Cyber Security is an integral part of Visa’s corporate culture and essential to maintaining our position as an industry leader in electronic payments. Visa has made it a priority to create top-tier security operations and engineering teams to defend the company against evolving cyber threats. If you would like to join a company where security is truly valued – where you can work with like-minded peers passionate about the art and science of cyber defense, and where you can leverage cutting-edge technologies (including AI-powered tools) for maximum impact – then we have a home for you.

The successful candidate will work with the Server Security Controls team, which provides comprehensive visibility and security controls for systems, virtual machines, and containers across various on-premises data centers, cloud environments, and M&A integrations. Our team identifies, deploys, integrates, and improves security technologies that enable Cyber Defense to receive actionable alerts, perform investigations, and ensure active defense against threats.

What Our Team Does

The Server Security Controls team is responsible for:

• Deploying and managing enterprise-wide server security tools across data centers, cloud environments, and acquisition integrations.

• Maintaining micro-segmentation capabilities to enforce zero-trust network policies.

• Monitoring file integrity across critical systems to detect unauthorized changes.

• Operating malware analysis infrastructure for threat intelligence and investigation.

• Detecting and misleading adversaries (deception technologies) targeting our infrastructure.

• Collaborating with peer security teams to optimize complementary controls and ensure defense-in-depth.

• Providing actionable security telemetry to Cyber Defense teams for threat detection and incident response.

• Continuously improving security posture through tool optimization, automation, and integration.

Essential Functions

• Deploy, configure, and maintain server security controls including micro-segmentation, file integrity monitoring, malware analysis platforms, and deception technology.

• Monitor security tool health, performance, and coverage across on-premises, cloud, and container environments.

• Respond to and troubleshoot technical issues with security agents and infrastructure.

• Perform routine maintenance, upgrades, and patching of security platforms.

• Integrate security tools with existing security infrastructure (SIEM, SOAR, ticketing systems).

• Develop and maintain automation scripts and workflows to improve operational efficiency.

• Leverage AI and machine learning capabilities within security tools to enhance detection and response.

• Collaborate with cloud, infrastructure, and application teams to ensure seamless security control deployment.

• Analyze alerts and telemetry from server security controls to identify potential security incidents.

• Perform malware analysis to understand threat capabilities and develop countermeasures.

• Investigate file integrity monitoring alerts to distinguish legitimate changes from potential compromises.

• Review outputs from deception technology to identify attacker tactics, techniques, and procedures (TTPs).

• Create and maintain technical documentation, runbooks, and standard operating procedures.

• Develop detection cases and fine-tune rules to maximize value from security tools.

• Participate in security tool evaluations and proof-of-concept testing.

• Identify process improvement opportunities and efficiency gains.

• Support security projects including M&A integrations and new environment buildouts.

• Serve as a technical point of contact for inquiries regarding server security controls.

• Work closely with Cyber Defense teams to ensure effective alert triage and investigation.

• Partner with peer security engineering teams on integrated security solutions.

• Provide regular status updates and reports on security control effectiveness.

This is a hybrid position. Expectation of days in the office will be confirmed by your Hiring Manager. 

Basic Qualifications:

• Bachelors degree, OR 3+ years of relevant work experience.

Preferred Qualifications:

• Basic understanding of Linux and/or Windows operating system administration, including the command line.
• Demonstrated ability to use AI tools and technologies for problem-solving and productivity enhancement.
• Fundamental knowledge of networking concepts (e.g., TCP/IP, firewalls, routing).
• Strong analytical and problem-solving skills.
• Excellent communication skills, both written and verbal.
• Ability to work effectively in a team environment.
• Experience with Linux/Unix system administration or scripting (e.g., Python, Bash, PowerShell).
• Exposure to cloud platforms (AWS, Azure, GCP) and containerization technologies (Docker, Kubernetes).
• Familiarity with security tools and platforms such as SIEM, EDR, IDS/IPS, or other security monitoring systems.
• Understanding of security frameworks and standards (e.g., NIST CSF, CIS Controls, MITRE ATT&CK).
• Understanding of network segmentation, zero-trust security, and micro-segmentation.
• Knowledge of host-based security and endpoint protection (e.g., file integrity monitoring, malware protection).
• Basic understanding of malware analysis or threat intelligence techniques.
• Relevant security certifications or progress toward certification (e.g., Security+, CySA+, CEH, GCIA).
• Experience with automation, scripting, or infrastructure-as-code (DevOps/DevSecOps practices).
• Internship or academic project experience in cybersecurity.
• Understanding networking concepts, protocols, and security principles.
• Ability to quickly learn and adapt to new security technologies.
• Analytical mindset with strong problem-solving capabilities.
• Understanding of cyber threats, attack vectors, and defense strategies.
• Curiosity about how systems can be compromised and how to protect them.
• Proactive approach to identifying security gaps and improvement opportunities.
• Ability to explain technical concepts to both technical and non-technical audiences.
• Strong written communication skills for documentation and reporting.
• Team-oriented mindset with willingness to support peers and cross-functional teams.
• Eagerness to learn and develop expertise in specialized security domains.
• Comfort with ambiguity and changing priorities in a dynamic environment.
• Initiative to seek out knowledge and professional development opportunities.
• Ability to leverage AI tools and capabilities to enhance productivity and problem-solving.
• Understanding of how AI/ML can be applied to cybersecurity challenges.
• Willingness to explore and adopt emerging AI-powered security technologies.

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.