Description
Common Purpose, Uncommon Opportunity. Everyone at Visa works with one goal in mind – making sure that Visa is the best way to pay and be paid, for everyone everywhere. This is our global vision and the common purpose that unites the entire Visa team. As a global payments technology company, tech is at the heart of what we do: Our VisaNet network processes over 13,000 transactions per second for people and businesses around the world, enabling them to use digital currency instead of cash and checks. We are also global advocates for financial inclusion, working with partners around the world to help those who lack access to financial services join the global economy. Visa’s sponsorships, including the Olympics and FIFA™ World Cup, celebrate teamwork, diversity, and excellence throughout the world. If you have a passion to make a difference in the lives of people around the world, Visa offers an uncommon opportunity to build a strong, thriving career. Visa is fueled by our team of talented employees who continuously raise the bar on delivering the convenience and security of digital currency to people all over the world. Join our team and find out how Visa is everywhere you want to be.
Overview:
An Information Security Analyst in the Attack Surface Management Team, responsible for acting as a subject matter expert in the security configuration management program within Visa’s Attack Surface Management team. Periodically works on the assessment of the state of PCI Compliance, as well as monitoring asset compliance with Visa’s technical security requirements. This role will coordinate with IT Ops & Eng and business personnel to assist and coordinate remediation efforts to ensure security issues are resolved in effective and efficient fashion.
Responsibilities:
The successful candidate will:
-Have strong technical security skills with hands-on experience.
-Configure and maintain the operation of scanning tools for monitoring system configurations required per security and regulatory requirements
-Develop metrics for the measurement of IT security compliance posture
-Collect, manage and analyze data to make decisions and recommendations regarding security standards and controls
-Work closely with diverse IT and business teams to assist and coordinate the remediation efforts
-Conduct continuous security analysis on network, application, and infrastructure components; and work across IT and business teams to develop solutions that address root causes.
-Assist in coordinating technical aspects related to compliance in support of Audit, Legal, Human Resources, Corporate Security and Executives.
-Interact and assist other investigative teams within Visa (e.g. risk) on time sensitive, critical investigations
Qualifications
-Bachelors Degree in Computer Science (or related field) or equivalent work experience
-4 to 6 years of experience in Information Security with experience in vulnerability management, pen testing or other security scanning.
-Familiar with Security Configuration Management tools such as nCircle IP360, Qualys QualysGuard, Symantec CCS/ESM, etc.
-Familiar with File Integrity and Monitoring tools such as Tripwire, Symantec CSP
-Knowledge and experience with diverse IT architectures and enterprise IT data centers, large scale transaction processing environments, external hosted services and cloud computing environments. Extensive knowledge and experience with physical and virtual server configurations and implementations.
-Experience working with perimeter technologies (e.g., router, firewalls, web proxies and intrusion prevention, etc.) and vulnerability management tools (i.e. vulnerability scanners, file integrity monitoring, configuration monitoring, etc.).
-Knowledge of configuration management, change control/problem management integration, risk assessment and acceptance, exception management and security baselines (e.g. CIS Baselines, NIST, vendor security technical implementation guides, etc.).
-Strong technical skills and hands on experience assessing threats to multiple operating system platforms, database and application servers, and custom and off the shelf applications, etc.
-Moderate scripting/programming skills and familiarity with ethical hacking beneficial
Title: Sr. Info. Security Analyst
Location: Foster City, CA
Apply Online: https://jobs.visa.com/job/Foster-City-Sr_-Info_-Security-Analyst-Job-CA-94404/54953200/