Senior Consultant Cyber Security Analyst

Foster City, CA, United States

Applications have closed

Visa

Das digitale und mobile Zahlungsnetzwerk von Visa steht an der Spitze der neuen Zahlungstechnologien für die neue Zahlung, elektronische und kontaktlose Zahlung, die die Welt des Geldes bilden

View company page

Company Description

Visa is a world leader in digital payments, facilitating more than 215 billion payments transactions between consumers, merchants, financial institutions and government entities across more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable and secure payments network, enabling individuals, businesses and economies to thrive.

When you join Visa, you join a culture of purpose and belonging – where your growth is priority, your identity is embraced, and the work you do matters. We believe that economies that include everyone everywhere, uplift everyone everywhere. Your work will have a direct impact on billions of people around the world – helping unlock financial access to enable the future of money movement.

Join Visa: A Network Working for Everyone.

Job Description

This high impact, high visibility position is part of Payment Systems Intelligence (PSI) a key component of Global Risks Payment Fraud Disruption (PFD) initiative. PFDs team of technology experts are vital to Visa efforts to identify, investigate, disrupt, and prevent attacks targeting the global payment ecosystem. This Sr. Consultant role will guide the execution of key Payment Systems Intelligence capabilities, including Visa Payment Threats Lab (VPTL) and eCommerce Threat Disruption as part of PFD services for Visa clients.

Responsibilities include executing these capabilities' strategies, engaging clients globally, and successfully executing against the client engagement plan. In addition, as a part of the PSI team, the lead will identify new and novel methods that fraudsters are using to target Visa clients and the ecosystem and develop innovative approaches to disrupt emerging fraud and security vulnerabilities affecting Visa clients and the payments ecosystem.

The primary focus for this role is the Visa Payment Threats Lab (VPTL) and eCommerce Threat Disruption (eTD). These capabilities are sought-after differentiators in Visa Risk offering. VPTL is a key part of Visa's ongoing efforts to stay ahead of organized crime groups and has already received high accolades from Visa clients.  Building and leading this important offering requires advanced knowledge of payments systems and fraud techniques, as well as the ability to identify and disrupt evolving attack trends.  In addition, VPTL requires regular interaction with executive members of Visa's most valued client base to discuss and advise on their most sensitive security issues.

The main objective of the eCommerce Threat Disruption program is to narrow the gap between detection and prevention of eCommerce compromises.  Key measures of success for this position include reduced successful cyber fraud targeting the eCommerce space (primarily merchants) for a specific Visa client, the ability to support early identification of eCommerce merchant compromises for a Visa client, rapid response, triage and analysis of technical malware targeting the eCommerce space, analyzing forensic reports, and supporting efforts to investigate criminals operations targeting the ecosystem.  This role requires a recognized expert with a capacity to solve unique and complex problems that have a broad impact on the business, coordinate closely with client executives, and the ability to present technical, transaction-level findings to clients and executive leadership.

Primary Responsibilities

  • Coordinate closely with Visa executive and technical colleagues to carry out Payment Threats Lab tests for a specific client, to include full coordination and prioritization of tests with Visa Regional teams and Risk Managers
  • Execute Visa Payment Threats Lab exercises, coordinate test coverage, manage VPTL executive report delivery and presentation with clients
  • Work independently, under limited supervision, on problems that are undefined and significantly complex
  • Conduct threat research to identify emerging fraud trends and reproduce results in a simulated production environment
  • Collaborate with internal and external stakeholders on various fraud issues and produce fraud mitigation strategies to include vulnerability assessments
  • Contribute and participate in all stages of advanced fraud and cybercrime simulation, understanding and researching fraud attacks on the payments ecosystem from multiple phases, including planning, recon, exploitation, post-exploitation, clean up and remediation
  • Execute eTD on behalf of a Visa client, ensuring daily monitoring and scanning of the client's eCommerce merchants.
  • Identification of malicious digital infrastructure (command and control domains IP addresses) associated with malware compromising eCommerce merchants
  • Identification of compromised eCommerce merchants for the Visa client
  • Triage and analysis of forensic investigation reports, identification of technical correlations between the reports, and ability to develop digital infrastructure maps (domains, IPs, malware variants) of overlapping cybercrime operations.
  • Monthly reporting to the Visa client on identified compromises and remediation recommendations
  • Provide intelligence and technical analysis support to the Payment Systems Intelligence team

