Common Purpose, Uncommon Opportunity. Everyone at Visa works with one goal in mind - making sure that Visa is the best way to pay & be paid, for everyone everywhere. This is our global vision & the common purpose that unites the entire Visa team. As a global payments technology company, tech is at the heart of what we do: Our VisaNet network processes over 13,000 transactions per second for people & businesses around the world, enabling them to use digital currency instead of cash & checks. We are also global advocates for financial inclusion, working with partners around the world to help those who lack access to financial services join the global economy. Visa's sponsorships, including the Olympics & FIFA World Cup, celebrate teamwork, diversity, & excellence throughout the world. If you have a passion to make a difference in the lives of people around the world, Visa offers an uncommon opportunity to build a strong, thriving career. Visa is fueled by our team of talented employees who continuously raise the bar on delivering the convenience & security of digital currency to people all over the world. Join our team & find out how Visa is everywhere you want to be.
This position is for aCybersecurity Engineer - Cloud Security Automationin the Cybersecurity team who will focus on developing security automation platform for public cloud.
Visa's Cybersecurity Architecture & Engineering team collaborates with product development teams globally, & other teams within Cybersecurity organization on security engineering, building & maintaining the most innovative, reliable, secure & cost-effective security solutions to protect VISA growing customers' growing needs.
You will be part of a friendly team of top notchsecurity engineers & security architects who leadVisa's hybrid cloud global strategy,cloud engineering & automation, private & public cloud integrationarchitecture & application security automation end to end. As part of thisteam, you will have total ownership as a security automation engineer to build security as DNA into our core services with automation & resilienceto protect our global customers & business partners from hackers.
The ideal candidate should betechnology savvy with deep knowledge of cybersecurity, web application security, OWASP, networks, cryptography, as well as public cloud security(AWS/Azure/Google Cloud), Kubernetes, Microservices, Terraform, Python, Ansible & CI/CD process. This person will be working majority of the time coding in Java, Golang, Python, & Ansible on automating infrastructure security tasks.
You'll need to have excellent communication & cross-group collaboration skills, be able to make forward progress despite ambiguous circumstances, be a self-starter, a quick learner of new technologies & have experience in product security such as secure application design, static code analysis & web application vulnerabilities. You will be a critical part of the core security engineering team for a high-performance product security automation framework development.
2 years of work experience with a Bachelor's Degree or an Advanced Degree (e.g. Masters, MBA, JD, MD, or PhD)
Engineering experience working on public cloud (AWS, Azure, Google Cloud) infrastructure and/or securityautomation- design, development, integration, customization & implementation
Experience or knowledge on web application security, OWASP, container security, network security, & OS
Experience with developing microservice-based HTTP applications & servers
Able to understand the security tools & best practices: CIS Benchmarking, OS hardening, vulnerability scanning, system auditing
Experience in automating system tasks & infrastructure using a scripting language (Golang, & Python must have), with configuration management tools (Ansible), service registry & discovery tools (Consul & Vault, etcd), infrastructure orchestration tools (Ansible, & Terraform), & automated imaging tools (Packer)
Experience in automating at least one public cloud deployments (AWS, Azure, Google Cloud) using Terraform or Ansible with deployment pipeline
Ability to develop & debug automation scripts in json, yaml or bash
Ability to write technical specs for cloud security automation workflow
Deep understanding of the Software Development Life Cycle including Continuous Integration & Continuous Deployment (CI/CD) pipeline architecture (Jenkins, GitLab, Drone) including deployments into Kubernetes environments using tools such as Flux or Keel.
Good to have networking experience both within Linux & with Cisco or Juniper network routers & switches
Strong analytical skills, able to work independently to solve complex engineering problems. Make independent judgments/decisions within established guideline
Communicate well with others both verbally & in writing & be able to effectively interact with peers, management & other outside contacts
The ability to gather & understand business requirements, translate them into technical/operational requirements
High degree of initiative & sense of urgency, comfortable with ambiguity as needs change on a regular basis
Self-confident, commands technical authority & respect at all levels
Desire to be part of an incredible team. That means being someone the team can count on, who communicates honestly & respects others & their views, who adapts quickly to changing priorities, drives positive change, & is committed to giving 100%
- Design & implement agile innovative cloud security automation solutions/infrastructure management solutions that take advantage of technology advances that allow cost reduction, standardization & commodification
- Design, implement & integrate management solutions to effective manage private/hybrid cloud implementation(Openstack, Docker, Kubernetes, AWS and/or Azure) with a strong focus on security automation
- Identify, evaluate, select & engineer highly reliable container scheduling & orchestration solutions that are extremely secure enabling Operations to manage environments simply & effectively, ensure on time, on budget, & quality delivery of shared container platform
- Collaborate with the team to evolve the containerization security ecosystem, establish & mature standards & integration for infrastructure management domains - logging, monitoring, configuration management & orchestration. Identify & implement standard toolsets to reduce complexity & support operational goals for increasing automation across the enterprise
- Champion the adoption of open infrastructure management solutions that are fit for purpose yet forward the Visa goals to keep technology relevant
- Evangelize the cloud & container security management platform standards & capabilities, gain insights of the workflows of Product Development, Engineering & Operations teams, ensure platform relevance & drive adoption, enable the application transformation from monolithic to microservices
This position will be performed in an office setting. The position will require the incumbent to sit & stand at a desk, communicate in person & by telephone, frequently operate standard office equipment, such as telephones & computers, reach with hands & arms, & bend or lift up to 25 pounds.
The Incumbent is required to make themselves available during core business hours.
This position may require the incumbent to travel for work up to 10% of the time.
Visa will consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines & applicable local law.