Director, Third Party Agents & Data Security

  • Singapore
  • Full-time

Company Description

About Visa:


Common Purpose, Uncommon Opportunity. Everyone at Visa works with one goal in mind – making sure that Visa is the best way to pay and be paid, for everyone everywhere. This is our global vision and the common purpose that unites the entire Visa team. As a global payments technology company, tech is at the heart of what we do. CyberSource, a Visa company, has been and continues to be a pioneer within the e-Commerce Payment Management world. Our VisaNet network is capable of handling over 65,000 transaction messages per second for people and businesses around the world, enabling them to use digital currency instead of cash and checks.


We are also global advocates for financial inclusion, working with partners around the world to help those who lack access to financial services join the global economy. Visa’s sponsorships, including the Olympics and FIFA™ World Cup, celebrate teamwork, diversity, and excellence throughout the world. If you have a passion to make a difference in the lives of people around the world, Visa offers an uncommon opportunity to build a strong, thriving career. Visa is fueled by our team of talented employees who continuously raise the bar on delivering the convenience and security of digital currency to people all over the world. Join our team and find out how Visa is everywhere you want to be.


“Visa will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of Article 49 of the San Francisco Police Code.”

Job Description

As a member of the Third Party Agents & Data Security APCEMEA team, this role is responsible for policy execution of AP & CEMEA regions’ Merchant Risk, Third Party and Vendors’ compliance. These programs and security standards have the objectives of maintaining a resilient payment ecosystem given the rapid increase of non-traditional licensees, fast digitization of payments and the ever-evolving cybersecurity threats. The focus of data security programs is to increase adoption of security standards and solutions by client banks, third parties, vendors and merchants to protect vulnerable data. The team’s charter is also to increase visibility of Third Parties in the payment ecosystem. In all cases, strategies, action plans and programs will be designed and implemented to control risks, taking into account geographic differences, while at the same time supporting business growth, accelerate innovation and reinforce Visa’s brand leadership.
This is a highly-visible role covering AP & CEMEA regions and includes frequent interactions with internal stakeholders including Country Management, Franchise Management, Merchant Services, Processing and Global Risk counterparts. Externally, this role will interface with Visa clients, merchants, processors and regulators, industry bodies such as the PCI Council. The Singapore-based position reports directly to the Head of Third Party Agents & Data Security, APCEMEA.

o Policy Execution: Implement global programs, develop regional policies & programs to increase transparency, strengthen accountability and reduce data security risks of client banks, third parties, processors and merchants. Scale is 500+ agents and similar numbers of Level 1 and 2 merchants.
Accountable for policy execution, operations  & oversight of some of the following programs:
o Agent registration
o Approved card vendor program
o PIN Security program compliance
o PCI data security compliance – agents, processors, merchants
o 3DS Security program compliance
o Drive data security initiatives – ensure data security initiatives such as Technology Innovation Programs, Qualified Integrator/Reseller program are delivered to a high standard that increasingly differentiates Visa.
o Collaborate on Emerging Technology regional standards related to Point to point encryption, Mobile mPOS and Tokenization.
o Drive Data Security awareness initiatives: Ensure sufficient training and documentation exists so clients, card vendors and third parties understand clearly what is required.  Recommend best practice, processes and policies towards the documentation and development of best practices guides


  • Bachelor’s Degree required
  • More than 8 years of experience in IT audit, information security, preferably in the payments/ banking industry
  • CISA, CISSP, PCI DSS or other relevant professional certification highly desired.
  • Demonstrated experience successfully conducting facilitated workshops
  • Relationship management and/or consulting skills, and ability to influence at a senior management level
  • Excellent collaboration and communication skills, with the ability to drive consensus in cross-regional and cro

Additional Information

All your information will be kept confidential according to EEO guidelines.

Privacy Policy