Visa, a world leader in payments and technology, seeks a Cybersecurity Engineer to define and enforce consistent Secure Software Development Lifecycle (SSDLC) practices, ensure end-to-end security of Visa products, and contribute to the development of security standards for emerging technologies.
Requirements
- Define, embed, and enforce consistent Secure Software Development Lifecycle (SSDLC) practices and secure-by-design principles for all Visa technology projects.
- Ensure the end-to-end security of Visa products by conducting hands-on security assessments, integrating threat modeling into the SDLC, and helping development teams remediate risks.
- Build, maintain, and improve security tools (e.g., SAST, DAST, SCA), integrating them within the CI/CD pipeline to create automated, developer-friendly security workflows.
- Own the end-to-end lifecycle for internally developed security tools and products, and automations, including their development, security, deployment, maintenance, and operational support.
- Perform Security Architecture and Low-Level Application Design reviews, with a strong emphasis on Data Protection, Authentication, Authorization, Web Application and API Security.
- Contribute to the development of security standards for emerging technologies, including evaluating AI-generated code, defining guardrails for LLM tools, etc.
- Develop and optimize processes to improve the software development efficiency and accelerate the adoption of secure development practices.
- Improve secure coding practices, application security requirements, automation, training, and metrics.
- Collaborate proactively and cross-functionally with product, engineering, and solution teams to manage software security risk in alignment with business goals and Visa's cybersecurity program objectives.
- Clearly communicate risks and recommendations to both technical and non-technical audiences.
- Develop, track, and report on key metrics to measure the effectiveness of the application security program and drive continuous improvement.
- Continuously research the threat landscape, emerging vulnerabilities, and industry best practices for secure software development and incident response to proactively improve Visa's application security posture.
Benefits
- Medical
- Dental
- Vision
- 401(k)
- FSA/HSA
- Life Insurance
- Paid Time Off
- Wellness Program
