Associate Cybersecurity Analyst - Regulatory, Audit, and Compliance

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

This Associate Cybersecurity Analyst position will serve as part of Visa's Cybersecurity Regulator, Audit, and Compliance function within the Cybersecurity Governance Risk and Compliance and M&A Integration (GRC) team, reporting to Director/Sr. Director. This position will provide oversight, coordination, and delivering the activities that support successful internal audits, external audits and compliance, regulatory activities, and external customer/client requests while effectively balancing the individual elements of these activities.

Essential Functions

• Support the delivery of successful internal audits, external audits and compliance, regulatory activities, and external customer/client requests.

• Assist with validating the ongoing effectiveness of Cybersecurity controls across Visa (both automated and manual), working with a variety of control owners within the Cybersecurity organization, and evaluating control design and standards in a variety of program areas. You will be assessing the security on various platforms and technologies like:

  • Payment processing platforms, Payment Wallet solutions, Consumer facing applications, COTS products deployed in house,

  • SaaS, PaaS, and IaaS public cloud offerings

  • Mainframe, Linux, Windows, and virtual machines

  • IDS, SIEM, WAF, Firewalls

  • HSMs, Tokenization systems, data encryption solutions

  • APIs, Web technologies,

  • Relational and noSQL databases

  • Access Management solutions

• Stay up to date on new security tools & techniques in the information security space,

• Familiarity with regulatory standards that will help Cyber teams to achieve various compliance certifications like PCI, RBI, etc.

• Assist in developing data points into Information Security risk management reporting activities, including dashboards, metrics, and executive reporting content.

• Assist in developing dashboards and automate tasks to increase efficiency and reduce redundancy.

• Document assessment findings, prepare workpapers, and support assessment conclusions.

This is a hybrid position. Expectation of days in office will be confirmed by your hiring manager.

Basic Qualifications:
•Bachelors degree, OR 3+ years of relevant work experience

Preferred Qualifications:
•2 or more years of work experience
•Bachelor’s degree in computer science, Information Systems, Management Information Systems, or Business Administration or another related field.
•1-3 years of work experience in Information Security, Audit, Risk, and/or Compliance
oOpen to experience in other relevant fields (e.g., finance, business administration, information technology, etc.) if candidate can demonstrate relevancy to this Information security-based role
•Experience working with multiple individuals on internal and external delivery
•Exceptional communication skills - both written and verbal to support compliance and certification audits
•Must be extremely flexible and able to manage multiple tasks and priorities on very tight deadlines.
•Experience in Audit/Compliance/Regulatory discussions and proactive readiness activities in a large global financial institution or a matrix organization
•2 years of direct participation and experience across common industry security policy areas, including, but not limited to ISO, NIST, COSO, COBIT, PCI, RBI Regulations, SOX, SSAE16/ISAE3402, SOC 2 and others
•Providing ongoing gap analysis of current policies, practices, and procedures as they relate to established guidelines outlined by Industry standards
•Demonstrated ability to create, manage, and share interactive dashboards and reports using Microsoft PowerBI or other data analysis tool.
•Working knowledge in extracting, cleaning, and processing data from various sources including databases, APIs, and flat files.
•Familiarity in Risk and Control Self-Assessment activities related to Cybersecurity function.
•High level of integrity and professionalism
•CISSP, CISA, CISM, PCI QSA/ISA Certifications preferred

Work Hours: Varies upon the needs of the department.

Travel Requirements: This position requires travel 5-10% of the time.

Mental/Physical Requirements: This position will be performed in an office setting.  The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.

Visa is an EEO Employer.  Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.  Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.

U.S. APPLICANTS ONLY: The estimated salary range for a new hire into this position is 84,600.00 to 119,650.00 USD per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401 (k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.