Cybersecurity Analyst

Company Description

Visa is a world leader in digital payments, facilitating more than 215 billion payments transactions between consumers, merchants, financial institutions and government entities across more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable and secure payments network, enabling individuals, businesses and economies to thrive.

When you join Visa, you join a culture of purpose and belonging – where your growth is priority, your identity is embraced, and the work you do matters. We believe that economies that include everyone everywhere, uplift everyone everywhere. Your work will have a direct impact on billions of people around the world – helping unlock financial access to enable the future of money movement.

Join Visa: A Network Working for Everyone.

Job Description

What is it all about?

Cybersecurity is at the beating heart of our culture. Our diligence and expertise is what makes us the undisputed leader in electronic payments.  We have made it our priority to create top-tier security operations and incident response teams, poised to defend us against any potential cyber threats.  

We are looking for those of you who are inherently driven and fascinated by the art and science of cyber defence. We will arm you with the very best tools and tech so that you can deliver top notch results. 

Development underpins job fulfilment at Visa. As Cyber Defense Analyst, you will be enthused by getting stuck into various defense and security sector related projects, as well as the chance to work with people from a range of disciplines, as well as colleagues and clients at every level.

Responsibilities -

• Monitor Information Security alerts using Security Information and Event Management (SIEM) to triage, mitigate, and escalate issues as needed while capturing essential details and artifacts.
• Utilize sensor data and correlated logs containing Windows events, AV, IDS, Web Proxy, and similar sensor data to establish context and rule out false positives.
• Mitigate and contain identified threats using approved incident response methodologies. Initiate escalation procedures and incident response processes as defined in operational plan.
• Perform analysis of security alerts to evaluate risk, determine containment action and identify required preventative measures.
• Ensure proper documentation of security incidents including attack details.
• Interact and aid other investigative teams within Visa on time sensitive and critical investigations.
• Provide feedback to peer teams to enhance security sensor and improve detection capabilities.
• Contribute to identifying process improvement opportunities to enhance security incident response process.
• Respond to incoming reports of potential security incidents from internal employees and external partners.
• This position is staffed in shifts supporting a 24x7x365 global security operations center. Analysts work a series of 12-hour shifts (followed by days off) or 8-hour shifts. Staff assigned to the operations center are considered critical and may need to cover holidays and weekends, if scheduled.

 

Qualifications

• Security Operations Center (SOC) work experience.
• Relevant security-related certifications a plus CISSP, GCIH, GCIA, GCED, GCFA, CySA.
• Proven experience in relevant areas, such as incident response, intrusion analysis, malware analysis, web application security or security engineering.
• Knowledge of malware families and network attack vectors.
• Solid understanding of TCPIP and internetworking technology including packet analysis, routing and network security defenses.
• Knowledge of operating systems (Windows and Linux), network services and applications.
• Working knowledge of common security tools such as SIEM, AV, WAF, IDS, Netflow, Packet Analyzer and Endpoint Detection and Response tools.
• Knowledge of web applications security risk including cross-site scripting, cross-site request forgery, SQL injection, DoS attacks and API attacks.
• Strong understanding of DDoS attack techniques and countermeasures.
• Excellent problem solving skills, with tenacity and resilience to resolve issues.
• Excellent communication and collaboration skills.
• Working knowledge of cloud technologies and related security best practices.

Additional Information

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.