Cyber Security Engineer, Cloud Security and Automation - Sr. Consultant level

About the position Visa’s Cyber Security team is seeking a Cyber Security Engineer to design, build, and operate large‑scale, cloud‑native and AI‑driven security platforms that protect Visa’s global brand, networks, products, and data. This role combines hands‑on engineering, automation‑first security design, and technical leadership in a highly dynamic, high‑impact environment. The ideal candidate is a strong security engineer and problem solver with deep experience in Python‑based services, cloud security engineering, API‑driven architectures, and automation, and who is excited to apply GenAI and autonomous agent technologies to modern security challenges. This role plays a critical part in reducing time‑to‑detect (TTD) and time‑to‑remediate (TTR) by driving intelligent automation, threat intelligence enrichment, and policy‑as‑code across Visa’s multi‑cloud ecosystem.

Responsibilities

• Security Engineering & Platform Development:
• Design, develop, and operate large‑scale cyber security platforms that deliver detection, prevention, and response capabilities across cloud and hybrid environments.
• Build cloud‑native, API‑first security services using Python and modern web service frameworks.
• Develop and expand security integration frameworks to interconnect SIEM, CSPM, CNAPP, IAM, network security, and threat intelligence platforms.
• Drive security automation to minimize manual intervention and accelerate incident response workflows.
• GenAI & Agentic Security Capabilities:
• Design and implement GenAI‑powered security workflows, including:
• Autonomous agents for cloud misconfiguration analysis, policy validation, and remediation recommendations
• AI‑assisted threat triage, alert summarization, and root‑cause analysis
• Intelligent enrichment of security signals using applied threat intelligence
• Build and operate agentic systems that can reason across telemetry, policies, and infrastructure state to propose or execute remediation actions safely.
• Evaluate and adopt emerging LLM, agent orchestration, and AI governance frameworks for enterprise‑grade security use cases.
• Ensure secure, compliant, and auditable use of GenAI, including data handling, prompt safety, access controls, and model risk considerations.
• Cloud Security & Automation:
• Engineer and enforce cloud security controls across AWS, Azure, and/or GCP in large‑scale enterprise environments.
• Implement Infrastructure‑as‑Code (IaC) and automation frameworks to provision and manage security controls using tools such as Terraform.
• Drive Policy‑as‑Code and Guardrails, authoring and maintaining policies using:
• OPA/Rego or Sentinel, AWS Service Control Policies (SCP), Azure Policy, GCP Organization Policies
• Integrate GitOps‑based promotion pipelines (dev → test → prod) with secure remote state management and drift detection.
• Threat Detection, Response & Posture Management:
• Reduce time‑to‑detect and time‑to‑remediate by automating:
• Threat intelligence ingestion and correlation
• Sensor enrichment and contextual risk scoring
• Design and operate cloud security posture management (CSPM/CNAPP) capabilities using platforms such as Wiz, Prisma Cloud, or Microsoft Defender for Cloud.
• Work across multiple security domains including:
• Cloud firewalls and security groups, DDoS protection, Network proxies, Cloud‑native SIEM platforms (e.g., ADX, Sumo Logic)
• Architecture, Innovation & Leadership:
• Lead technical design discussions and translate business requirements into secure, scalable architectures.
• Conduct proof‑of‑concepts (POCs) for new technologies, tools, and architectures, evaluate feasibility and drive production adoption.
• Stay current with emerging cloud, security, and AI technologies, proactively assessing their applicability within Visa.
• Act as a technical leader and mentor, raising the engineering and security maturity of the team.
• Contribute to project planning, including cost estimation, timelines, and risk assessment for new security initiatives.

Requirements

• 8+ years of relevant work experience with a Bachelor’s Degree or at least 5 years of experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or 2 years of work experience with a PhD, OR 11+ years of relevant work experience.

Nice-to-haves

• 9 or more years of relevant work experience with a Bachelor Degree or 7 or more relevant years of experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or 3 or more years of experience with a PhD
• Cloud & Security Expertise
• Strong domain expertise in cloud security engineering within multi‑cloud enterprise environments (AWS, Azure, and/or GCP).
• Expert‑level certification in at least one major cloud platform.
• Hands‑on experience migrating applications to the cloud and implementing cloud‑native security controls at scale.
• Proven ability to design and implement new security controls based on risk assessments, gaps, and regulatory requirements.
• GenAI, Automation & Engineering:
• Demonstrated experience building GenAI solutions and autonomous agents for cloud security engineering or security operations.
• Strong programming skills in Python (preferred) or Go, with experience in building production‑grade services.
• Expertise in IaC, automation, and GitOps workflows, including secure state management and drift detection.
• Experience with policy‑as‑code and enterprise guardrail enforcement.
• Operational & Leadership Skills:
• Ability to independently drive POCs, own implementations end‑to‑end, and transition solutions into production.
• Experience assisting with cost modeling, timelines, and delivery planning for security initiatives.
• Strong understanding of threat management, vulnerability management, and cloud security posture management.
• Excellent communication, collaboration, and technical leadership skills, with the ability to influence across teams.

Benefits

• