effective security controls are included.
18. Contribute to the definition of overall IT architecture from a cybersecurity lens.

This is a hybrid position. Hybrid employees can alternate time between both remote and office. Employees in hybrid roles are expected to work from the office 2-3 set days a week (determined by leadership/site), with a general guidepost of being in the office 50% or more of the time based on business needs.

Basic Qualifications:
• 2+ years of relevant work experience and a Bachelor’s degree, OR 5+ years of relevant work experience

Preferred Qualifications:
• 3 or more years of work experience with a Bachelor’s Degree or more than 2 years of work experience with an Advanced Degree (e.g. Masters, MBA, JD, MD)
• Significant Cybersecurity, Architecture and Design experience in Networks, Data Centre Systems, and Cloud Infrastructure and Platforms (IaaS security, PaaS security)
• Strong experience in threat-modelling of complex systems
• Comprehensive Cybersecurity consulting and security assessment experience in a relevant industry
• Experience in delivering comprehensive architecture specifications for complex security solutions
• Experience with creating or contributing to technical documentation: product documentation, technology and systems/network architecture, and or technical whitepapers.
• Strong working experience with the following security technologies: Firewalls, Intrusion Detection/Prevention Systems, Vulnerability Scanning, WAF, Wireless LAN, NAC, DLP, DDoS Mitigation, WAN security, SIEM, Content Filtering, Cloud Security gateways, Secure Proxies, SSL crypto solutions
• Experience with open source based security technologies
• Strong knowledge and working experience with SDN (Software-Defined Networking), NFV (Network Function Virtualization), and network virtualization/overlays
• Strong hands on cloud architecture, with knowledge and working experience in: OpenStack, Cloud Foundry, Server Virtualization hypervisors (KVM, Xen, Hyper-V, VSphere), Linux Containers technologies (Docker, Mesos, Kubernetes), and distributed computing
• Programming/coding and DevOps experience is a plus (Python, Ansible, Chef)
• Solid understanding of and ability to speak authoritatively to security principles in areas such as network, systems, virtualization, cloud technologies, access control.
• Proven ability to troubleshoot and resolve complex technical issues at Expert level
• Experience integrating multiple vendor products
• Preferred certifications include: CISSP, OpenStack Certification, TOGAF, SABSA
• Hands-on experience and strong understanding of technology and enterprise security
• Strong understanding of relevant Industry Principles, Best Practices, and Standards, such as PCI, NIST, ISO, IEEE, and TCG
• Experience working in a global organisation with the need to deliver regional requirements
• Strong cross-domain and cross-functional knowledge that will enable design of the best possible security technology solutions.
• Has solid understanding of the SSDLC process and follows the process to effectively develop and design solutions.
• Skilled to liaise with and influence multiple stakeholders in a matrix environment
• Ability to function as an individual contributor and mentor/leader detached from the corporate environment

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.