Job Description

The successful candidate will work in the Attack Surface Management team. Organizations often see security as collections of identified vulnerabilities in silos. This isolated perspective misses the proverbial big picture--the "attack surface".

This role requires the ability to be forward thinking and assist with developing unique solutions that are at the forefront of technology; the Attack Surface management Team at Visa is a leader in the space not a follower. The primary focus of this role is to assist with the periodic assessment of the Attack Surface as well as assisting with the identification and notification of vendor patches. This will be accomplished by tracking internal and external vulnerabilities, and then applying the appropriate risk-ratings to prioritize remediation to ensure Visa is appropriately protected.

This role will be expected to work with various teams and their managers, supervisors and/or professional staff and may lead project teams to achieve milestones or objectives, coordinate with IT Ops & Eng. and engage business personnel to ensure remediation solutions are identified, tested and made available to all groups responsible for vulnerability remediation. A successful candidate should be expected to be a proactive worker and generate security solutions that enhance the business they support. You must be able to take your experience and knowledge of security to the next level and work with a world class team to deliver on the Attack Surface Management goal of developing the complete perspective for operational and management visibility of Visa’s overall Attack Surface. Are you up for the challenge?

Some job duties and projects could include:

• Implement under the direction of the Director of Attack Surface Recon team utilizing the enterprise-wide strategy for the Attack Surface Management Program with established key initiatives/projects focused on the reduction of technology risk within Visa.
• Understand Vendor Patch Management.
• Assist in the development of solutions and solving complex/unique problems w/ regard to Visa’s Attack Surface.
• Assist in the execution of departmental plans, including business, production and/or organizational priorities and contribute to the Attack Surface Management functional strategy.
• Work with IT and business teams to develop solutions that address root causes.
• Utilize existing vulnerability management, security configuration management, and web application scanning tools and processes to extend coverage, increase effectiveness and expand capabilities.
• Work with diverse IT and business teams to assist in developing solutions to remediate identified vulnerabilities and misconfigurations in a risk prioritized, effective and efficient fashion.
• Possess the ability to effectively identify, evaluate and communicate new and ongoing security threat.

Qualifications

Basic Qualifications:

• Students pursuing a Bachelor's Degree with a graduation date in December 2024 or later
• Strong communications skills, specifically, the absence of repeated grammatical or typographical errors, clear and concise written and spoken communications that demonstrate professional judgment.

Preferred Qualifications:

• Possess solid comprehension of security and risk.
• Strong troubleshooting skills.
• Be able to work on complex projects and with diverse teams.
• Interested in assessing threats to and identifying weaknesses in multiple operating system platforms, database and application servers, and custom and off the shelf applications, etc.
• Familiar with Vulnerability Management tools such as Qualys QualysGuard, Rapd7, Tenable Nessus, etc.
• Familiar with Policy Compliance tools such as Qualys QualysGuard, Symantec CCS, Microsoft SCM, etc.
• Python and/or scripting understanding
• Familiar with Security Single Pane of Glass implementations or frameworks such as RSA Archer, Modulo, Risk I/O, etc.
• Understanding of security management tools (i.e. vulnerability scanners, file integrity monitoring, configuration monitoring, etc.) and perimeter technologies (e.g., router, firewalls, web proxies and intrusion prevention, etc.)
• The ability to take on challenges and address problems head-on
• Strong ability to collaborate
• Highly driven, resourceful and results oriented
• Good team player and excellent interpersonal skills
• Good analytical and problem-solving skills
• Demonstrated ability to lead and navigate through ambiguity

Additional Information

** Work Authorization : **Visa will not sponsor applicants for work visas in connection with this position. Future sponsorship will not be considered.

** Work Hours:** Varies upon the needs of the department.

** Travel Requirements:** This position requires travel 5-10% of the time.

** Mental/Physical Requirements:** This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.

U.S. APPLICANTS ONLY: The estimated salary range for a new hire into this position is $26/hr to $31/hr, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401 (k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.