Cybersecurity Engineer at Visa

About Us
Visa is a world leader in payments technology, facilitating transactions between consumers, merchants, financial institutions and government entities across more than 200 countries and territories, dedicated to uplifting everyone, everywhere by being the best way to pay and be paid.

At Visa, you'll have the opportunity to create impact at scale — tackling meaningful challenges, growing your skills and seeing your contributions impact lives around the world.

Join Visa and do work that matters – to you, to your community, and to the world. Progress starts with you.

Job Description

As a member of Visa's Cybersecurity Engineering organization, the Analyst / Team Lead contributes to the development and delivery of internal enterprise security platforms that support application security, governance, risk, and compliance operations across Visa's global portfolio. This role sits at the intersection of full-stack software development, AI-assisted security workflows, and security program execution—building tooling used by internal security teams to surface vulnerabilities, validate controls, and drive compliance at scale.

The position requires both hands-on technical execution and strong cross-functional collaboration. The successful candidate will contribute to backend services, agentic AI pipelines, data ingestion workflows, and analyst-facing dashboards, while working closely with AppSec, GRC, and engineering stakeholders to translate security program requirements into working software. Team Lead candidates will additionally be responsible for guiding a small team of analysts and engineers through delivery.

Essential Functions:

• Contribute to the development of internal security platforms spanning backend services, REST APIs, and web-based analyst dashboards used by Cybersecurity and GRC teams.
• Build and maintain agentic AI pipelines that use LLMs, RAG architectures, and MCP-based tooling to automate security analysis, control validation, and evidence collection workflows.
• Develop and maintain document ingestion and data processing pipelines that ingest structured and unstructured security artifacts (policies, audit evidence, scan outputs) into internal platforms.
• Design and implement analyst-facing reporting and triage interfaces that surface security findings, compliance posture, and risk indicators to internal stakeholders.
• Leverage Generative AI (GenAI) tooling and automation to reduce manual effort in security operations, findings review, and compliance reporting workflows.
• Develop and maintain automation scripts and workflows (Python, Go, or TypeScript) to streamline data collection, validation, and platform operations.
• Collaborate with AppSec, GRC, and M&A Integration teams to understand program requirements and translate them into platform features and data models.
• Evolve backend data schemas and storage models to support new analytical capabilities as platform scope and data volumes grow.
• Track and report on platform health, adoption metrics, and delivery KPIs for internal stakeholders and engineering leadership.
• Ensure platform development adheres to Visa's secure development standards, data handling policies, and applicable regulatory requirements (PCI DSS, NIST, ISO 27001).
• Drive technical direction for a small team, run sprint ceremonies, conduct code reviews, and serve as the primary engineering point of contact for internal security stakeholders.

Visa requires at least 3 days in office, expectations of these days will be confirmed by your Hiring Manager.

Qualifications

Basic Qualifications:

• 2+ years of relevant work experience and a Bachelors degree, OR 5+ years of relevant work experience

Preferred Qualifications:

• 3 or more years of work experience with a Bachelor’s Degree or more than 2 years of work experience with an Advanced Degree (e.g. Masters, MBA, JD, MD)
• Degree in Computer Science, Information Systems, Cybersecurity, or a closely related discipline.
• Proficiency in one or more of: **Python**, **Go**, **TypeScript/JavaScript**—with demonstrated ability to work across a polyglot stack.
• Experience building or maintaining web applications using modern frameworks such as **Next.js / React** and backend services with **FastAPI**, **Node.js**, or equivalent.
• Hands-on experience with **Generative AI** tooling—LLM API integration, prompt engineering, RAG pipeline development, or agent orchestration frameworks (LangChain, CrewAI, or similar).
• Working knowledge of application security or GRC domains: OWASP, vulnerability management, control frameworks (NIST 800-53, ISO 27001, PCI DSS), or compliance automation.
• Familiarity with asynchronous task infrastructure and message queue systems (Redis, Celery, or equivalent).
• Experience with relational databases (**PostgreSQL** or similar), SQL fundamentals, and data modeling.
• Experience with containerized development environments using **Docker** and Docker Compose.
• Familiarity with ticketing and workflow tools such as **JIRA** and **ServiceNow**.
• Strong ability to work independently with minimal supervision while collaborating effectively across engineering and security program teams.
• Excellent communication and organizational skills with a demonstrated ability to manage competing priorities and deliver on commitments.
• Prior experience mentoring or leading a small technical team, managing sprint delivery, and communicating technical trade-offs to non-engineering stakeholders.
• Industry certifications such as Security+, SSCP, CISSP, or equivalent are a plus.

U.S. Applicants Only

The estimated salary range for this position is $123,700.00 to $ 191,300.00 USD per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity.Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401(k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.

Work Hours

Varies upon the needs of the department.

Travel Requirements

This position requires travel 5-10% of the time.

Mental/Physical Requirements

This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.

Visa is an EEO Employer