Sr. Cybersecurity Engineer -- Cloud Security

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose - to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

As a Security Engineer/Architect, you will play a critical role in safeguarding our cloud infrastructure and applications. You will conduct comprehensive security reviews and implement advanced security measures to protect against potential threats.

Essential Functions:

Conduct in-depth security assessments and threat models of AWS, EKS, and web applications/APIs to identify vulnerabilities and propose effective solutions.

Design and implement robust security architectures tailored for cloud environments, focusing on AWS and Kubernetes (EKS).

Collaborate with DevOps and software development teams to integrate security best practices within CI/CD pipelines and across the development lifecycle.

Develop and refine security policies and procedures to ensure comprehensive protection and compliance.

Actively monitor and respond to security incidents, conducting thorough investigations and implementing corrective measures.

Research and stay abreast of the latest security threats, tools, and methodologies, providing strategic recommendations.

Provide technical guidance and training to internal teams to elevate security awareness and practices.

Basic Qualifications:

Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related technical field.

5+ years of experience in security engineering, with a focus on cloud and web application security.

Preferred Qualifications:

Master's degree in a related technical field.

Relevant Security certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Penetration Tester (GPEN).

1-2 years of hands-on experience with AWS security services and implementation of industry best practices, including proficiency in key AWS technologies such as AWS Identity and Access Management (IAM), AWS Key Management Service (KMS), AWS VPC, AWS S3, and AWS CloudTrail.

1-2 years of practical experience in Kubernetes security with a strong focus on Amazon Elastic Kubernetes Service (EKS), including expertise in key security domains such as Role-Based Access Control (RBAC), secrets management (AWS Secrets Manager or Kubernetes Secrets), pod security standards, and runtime threat detection using tools like Sysdig.

Deep understanding of web application security, including the OWASP Top Ten and common vulnerability exploitation techniques.

Proficiency with security assessment and penetration testing tools.

Relevant AWS and Kubernetes certifications such as AWS Certified Solution Architect, AWS Certified Security - Specialty, Certified Cloud Security Professional (CCSP), or Certified Kubernetes Security Specialist (CKS).

Experience with Infrastructure as Code (IaC) tools like Terraform or CloudFormation.

Familiarity with advanced security tools such as AWS Security Hub, GuardDuty, SumoLogic, or Sysdig for Kubernetes.

Proven track record in penetration testing and ethical hacking methodologies.

Knowledge of DevSecOps principles and implementation

Work Hours: Varies upon the needs of the department.

Travel Requirements: This position requires travel5-10% of the time.

Mental/Physical Requirements: This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.

U.S. APPLICANTS ONLY: The estimated salary range for a new hire into this position is 139,800 to 202,750per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401 (k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.