Common Purpose, Uncommon Opportunity.
Everyone at Visa works with one goal in mind - making sure that Visa is the best way to pay and be paid, for everyone everywhere. This is our global vision and the common purpose that unites the entire Visa team. As a global payments technology company, tech is at the heart of what we do: Our VisaNet network processes over 13,000 transactions per second for people and businesses around the world, enabling them to use digital currency instead of cash and checks. We are also global advocates for financial inclusion, working with partners around the world to help those who lack access to financial services join the global economy. Visa's sponsorships, including the Olympics and FIFA™ World Cup, celebrate teamwork, diversity, and excellence throughout the world. If you have a passion to make a difference in the lives of people around the world, Visa offers an uncommon opportunity to build a strong, thriving career. Visa is fueled by our team of talented employees who continuously raise the bar on delivering the convenience and security of digital currency to people all over the world. Join our team and find out how Visa is everywhere you want to be.

This candidate will join Global Information Security and will be responsible for enforcing and maintaining compliance with Visa’s Security policies related to policy enforcement of zoned architecture, firewall rule requirements, application flow architecture, and general network infrastructure security. This candidate is expected to be a key contributor in a team cross functionally spanning the organization as it relates to network security.

•Ensure the enforcement of Policy Enforcement Point compliance, thereby ensuring the continued protection of Visa information assets.

• Ability to function well in a team environment and effectively allocate time/resources on various projects

• Manage automated compliance tool violations for network rules and review all violations on an ongoing basis

• Maintain an enterprise process for identifying, prioritizing, and remediating firewall rule security gaps and weaknesses. This process will integrate with Visa's broader technology and enterprise risk management programs.

• Collaborate within cyber security and with risk management teams to achieve Global Information Security program objectives.

• Maintain customer satisfaction while consulting on various projects.

• Effectively manage multiple streams of activity in multiple time zones.

• Have a strong work ethic and communication skills

• Maintain a security metrics approach that enables executive leaders, line managers, and operational staff to quickly take action on network security related risks with opportunities for action in other control areas.

• Collaborate with all internal and 3rd party security teams to implement security controls that will protect the Visa brand from real or perceived security breaches.

• Work alongside a world-class credible and high performance security team comprised of engineering, operations, and consultative internal advisory professionals globally.

• Effectively triage internal firewall request queues and ensure incoming requests adhere to the required security practices and zoning models

• Continuously look for any gaps in network information or network models that could create false positive or false negative situations – especially with any automated compliance checking

• Be able to quickly understand all of Visa’s security policies in relation to the network and data protection to be able to manually review situations and incoming requests that do not fit into a standard model

• Be able to suggest alternatives acceptable to Visa and work with project or application teams to find alternate paths that would ensure all Visa requirements are being followed.

• Respond to SME Review requests for the Governance Exception process

• Effectively manage ad-hoc network review tasks and any necessary remediation activities

• Develop and optimize processes to improve security violation identification and remediation

• Maintain active understanding of industry practices for network security and zoned architecture in multi-network enterprise environments.

Undergraduate or Advanced degree in Computer Science, Electronics/Communication Engineering,
Information Security or a related technical discipline
5 years plus in technology, information security, and/or network administration

• Minimum of 6 years in large-scale enterprise network environments especially dealing with network security

• Strong understanding of firewall, policy enforcement, zoned architecture, and enterprise level networking

• Operational knowledge of PCI-DSS, network security best practices, and ongoing threat analysis

• Experience working with project, application, and management tool teams to ensure policy compliance

• Deep knowledge and experience with firewall rule analysis

• In depth understanding of Security Zoning and architecture

• Implementing and developing procedures and process for network operational security

• Solid problem solving and analytical skills; able to quickly digest issues encountered and recommend an appropriate solution

• Experience in endpoint tools or general security hacking or threat identification skills

• Good communication skills – especially English. Other language fluency is a plus.

• Very strong work ethic is a must

• Experience in Network Security Compliance and rule review is a must

• Experience with Tufin, as well as well certified in at least 1 of the following areas: Palo Alto FWs, Cisco FWs, Checkpoint FWs, F5 LTMs, WAFs, and other network security platforms is required. Other security tools experience is a plus.

• CISSP or Architecture certification is a plus

All your information will be kept confidential according to EEO guidelines.