Director - External Assessment of Visa
- Foster City, CA, USA
Common Purpose, Uncommon Opportunity. Everyone at Visa works with one goal in mind – making sure that Visa is the best way to pay and be paid, for everyone everywhere. This is our global vision and the common purpose that unites the entire Visa team. As a global payments technology company, tech is at the heart of what we do: Our VisaNet network processes over 13,000 transactions per second for people and businesses around the world, enabling them to use digital currency instead of cash and checks. We are also global advocates for financial inclusion, working with partners around the world to help those who lack access to financial services join the global economy. Visa’s sponsorships, including the Olympics and FIFA™ World Cup, celebrate teamwork, diversity, and excellence throughout the world. If you have a passion to make a difference in the lives of people around the world, Visa offers an uncommon opportunity to build a strong, thriving career. Visa is fueled by our team of talented employees who continuously raise the bar on delivering the convenience and security of digital currency to people all over the world. Join our team and find out how Visa is everywhere you want to be.
Visa is seeking a proactive, experienced professional that will work with internal and external stakeholders to evaluate technology risks and controls. Partner with relevant stakeholders to identify mitigating and compensating controls, and/or advise on control areas needing improvement. This position will be an integral member of the team leading in the execution of numerous technology-related examinations (e.g. SSAE18, PCI DSS, SOC2, WebTrust, PCI PIN, etc.) within the Visa External Assessments team. This program spans multiple geographies and competency areas within the technology risk domain for which its results are visible to Visa’s management as well as Visa’s external clients & their auditors, partners and regulators.
The candidate must have a good understanding of the methodology in the mentioned third-party assessments, technology risks, audit and controls, be able to provide practical, client-focused solutions, and effectively partner and communicate with numerous cross-functional personnel. This position will report to the Senior Director of Regulatory & Risk Governance and will be based at Visa’s office located in Foster City, California.
Manage the execution of Third-Party Assessments (e.g. SSAE18, PCI DSS, SOC2, WebTrust, PCI PIN, etc.) of Visa from start to completion
Apply IT controls and auditing skills/experience when needed in order to collaborate with the third-party assessors/auditors and address Visa personnel’s overall questions and needed clarifications
Support senior management in periodic reporting and/or ad hoc support to the team as needed
Manage additional projects and initiatives as assigned
10 years of work experience with a Bachelor’s Degree or at least 8 years of work experience with an Advanced Degree (e.g. Masters/MBA/JD/MD) or at least 3 years of work experience with a PhD
7+ years of experience in evaluating IT technical risks, controls and auditing, preferably with Big 4 CPA firm or large, highly-regulated company (e.g. financial institution, healthcare, etc.) or consulting firm required
Bachelor's Degree in Management Information Systems, Accounting, Computer Science, or related field required
Professional certifications: CISA, CIA, CISSP, PMP and/or CPA preferred
Prior experience with security and privacy regulations and industry standards (e.g. SSAE18/SOC1, SOC2, PCI-DSS, GLBA, WebTrust, PCI-PIN, etc.)
Solid understanding of IT domains and processes - cybersecurity (e.g. access management, data security, etc.), availability (e.g. incident and change management, capacity management), and business continuity risks and controls
Prior experience leading IT Audits and/or IT Projects with the ability to prioritize deliverables and projects to meet timelines efficiently and adapt to changes in priorities quickly
Organized and structured in thinking and approach to work
Excellent verbal and written communication skills, attention to detail and interpersonal skills
Ability to work independently with strong time management and ability to execute on multiple concurrent deliverables
Works well with people of varying backgrounds, expertise levels and personalities, and builds partnerships
Exercises good judgment: knows when/whom to ask for guidance, and when to make independent decisions
This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers, reach with hands and arms, and bend or lift up to 25 pounds.
Visa will consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.
No sponsorship to work in the U.S. is provided nor relocation
This position requires the incumbent to travel for work 0% of the time