Common Purpose, Uncommon Opportunity. Everyone at Visa works with one goal in mind – making sure that Visa is the best way to pay and be paid, for everyone everywhere. This is our global vision and the common purpose that unites the entire Visa team. As a global payments technology company, tech is at the heart of what we do: Our VisaNet network processes over 13,000 transactions per second for people and businesses around the world, enabling them to use digital currency instead of cash and checks. We are also global advocates for financial inclusion, working with partners around the world to help those who lack access to financial services join the global economy. Visa’s sponsorships, including the Olympics and FIFA™ World Cup, celebrate teamwork, diversity, and excellence throughout the world. If you have a passion to make a difference in the lives of people around the world, Visa offers an uncommon opportunity to build a strong, thriving career. Visa is fueled by our team of talented employees who continuously raise the bar on delivering the convenience and security of digital currency to people all over the world. Join our team and find out how Visa is everywhere you want to be.

Visa is seeking a proactive, experienced professional that will work with internal and external stakeholders to evaluate technology risks and controls. Partner with relevant stakeholders to identify mitigating and compensating controls, and/or advise on control areas needing improvement. This position will be an integral member of the team leading in the execution of numerous technology-related examinations (e.g. SSAE18, PCI DSS, SOC2, WebTrust, PCI PIN, etc.) within the Visa External Assessments team. This program spans multiple geographies and competency areas within the technology risk domain for which its results are visible to Visa’s management as well as Visa’s external clients & their auditors, partners and regulators.

The candidate must have a good understanding of the methodology in the mentioned third-party assessments, technology risks, audit and controls, be able to provide practical, client-focused solutions, and effectively partner and communicate with numerous cross-functional personnel. This position will report to the Senior Director of Regulatory & Risk Governance and will be based at Visa’s office located in Foster City, California.

 Key responsibilities include:

• Manage the execution of Third-Party Assessments (e.g. SSAE18, PCI DSS, SOC2, WebTrust, PCI PIN, etc.) of Visa from start to completion

• Apply IT controls and auditing skills/experience when needed in order to collaborate with the third-party assessors/auditors and address Visa personnel’s overall questions and needed clarifications

• Support senior management in periodic reporting and/or ad hoc support to the team as needed

• Manage additional projects and initiatives as assigned

Desired Attributes

• Organized and structured in thinking and approach to work

• Excellent verbal and written communication skills, attention to detail and interpersonal skills

• Ability to work independently with strong time management and ability to execute on multiple concurrent deliverables

• Works well with people of varying backgrounds, expertise levels and personalities, and builds partnerships

• Exercises good judgment: knows when/whom to ask for guidance, and when to make independent decisions

Basic Qualifications:

• 5+ years of experience in evaluating IT technical risks, controls and auditing, preferably with Big 4 CPA firm or large, highly-regulated company (e.g. financial institution, healthcare, etc.) or consulting firm required

Preferred Qualifications:

• Bachelor's Degree in Management Information Systems, Accounting, Computer Science, or related field required

• Professional certifications: CISA, CIA, CISSP, PMP and/or CPA preferred

• Prior experience with security and privacy regulations and industry standards (e.g. SSAE18/SOC1, SOC2, PCI-DSS, GLBA, WebTrust, PCI-PIN, etc.)

• Solid understanding of IT domains and processes - cybersecurity (e.g. access management, data security, etc.), availability (e.g. incident and change management, capacity management), and business continuity risks and controls

• Prior experience leading IT Audits and/or IT Projects with the ability to prioritize deliverables and projects to meet timelines efficiently and adapt to changes in priorities quickly

Visa is an EEO Employer.  Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.  Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

This position will be performed in an office setting.  The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers, and reach with hands and arms.

This position requires the incumbent to be available during core business hours

This position requires the incumbent to travel for work 0%  of the time.

Work Authorization: Authorization to work in the U.S. is a precondition of employment for this position. Visa will not sponsor applicants for work visas in connection with this position. No relocation will be provided.