About this role
We are seeking a Cybersecurity Software Engineer to join our Center of Excellence within the Cybersecurity & Risk team. This role will lead strategic initiatives in application security, vulnerability remediation, and compliance exception handling. You’ll collaborate across engineering, infrastructure, and product teams to drive secure development practices and ensure alignment with Visa’s global security standards.
Responsibilities:
Security Compliance & Shift-Left Execution
Ensure timely closure of security findings within Required Remediation Dates (RRD)Manage exception workflows aligned with internal governance and external standards (e.g., PCI DSS V4)Identify compliance gaps and drive shift-left strategies to reduce recurring issuesPartner with Cybersecurity SMEs and development teams to validate remediation plans and escalate overdue itemsSupport automation and tooling enhancements for compliance tracking and reportingIAM Control Enforcement
Coordinate enforcement of IAM controls (e.g., unapproved access, rogue violations, password rotation, SSH key hygiene)Track unresolved findings and collaborate with platform teams to resolve blockersEnsure consistent application of IAM standards across CMS and other Technology Leadership Teams (TLTs)Security Exception Management
Oversee the lifecycle of exception requests across platforms and servicesValidate remediation plans and monitor expiration timelinesVulnerability Remediation
Lead resolution of high-priority findings (e.g., insecure configurations, deprecated protocols, exposed secrets)Coordinate with tooling teams to purge sensitive data and close findingsSecurity Testing Automation
Drive automation of Dynamic Application Security Testing (DAST) using tools like Burp Suite EnterpriseIntegrate security scanning into CI/CD pipelines for scalable deploymentsDeveloper Enablement
Organize workshops and forums on container security, IAM, secure architecture, and security best practicesPromote adoption of developer-friendly security tools for code hygiene and reachability analysisCross-Functional Leadership
Act as a central point of contact for technical debt resolution and exception trackingEnsure continuity through backup coverage and support during team transitionsException & UAR Management
Monitor exception volumes and identify opportunities to shift-left.Manage User Access Revalidation (UAR) completion within TLT.TLT Forum Engagement Represent CMS in TLT Cybersecurity SME forums and IAM / TLT Bi-weekly meetings.Dashboard & Tooling Oversight
Validate data in Cyber Security dashboards and ensure CMS metrics are accurately reflected.Advocate for necessary improvements to reduce false positives and improve remediation accuracy.This is a hybrid position. Expectations of days in the office will be confirmed by your Hiring Manager.
Visa is not offering relocation assistance for this role.
Basic Qualifications:
5 or more years of relevant work experience with a Bachelors Degree or at least 2 years of work experience with an Advanced degree (e.g. Masters, MBA, JD, MD) or 0 years of work experience with a PhD
Preferred Qualifications:
6 or more years of work experience with a Bachelors Degree or 4 or more years of relevant experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or up to 3 years of relevant experience with a PhD
Work Hours: Varies upon the needs of the department.
Travel Requirements: This position requires travel 5-10% of the time.
Mental/Physical Requirements: This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.
Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.
Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.
U.S. APPLICANTS ONLY: The estimated salary range for this position is $131,600 to $210,300 USD per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401 (k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.
Visa is not offering relocation assistance for this role.