Senior Analyst - Third-Party Assessments of Visa
- Foster City, CA, USA
Visa Inc. is a global payments technology company that connects consumers, businesses, financial institutions and governments in more than 200 countries and territories, enabling them to use digital currency instead of cash and checks.
Visa does not issue cards, extend credit or set rates and fees for consumers. Visa’s innovations enable its bank customers to offer consumers choices: Pay now with debit, ahead of time with prepaid or later with credit products. From the world’s major cities to remote areas without banks, people are increasingly relying on digital currency along with mobile technology to use their money anytime, make purchases online, transfer funds and access basic financial services. All of which makes their lives easier and helps grow economies.
Behind the Visa brand are our talented employees who continuously raise the bar with innovative solutions and products that deliver the convenience and security of digital currency to more people all over the world.
Visa is seeking a proactive, experienced professional that will work with internal and external stakeholders to evaluate technology risks and controls. In addition, collaborate with relevant stakeholders to identify mitigating and compensating controls, and/or advise on control areas needing improvement. Specifically, the candidate will be assisting in the execution of numerous technology-related examinations (e.g. SSAE18, PCI DSS, SOC2, WebTrust, PCI PIN, etc.) within the Third-Party Assessment of Visa team. This program spans multiple geographies and competency areas within the technology risk domain for which its results are visible to Visa’s management as well as Visa’s external clients & their auditors, partners and regulators.
The candidate must have a good understanding of the methodology in the mentioned third-party assessments, technology risks, audit and controls, be able to provide practical, client-focused solutions, and effectively partner and communicate with numerous cross-functional personnel. Key responsibilities include:
Support in the execution of Third-Party Assessments (e.g. SSAE18, PCI DSS, SOC2, WebTrust, PCI PIN, etc.) of Visa from start to completion
Apply IT controls and auditing skills/experience when needed in order to collaborate with the third-party assessors/auditors and address Visa personnel’s overall questions and needed clarifications
Provide periodic reporting and/or ad hoc support to the team as needed
4+ years of experience in evaluating IT technical risks, controls and auditing, preferably with Big 4 CPA firm or large, highly-regulated company (e.g. financial institution, healthcare, etc.) or consulting firm required
Bachelor's Degree in Management Information Systems, Accounting, Computer Science, or related field required
Professional certifications: CISA, CIA, CISSP, PMP and/or CPA preferred
Solid understanding of IT domains and processes - cybersecurity (e.g. access management, data security, etc.), availability (e.g. incident and change management, capacity management), and business continuity risks and controls
Prior experience with security and privacy regulations and industry standards (e.g. SSAE18/SOC1, SOC2, PCI-DSS, GLBA, WebTrust, PCI-PIN, etc.)
Prior experience in assisting with IT Audits and/or IT Projects with the ability to prioritize deliverables and projects to meet timelines efficiently and adapt to changes in priorities quickly
Strong verbal and written communication skills, attention to detail and interpersonal skills
Ability to work independently with strong time management and ability to execute on multiple concurrent deliverables
All your information will be kept confidential according to EEO guidelines.
“This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers, reach with hands and arms, and bend or lift up to 25 pounds.”