Senior Cyber Security Engineer (DevSecOps - Infrastructure)
- Full-time
- Job Family Group: Technology and Operations
Company Description
Visa is a world leader in digital payments, facilitating more than 215 billion payments transactions between consumers, merchants, financial institutions and government entities across more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable and secure payments network, enabling individuals, businesses and economies to thrive.
When you join Visa, you join a culture of purpose and belonging – where your growth is priority, your identity is embraced, and the work you do matters. We believe that economies that include everyone everywhere, uplift everyone everywhere. Your work will have a direct impact on billions of people around the world – helping unlock financial access to enable the future of money movement.
Join Visa: A Network Working for Everyone.
Job Description
Visa's Cyber Engineering team is looking for an Open source & Automation Engineer who will be responsible for transforming large scale infrastructure from manually executed releases, patching and upgrades into a highly automated process utilizing the latest in scripted and automated execution of large-scale Cyber Security initiatives. In this position, you are a passionate and talented engineer/developer with problem-solving abilities and very strong infrastructure skill with a coding/testing/debugging background/familiarity who can work in a dynamic environment. You must be dedicated to delivering production-ready solutions in short time frames and willing to go beyond the routine. Compliance with ITIL processes & resolution of security vulnerabilities, with limited manual interaction, is a core component of this role.
Key Responsibilities
- Implementation of solution for automating responses to health alerts of various applications and security appliances.
- Development of Ansible playbooks to ensure zero human touch upgrades, both for internal infrastructure, application patching, upgrades etc..
- Development & tuning of multi-layered alerts to provide early warning of critical system resources and ensuring a near zero downtime matrix.
- Scheduled maintenance activities to keep the infrastructure components robust with latest patches and updated versions of software running in the infrastructure stack.
- Experience in management of Open Source infra health monitoring technologies like Kapacitor, Prometheus, Grafana and so on.
- Expertise in using Ansible, Git and configuration management tools.
- Implementation of automation using scripting languages such as Python, Bash, Go Lang etc
- Develop innovative solutions to protect the Visa brand, networks, assets and products by implementing state-the-art detection, prevention, and response capabilities
- Design, engineer, operationalize and maintain the secure systems which support continuous deployment/integration solutions with strong focus towards innovation & Ansible or other tooling to execute seamless automation.
- Have strong problem solving and debugging skills.
- Efficiently managed and maintained cluster of devices in large scale enterprise datacenters with minimum to zero downtime.
- Have excellent communication and interpersonal skills and above all, you are a team player!
- Mentor and lead the team on various aspect of business and security technologies.
- Understanding of ITIL based ticketing processes & ability to document and correctly communicate Change/Install plans which utilize Change windows and ticket-based tracking.
Key Skills Needed:
- Ansible Playbook Creation & Development
- Agile development - incorporating Continuous Integration and Continuous Delivery utilizing technologies such as GIT, Maven, Jenkins, Chef, Crucible, Sonar, Junit
- Linux - Strong Linux and systems engineering knowledge with a good understanding of Identity and Access Management methodologies.
- Python - Experience with python libraries & frameworks
- Elastic Stack - You have used Kibana and Elastic search for logging and developed plugins, codecs for specific use cases.
- Network experience: Socket, TCP/IP, UDP and Multicast
- CI/CD Experience with triggered events
- Ability to identify and remediate security issues, such as continuously ensuring packages are at latest versions and automatically regression tested
- Independent - no micro managing here, but, you must be able to communicate
- Configuration Management - Experience with Configuration management tools Such as Ansible/Salt stack/Chef/Puppet.
Desirable Skills:
- AngularJS - You've built Angular directives beyond just wrapping a Jquery plugin around an element
- Node.js - You've created multiple API-centric web applications
- Web Server (NGINX/Apache) configuration expertise
- Understanding of Cloud based solutions (AWS, Azure, Google Cloud) and capabilities for automation (Terraform etc..) with in the Cloud.
Qualifications
• Experience in Project life cycle activities on development and maintenance projects. Including CI/CD and tools development – preferably open source
• Minimum Bachelor’s degree required from an accredited institution.
• Strong customer centric mindset.
• Proactive sense of urgency and 'can do' attitude
• Strategic thinker who can balance big picture strategy with detailed, flawless execution
• Financial services and card payments experience is a plus
• Excellent communication skills
• Excellent team player
• CISSP, CISA , SANS GPEN, SANS GXPN, SANS GIAC, SANS GREM,OSCP (Offensive Security Certified Professional ) is a plus