Sr. Cybersecurity Analyst - Policy and Awareness

Company Description

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

Job Description

Visa’s Cybersecurity Policy and Awareness team is looking for a Sr. Cybersecurity Analyst to develop and maintain security standards and hardening requirements for a wide array of technologies. The individual must have experience configuring and deploying multiple technologies and possess exceptional written and verbal communication skills. The right candidate will be comfortable leading via influence and negotiating outcomes with senior SME stakeholders. 

This role will be focused on standards development, and not technical implementation. However previous hands-on technical experience is a requirement for the successful candidate. Experience should include some combination of the following: configuring network appliances like firewalls, routers, switches, storage arrays, Operating systems (Windows, RHEL, MacOS), Databases (MYSQL, MSSQL, Oracle, NoSQL, etc.), Web Server and related technologies (IIS, Apache, WebSphere), or securing public cloud platforms (AWS, Azure, GCP). This individual should also have a solid understanding of baseline technical security standard requirements, drawn from industry standards, regulatory requirements, vendor guidelines, and best practices. Experience with cloud environments & container technologies (such as Docker and Kubernetes) is highly desirable for this role.

Essential Functions:

• Author and maintain baseline technical security control

• Hardening standard requirements for multiple technologies

• Actively collaborate with Cybersecurity, IT, and all stakeholders throughout Visa

• Develop performance metrics on the effectiveness of the security control requirements

• Assist with automation and compliance validation of security requirements

This is a hybrid position. Hybrid employees can alternate time between both remote and office. Employees in hybrid roles are expected to work from the office 2-3 set days a week (determined by leadership/site), with a general guidepost of being in the office 50% or more of the time based on business needs.

Qualifications

Basic Qualifications:
• 5+ years of relevant work experience with a Bachelor’s Degree or at least 2 years of work experience with an Advanced degree (e.g. Masters, MBA, JD, MD) or 0 years of work experience with a PhD, OR 8+ years of relevant work experience.
Preferred Qualifications:
• 6 or more years of work experience with a Bachelors Degree or 4 or more years of relevant experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or up to 3 years of relevant experience with a PhD
• Excellent written and verbal communication skills, interpersonal and presentation skills and the proven ability to influence and communicate effectively
• Technical Writing experience
• Technical Project Management experience
• Ability to convey security concepts to both technical and non-technical audiences
• Strong understanding of Cloud Security including (AWS, Azure, GCP), Docker, OpenShift-Kubernetes,
• Must have previous hands-on experience installing, and securely configuring network devices and cloud services securely
• Flexible, adaptable, and able to manage multiple tasks in a dynamic, fast-paced environment
• Ability to communicate complex technical concepts effectively
• Prefer CISSP, CISA, or Cloud certifications
• Must have working knowledge of security standards such as NIST, ISO 27001/2, CSA, STG, CIS Benchmark, Stig viewers
• Experience in developing baseline security control requirements, security policies/procedures & risk management program is highly desirable
• Consulting background (Big 4 or similar) highly desirable

Additional Information

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.