Company Description

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

Job Description

As an Associate Software Security Engineer, you will be part of our Cybersecurity team to help design, enhance and build our Application Security Tools and Services in addition to supporting Visa Product Development teams in writing secure code free of Application Security Vulnerabilities in an agile development environment. You will work with colleagues, who will support and challenge you daily. You will work on designing secure web applications, unit testing, code reviews and regular check-ins to continuous integration that will become part of your DNA.

Our engineers do more than just write code:

Essential Functions

• Help define consistent Secure Software Development Lifecycle practices for all Visa technology projects throughout the planning and delivery cycles that assure that application security risks are mitigate
• Ensure end-to-end security of Visa products by hands on testing, hypothesizing threats, helping development teams remediating risks upfront and championing secure implementation efforts
• Improve secure coding practices, application security requirements, automation, training, and metrics
• Integrate threat modeling practices into the Software Development Lifecycle
• Help build secure products and standards around emerging technologies and using existing standards and security practices
• Perform Security Architecture and Low Level Application Security Design review involving: Data Protection, Authentication and Authorizations, Web Application Security and Network Security
• Collaborate with product development and solution teams proactively to manage software security risk aligned with business goals
• Collaborate with product and solution teams to achieve Cybersecurity software security program objectives
• Manage cross-functional internal and external team collaboration, evangelization, and communications
• Develop and optimize processes to improve software development efficiency in the consumption of security development practices
• Maintain active understanding of industry practices for secure software development and incident response

This is a hybrid position. Expectation of days in office will be confirmed by your hiring manager.

Qualifications

Basic Qualifications:
• Bachelors degree, OR 3+ years of relevant work experience

1+ years of work experience with a Bachelor’s Degree or at least 1 years of work experience with an Advanced degree (e.g., Masters, MBA, JD, MD)

Min of 6 months of experience working with Kubernetes and Docker

Understanding on open-source CNCF projects

Strong understanding in Kubernetes DevOps and CI/CD implementation for containerized applications using Jenkins and similar technologies

Thorough knowledge of cloud-native development, pod security policies, namespace management is required

Experience with container technologies like Docker, Kubernetes is required

Experience with container orchestration technologies Kubernetes is required

Experience with service mesh technologies like Istio, TSB is plus.

Experience with EKS/GKE would be plus

Communicate container requirements with engineering and product teams to discuss polices related to containerized applications.

Understanding of micro-service design and architectural patterns and familiar with complex event processing and event-driven architecture

Experience with administration capabilities with good understanding of containerization (Docker) & cloud(Openshift & Kubernetes), and their associated management challenges and possible solutions

Experienced in building automated solutions through tools and software that enable infrastructure to be remotely provisioned, configured and decommissioned
Strong analytical skills, able to work independently to solve complex engineering problems. Make independent judgments/decisions within established guidelines
Communicate well with others both verbally and in writing and be able to effectively interact with peers, management and other outside contacts

Strong analytical skills, able to work independently to solve complex engineering problems. Make independent judgments/decisions within established guidelines

Communicate well with others both verbally and in writing and be able to effectively interact with peers, management and other outside contacts

The ability to gather and understand business requirements, translate them into technical/operational requirements

High degree of initiative and sense of urgency, comfortable with ambiguity as needs change on a regular basis

Self-confident, commands technical authority and respect at all levels

Demonstrable teamwork attitude, ready to initiate collaboration and resolve conflicts

Additional Information

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.