Secondary Responsibilities:

  • Serve as team subject matter expert in all areas involving payment fraud analysis
  • Identify the extraordinary in the ordinary, pinpoint and disrupt complex fraud schemes, and manage identification and reporting of fraud attacks
  • Identify emerging cybercrime and fraud techniques in a fast-paced, highly technical environment
  • Understand network and system vulnerabilities and provide recommended counter measures or mitigating controls to reduce payments risk to an acceptable and manageable level
  • Identify new fraud and cybercrime threats to the payments ecosystem and communicate them to relevant industry and client stakeholders 
  • Triage and analyze forensic investigation reports, identify technical correlations between the reports, and develop digital infrastructure maps (Domains, IPs, Device IDs, malware variants) of overlapping cybercrime operations, development, implementation, and post-implementations phases
  • Conduct all-source analysis of cybercrime and fraud tools, methods, and attacks in order to communicate these threats to internal Visa partners and external clients
  • Create and provide top-notch presentations to client audiences on cybercrime and fraud threats impacting the payments ecosystem

Qualifications

Basic Qualifications:

  • 8 or more years of relevant work experience with a Bachelor’s Degree or at least 5 years of experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or 2 years of work experience with a PhD

Preferred Qualifications:

  • Seasoned and recognized fraud payments and risk security expert, with 8+ years of industry experience or equivalent combination of education and experience
  • Excellent written, oral and presentation skills and an ability to synthesize information and make clear, concise recommendations on course of action
  • Moderate understanding of networks, risk management, network security, digital forensics, and security operations
  • Superior knowledge of payment risk and cyber-security practices with direct experience in developing and implementing policies and risk frameworks
  • Expert knowledge in malware families and latest payment system attack trends
  • Advanced knowledge of information security standards and best practices (e.g PCI, EMV, NIST)
  • Excellent written, oral and presentation skills and an ability to synthesize information and make clear, concise recommendations on course of action
  • Proven ability to successfully manage fraud operational risk programs within the payment industry and or regulatory environment
  • Ability to keep pace with demands of business by anticipating problems, proffering appropriate solutions, and tenacious leadership to effectively implement change
  • Capable of leading multiple high-complexity, high priority initiatives concurrently, consistently delivering superior results
  • A clear record of strategic thinking, sound judgment and superior problem solving
  • Ability to conduct complex analytical functions by performing fraud assessments and analyzing criminal methods
  • Knowledge of transactions, systems processing transactions and overall transaction process.
  • Proficient knowledge of red, purple, and blue teams able to articulate and demonstrate ethical hacking principles in a proper manner to protect payment ecosystem partners from fraud and abuse
  • Proficiency with authoring detailed technical reports
    Knowledge of transactions, systems processing transactions and overall transaction process
  • Concepts, terms, processes, policy, and implementation of information security
  • Cybersecurity knowledge and experience
  • Intelligence databases and analytical tools or similar intelligence reporting systems
  • Analysis of cyber threat intelligence and fraud intelligence
  • CISSP, CHFI, CEH, GIAC, Security Plus certifications

Additional Information

Visa has adopted a COVID-19 vaccination policy to safeguard the health and well-being of our employees and visitors. As a condition of employment, all employees based in the U.S. are required to be fully vaccinated for COVID-19, unless a reasonable accommodation is approved or as otherwise required by law.

Work Hours: Varies upon the needs of the department.

Travel Requirements: This position requires travel 5-10% of the time.

Mental/Physical Requirements: This position will be performed in an office setting.  The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.

Visa is an EEO Employer.  Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.  Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.

U.S. APPLICANTS ONLY: The estimated salary range for a new hire into this position is 142,300.00 to 185,000.00 USD, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401 (k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: CEH CHFI CISSP Cyber crime E-commerce Ecommerce Ethical hacking Forensics GIAC IDS IPS Malware Monitoring Network security NIST PhD Risk management Threat intelligence Threat Research Vulnerabilities

Perks/benefits: Equity Health care Insurance Salary bonus Startup environment Wellness

Region: North America
Country: United States
Job stats:  11  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.