Common Purpose, Uncommon Opportunity. Everyone at Visa works with one goal in mind – making sure that Visa is the best way to pay and be paid, for everyone everywhere. This is our global vision and the common purpose that unites the entire Visa team. As a global payments technology company, tech is at the heart of what we do: Our VisaNet network processes over 13,000 transactions per second for people and businesses around the world, enabling them to use digital currency instead of cash and checks. We are also global advocates for financial inclusion, working with partners around the world to help those who lack access to financial services join the global economy. Visa’s sponsorships, including the Olympics and FIFA™ World Cup, celebrate teamwork, diversity, and excellence throughout the world. If you have a passion to make a difference in the lives of people around the world, Visa offers an uncommon opportunity to build a strong, thriving career. Visa is fueled by our team of talented employees who continuously raise the bar on delivering the convenience and security of digital currency to people all over the world. Join our team and find out how Visa is everywhere you want to be.

Position:

This position is for a Sr. Staff Software Engineer in the CyberSecurity team who will focus on developing Application Security tools and services to help enhance our Application Security detection and mitigation capability in production environment.

You will be working with world class Application Security experts and Security technology experts to help improve the product security.

You'll need to have excellent communication and cross-group collaboration skills, be able to make forward progress despite ambiguous circumstances, be a self-starter, a quick learner of new technologies and have experience in product security such as secure application design, static code analysis and web application vulnerabilities. You will be a critical part of the core security engineering team for a high-performance product security automation framework development.

You will perform hands-on activities including design, documentation, development and test of new functionality. Candidate must be flexible and willing to switch tasks based on team's needs.

Responsibilities

·       Successfully lead the design, development, implementation of a critical and complex part of an Application Security Tools and Services. This includes building brand new systems, or enhancements, modifications to existing software. Implementing POCs and comparing different technologies.

·       Work closely with our internal and external partners, lead the technical low level design. Work with project team members (Chief Security Architects, Senior Developers, Application Security  Engineers, Project Managers, etc.), and coordinate and lead interfaces with other groups from different domains.

·       Have a passion for delivering very robust, object oriented, modularized, zero defect, high performant code and be responsible for making sure the team’s deliverables meet these expectations and

timelines.

·       Lead by example in producing high quality code with zero security vulnerabilities throughout the project SDLC.

·       Your knowledge in Application Security domain is unchallenged specially in Authentication, Authorizations, Data Protection and Web Application Security.

·       Work with architects, customers and team members to create, document and articulate a robust software design. Conduct code, design reviews, and ensure high quality.

·       Manage the implementation process for assigned projects. Estimate work effort on a project.

·       Serve as a point contact for onshore and offshore development teams to assist them in integration activities.

·       Comfortable working with teams from multiple domains and flexible in working on a wide variety of tasks spanning the full stack, Application Security, System Software and Security Analytics.

Qualifications

o   Bachelor degree in a technical field such as computer science, computer engineering or related field required. MS or other related advanced degree preferred.

o   Typically requires 12+ years of experience in application services development for large-scale systems.

o   Experience with web services standards and related technologies (HTTP, Spring, REST, JSON, JAX-RS, WS*, SOAP, XML, XSD).

o   At least 8 years java programming experience.

o   At least 1-2 Years of experience in Web Application Security, System Security and Data Protection technology

o   Experience with architecting and developing solutions for highly scalable, highly available systems. 

o   Experience and solid understanding of ORDB and NoSQL systems and technologies as Oracle, MySQL, Cassandra, Mongo DB.

o   Experience developing micro-services and using containers as Docker, Kubernetes/Swarm, Apache Mesos, etc.

o   Experience with middleware distributed and high performance systems as Kafka, Zookeeper, Spark, Storm, Akka, non-blocking IO, etc. 

o   Exposure to and familiarity with enterprise-class web hosting environments, operations and security

infrastructure. Understanding of networking layers, TCP/IP/UDP/HTTP protocols.

o   Experience with web application and services security issues and technologies: authentication, authorization, encryption, digital signatures, hashing, secure coding guidelines and vulnerabilities, etc.

o   Good understanding and usage of design patterns, modularity, dependency injection.

o   In-depth knowledge of software development life cycle. Experience with Agile development methodologies, and with the realities of commercial software engineering.

o   Ability to solve complex software development/design issues.

o   Ability to write clean, coherent code following established coding guidelines.

o   Strong process orientation/planning, organizational and problem solving skills.

o   Good analytic, design, coding / testing and documentation skills.

o   Strong interpersonal, facilitation, and leadership skills along with effective communication (both written and verbal) skills and the ability to present complex ideas in a clear, concise way.

o   Ability to understand systems from all levels, from the 'big picture' enterprise-level view to the low-level technical view.

o   Ability to work in a complex organization to determine business and customer needs, providing the best solution to meet those needs.

o   Candidate must be able to work independently and in a team environment.

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of Article 49 of the San Francisco Police Code.

All your information will be kept confidential according to EEO guidelines.