As the world's leader in digital payments technology, Visa's mission is to connect the world through the most creative, reliable and secure payment network - enabling individuals, businesses, and economies to thrive. Our advanced global processing network, VisaNet, provides secure and reliable payments around the world, and is capable of handling more than 65,000 transaction messages a second. The company's dedication to innovation drives the rapid growth of connected commerce on any device, and fuels the dream of a cashless future for everyone, everywhere. As the world moves from analog to digital, Visa is applying our brand, products, people, network and scale to reshape the future of commerce.

At Visa, your individuality fits right in. Working here gives you an opportunity to impact the world, invest in your career growth, and be part of an inclusive and diverse workplace. We are a global team of disruptors, trailblazers, innovators and risk-takers who are helping drive economic growth in even the most remote parts of the world, creatively moving the industry forward, and doing meaningful work that brings financial literacy and digital commerce to millions of unbanked and underserved consumers.

You're an Individual. We're the team for you. Together, let's transform the way the world pays.

Cyber Security is an integral part of Visa’s corporate culture. It is important to maintaining our position as an industry leader in electronic payments. At Visa, we believe that it is the responsibility of every employee to safeguard information, protect it from unauthorized access, and ensure regulatory compliance. Cyber Security has a significant effect on privacy, consumer confidence, external reputation, and it is a priority on everyone’s agenda.

In this critical leadership role, you will take a lead role in the continued innovation of Visa’s Cyber Security strategy and drive Visa’s competitive advantage in payments by facilitating a best-in-class security infrastructure. You will be responsible for leading a premier engineering team that develops, operates and supports a heterogeneous security infrastructure on a global scale. You will build and lead the Cyber Security Engineering program and lead a team of high performing engineers, analysts and data scientists. By working with other groups such as Global Network Engineering, Operations, Data Science and Application Development organizations, you will perform the role of a strategic thinker and have the operational gravitas to run one of the best technical functions in the company. In this role, you will also work with Visa’s executive committee members

Job Scope

• Instill a culture that works toward the highest standards in security engineering while ensuring that business requirements are understood and adhered to and security risks in new and existing infrastructure are properly understood and mitigated.
• Provide leadership and direction in the innovation of bleeding-edge security technologies and utilizing a risk-based approach to properly test and introduce them into the overall environment.
• Be passionate in the pursuit of securing Visa’s data and critical assets
  Recruit, develop, and retain a talented group of technology professionals for this core security engineering function.
• Collaborate with colleagues in technology departments as well as the business and product offices to establish effective, productive business relationships.

General Responsibilities 

• Lead a team of security engineering professionals responsible for planning, design, implementation, attack mitigation and ongoing support of security systems of high complexity to fulfill the business needs
• Provide technical deep understanding of security systems at different layers. Such as network , cloud, endpoint ,advance malware defense , data security etc.
• Work closely with security experts. Guide and mentor them on day to day working . 
•  Work with all interfacing teams to define and baseline the system uptime SLAs.
• Work with other Cyber Security teams to manage endpoint protections effectively and efficiently. In doing so work closely with research team, undertake research of threat vectors and provide mitigation strategies.
• Work with stakeholders, mentoring and providing technological guidance on network security.
• Manage staff, including selection, goal setting, annual reviews, and compensation planning and career development.
• Provide recommendations to management team to increase effectiveness of organization and technology solutions.
• Develop and nurture team of security team by motivating and mentoring and assist in hiring critical talent.
• Effectively manage cross-functional internal and external team collaboration, and communications.
• Prioritization, planning of projects and features, stakeholder management and tracking of external commitments
• Respond to and assist with due diligence and internal / external security audit requests.
• Represent Visa at international information security and cyber security communities globally.
• Supports, implements and promotes standard configuration and change management, processes and practices
•  Identify opportunities for further enhancements and refinements to security standards and processes.

Technical Responsibilities

Web Application Security:

• Engineers, configures, deploys, and maintains Web Application Firewall solutions
• Develops advanced scripts for manipulation of multiple data repositories to support analyst requirements
• Develops advanced alerts/reports to meet the requirements of key stakeholders
• Develops automation for security tools management and workflow integration
• Creates WAF rules to mitigate threats and implements best practices

SIEM/Application Logging (Must have):

• Expertise in Log aggregation, Correlation and alerting using commercial and Opensource tools
• Experience in administration of commercial and Opensource SIEM solutions
• Experience with Splunk, QRadar, Sumologic, ELK, SyslogNG, Kafka, Fluentd

 Development Experience ( Plus):

• Expert Python Scripting, Perl, Shell scripting and SecDevOps/automation
• Excellent experience with Regular Expressions

Application Security ( Plus):

• Knowledge of SSDLC processes
• Required knowledge of open source and commercial application security tools and frameworks, including but not limited to Kali Web application testing tools
• Excellent understanding of OWASP Risks, Vulnerabilities and Mitigation Mechanisms
• Experience with Web Application Firewall management and rules
• Well versed in system exploits (e.g., Buffer Overflows, PTH attacks, windows authentication framework etc.)
• Excellent understanding of common network and web protocols
• Excellent understanding of DDoS techniques and mitigation mechanism

Cyber Defense and Incident Response (Must have):

• Solid understanding of events, related fields in log records and alerts reported by various data sources such as Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies
• Prior experience in Security Operations and Incident Response
• Excellent understanding of Cyber Security Operations, Incident Response processes

Basic Qualifications:

• 10 or more years of work experience with a Bachelor’s Degree or at least 8 years of work experience with an Advanced Degree (e.g. Masters/ MBA/JD/MD) or at least 3 years of work experience in the field of cyber security with a PhD
• Must have, at least 5+ years of experience and hands-on expertise on either of one: Web Application Firewall (WAF) , SIEM

Preferred Qualifications:

• 12 or more years of work experience with a Bachelor’s Degree or 8-10 years of experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or 6+ years of work experience with a PhD
• Good to have, at least 5+ on penetration testing, security infrastructure tuning / deployment.
• At least 5+ years of leadership role, which includes managing security experts, mentoring , meeting business goals as leader .
• Experience delivering large scale, highly available security solutions
• Dynamic leader who has directly managed team of highly competent developers in fast paced work environment
• Strong business and technical vision
• Ability to handle multiple competing priorities in a fast-paced environment
• Experience demonstrating strong leadership, self-motivation and accountability
• Experience on leading complex projects cross-functionally and globally
• Financial services and card payments experience is a plus
• Excellent communication skills and Excellent team player
• Relevant certification such as CISSP, SANS GPEN, SANS GXPN, SANS GIAC, SANS GREM, Splunk Certification etc.
• OSCP (Offensive Security Certified Professional ) is a Plus

Work Hours: Varies upon the needs of the department

Travel Requirements: This position requires travel 5-10% of the time.

Mental/Physical Requirements: This position will be performed in an office setting.  The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.

Visa is an EEO Employer.  Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.  Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.