As the world's leader in digital payments technology, Visa's mission is to connect the world through the most creative, reliable and secure payment network - enabling individuals, businesses, and economies to thrive. Our advanced global processing network, VisaNet, provides secure and reliable payments around the world, and is capable of handling more than 65,000 transaction messages a second. The company's dedication to innovation drives the rapid growth of connected commerce on any device, and fuels the dream of a cashless future for everyone, everywhere. As the world moves from analog to digital, Visa is applying our brand, products, people, network and scale to reshape the future of commerce.

At Visa, your individuality fits right in. Working here gives you an opportunity to impact the world, invest in your career growth, and be part of an inclusive and diverse workplace. We are a global team of disruptors, trailblazers, innovators and risk-takers who are helping drive economic growth in even the most remote parts of the world, creatively moving the industry forward, and doing meaningful work that brings financial literacy and digital commerce to millions of unbanked and underserved consumers.

You're an Individual. We're the team for you. Together, let's transform the way the world pays.

Visa is seeking a proactive, experienced professional that will work with internal and external stakeholders to evaluate technology risks and controls. Partner with relevant stakeholders to identify mitigating and compensating controls, and/or advise on control areas needing improvement. This position will be an integral member of the team leading in the execution of numerous technology-related examinations (e.g. SSAE18, PCI DSS, SOC2, WebTrust, PCI PIN, etc.) within the Visa External Assessments team. This program spans multiple geographies and competency areas within the technology risk domain for which its results are visible to Visa’s management as well as Visa’s external clients & their auditors, partners and regulators.

The candidate must have a good understanding of the methodology in the mentioned third-party assessments, technology risks, audit and controls, be able to provide practical, client-focused solutions, and effectively partner and communicate with numerous cross-functional personnel. This position will report to the Senior Director of Regulatory & Risk Governance and will be based at Visa’s office located in Foster City, California.

 Key responsibilities include:

•         Manage the execution of Third-Party Assessments (e.g. SSAE18, PCI DSS, SOC2, WebTrust, PCI PIN, etc.) of Visa from start to completion

•         Apply IT controls and auditing skills/experience when needed in order to collaborate with the third-party assessors/auditors and address Visa personnel’s overall questions and needed clarifications

•         Support senior management in periodic reporting and/or ad hoc support to the team as needed

•         Manage additional projects and initiatives as assigned

Basic Qualifications

•         4+ years of experience in evaluating IT technical risks, controls and auditing, preferably with Big 4 CPA firm or large, highly-regulated company (e.g. financial institution, healthcare, etc.) or consulting firm required.  Relevant audit experience assessing internal controls, providing assurance and maintaining security compliance. 

•         Bachelor's Degree in Management Information Systems, Accounting, Computer Science, or related field required

Preferred Qualifications

•         Experience in Technology, Cybersecurity, Internal Control Function preferred

•         Professional certifications: CISA, CIA, CISSP, PMP and/or CPA preferred

•         Prior experience with security and privacy regulations and industry standards (e.g. SSAE18/SOC1, SOC2, PCI-DSS, GLBA, WebTrust, PCI-PIN, etc.)

•         Solid understanding of IT domains and processes - cybersecurity (e.g. access management, data security, etc.), availability (e.g. incident and change management, capacity management), and business continuity risks and controls

•         Prior experience leading IT Audits and/or IT Projects with the ability to prioritize deliverables and projects to meet timelines efficiently and adapt to changes in priorities quickly

Desired Attributes

•         Organized and structured in thinking and approach to work

•         Excellent verbal and written communication skills, attention to detail and interpersonal skills

•         Ability to work independently with strong time management and ability to execute on multiple concurrent deliverables

•         Works well with people of varying backgrounds, expertise levels and personalities, and builds partnerships

•         Exercises good judgment: knows when/whom to ask for guidance, and when to make independent decisions

Mature working knowledge of Microsoft Office products (Outlook, Word, Excel,Power Point)

Work Hours:

• Varies upon the needs of the department

Travel Requirements:

• This position requires travel 5-10% of the time.

Mental/Physical Requirements:

• This position will be performed in an office setting.  The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers, reach with hands and arms, and bend or lift up to 25 pounds.

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of Article 49 of the San Francisco Police Code.

Visa is an EEO Employer.  Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.  Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

I'm interested