Cybersecurity Engineer - Network Security Assurance

Company Description

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

Job Description

This candidate will join Visa Cybersecurity Network Security Assurance and will be responsible for enforcing and maintaining compliance with Visa’s Security policies related to policy enforcement of our zoned architecture, firewall rule requirements, application flow architecture, and general network infrastructure security.

Essential Functions:

• Ensure the enforcement of Policy Enforcement Point compliance, thereby ensuring the continued protection of Visa information assets.

• Ability to function well in a team environment and effectively engage with peers and train additional staff on NSA request intake

• Manage automated compliance tool violations for network rules and review all violations on an ongoing basis

• Work with an enterprise process for identifying, prioritizing, and remediating system security gaps and weaknesses. This process will integrate with Visa's broader technology and enterprise risk management programs.

• Collaborate with Cybersecurity teams and risk management teams to achieve Cybersecurity program objectives.

• Implement simplified security metrics approach that enables executive leaders, line managers, and operational staff to quickly take action on application security related risks.

• Work with AI driven tooling to improve overall program workflow and customer ticketing processes.

• Collaborate with all internal and 3rd party security teams to implement security controls that will protect the Visa brand from real or perceived security breaches.

•  Work alongside a world-class credible and high performance security team comprised of engineering, operations and consultative internal advisory professionals globally.

• Effectively handle internal firewall request queues and ensure incoming requests adhere to the required security practices and zoning models

• Effectively work in an area of the team related to special projects, such as M&A onboarding, special ad-hoc assessments of network security, review of new firewall security technologies, and feedback into Visa requirements

• Continuously look for any gaps in network information or network models that could create false positive or false negative situations – especially with any automated compliance checking

• Be able to quickly understand all of Visa’s security policies in relation to the network and data protection to be able to manually review situations and incoming requests that do not fit into a standard model

• Be able to suggest alternatives acceptable to Visa and work with project or application teams to find alternate paths that would ensure all Visa requirements are being followed.

• Adhere to a risk model for firewall and zoning issues to appropriately convey the impact of any found or raised issue quickly

• Effectively manage ad-hoc network review tasks through front door processes and any necessary remediation activities based on prioritization

• Help to optimize processes to improve security violation identification and remediation

• Maintain active understanding of industry practices for network security and zoned architecture in multi-network enterprise environments

This is a hybrid position. Expectation of days in office will be confirmed by your Hiring Manager.

Qualifications

Basic Qualifications:
•2+ years of relevant work experience and a Bachelors degree, OR 5+ years of relevant work experience

Preferred Qualifications:
•3 or more years of work experience with a Bachelor’s Degree or more than 2 years of work experience with an Advanced Degree (e.g. Masters, MBA, JD, MD)
•Undergraduate degree in Computer Science, Electrical Engineering or any related technical discipline and advanced degree is a plus
•Ability to work in large-scale enterprise network environments especially dealing with network security
•Intermediate level understanding of firewall, policy enforcement, zoned architecture, and enterprise level networking
•Operational knowledge of PCI , network security best practices, and ongoing threat analysis
•Ability to work with project, application, and management tool teams to ensure policy compliance
•Intermediate level knowledge of networking, security, metrics, and process creation
•Intermediate level knowledge of Security Zoning and architecture
•Solid problem solving and analytical skills. Able to quickly digest issues encountered and recommend an appropriate solution
•Experience in using scripting languages automate tasks and manipulate data is a plus
•Experience with Tufin, Palo Alto FWs, Cisco FWs, Checkpoint FWs, F5 LTMs, WAFs, and other network security platforms
• Network and/or Security certifications are a plus

Additional Information

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.