As the world's leader in digital payments technology, Visa's mission is to connect the world through the most creative, reliable and secure payment network - enabling individuals, businesses, and economies to thrive. Our advanced global processing network, VisaNet, provides secure and reliable payments around the world, and is capable of handling more than 65,000 transaction messages a second. The company's dedication to innovation drives the rapid growth of connected commerce on any device, and fuels the dream of a cashless future for everyone, everywhere. As the world moves from analog to digital, Visa is applying our brand, products, people, network and scale to reshape the future of commerce.

At Visa, your individuality fits right in. Working here gives you an opportunity to impact the world, invest in your career growth, and be part of an inclusive and diverse workplace. We are a global team of disruptors, trailblazers, innovators and risk-takers who are helping drive economic growth in even the most remote parts of the world, creatively moving the industry forward, and doing meaningful work that brings financial literacy and digital commerce to millions of unbanked and underserved consumers.

You're an Individual. We're the team for you. Together, let's transform the way the world pays.

The successful candidate will be responsible for providing cyber incident response subject matter expertise while collaborating on numerous security projects and operational improvement initiatives. This position will support the operational activities of Jr. level cyber analysts while helping to develop the team’s investigative skillset. process and playbooks.  The successful candidate with champion incident response services enrollment requirements to ensure progressive operational effectiveness and alert fidelity. In addition, this position will be responsible for continuously identifying gaps and manage the improvements in security response process, technologies, and monitoring. Working closely with internal architecture, engineering and project management teams, the successful candidate will ensure cyber-defense requirements are identified and communicated early in the project life-cycle.

Key Responsibilities

• Support cyber incident response actions to ensure proper assessment, containment, mitigation and documentation

• Support cyber investigations and contribution to large and small scale computer security breaches

• Review and analyze cyber threats and provide SME support and training to junior level security analysts

• Interact and assist other investigative teams within Visa on time sensitive, critical investigations

• Participate as part of a close team of technical specialists on coordinated responses and subsequent remediation of security incidents

• Manage the security monitoring enrollment process to ensure adequate coverage and effectiveness of all new and existing cloud and premise based applications, services and platforms

• Maintain detailed tracking plan of all internal/external enrollment outcomes/recommendations and provide support through to implementation

• Act as a liaison between cyber-defense, engineering, security architecture, network & system operations, and functional project teams to ensure effective project implementation that meets incident response requirements

• Work with colleagues in other technology departments as well as the business and product offices to establish effective, productive business relationships

• Define baseline security monitoring requirements for all new projects, services and applications joining the Visa network

• Facilitate the development and tuning of SIEM rules to support enrollments and ensure high fidelity alerting

• Experience in security, network or cyber engineering operations
• Experience in cybersecurity or computer network defense
• Bachelor's degree in computer science, information systems, or a related technical discipline or equivalent professional experience directly related to information security, cyber, or computer network defense
• Relevant Security related certifications a plus: CISSP, GCIA, GSEC, GCIH, GCED, GCFA, GREM
• Proven subject matter expertise in relevant areas, such as incident response, intrusion analysis, incident handling, malware analysis or security engineering
• Strong knowledge of malware families and network attack vectors
• Strong knowledge of Linux, Windows system internals
• Strong knowledge of web applications and APIs
• Strong Python scripting skills
• YARA, RegEx experience required
• Demonstrated experience in an enterprise-level incident response team or security operations center. Direct experience handling advanced cyber security incidents and associated incident response toolset
• Strong working knowledge of common security tools, such as a SIEM, AV, scanners, proxies, WAF, netflow, IDS or forensics tools
• Advanced technical knowledge associated with various operating systems, network services and applications. A keen understanding of logging components and capabilities
• Strong interpersonal and leadership skills to influence and build credibility as a peer
• Possess a demonstrated sense of urgency with the ability to perform well under significant enterprise-wide pressure
• Excellent communication and presentation skills with demonstrated skill in presenting analytical data effectively to varied (including executive) audiences
• Knowledge of the Visa business and core systems to ensure integrated approach to the enrollment process a plus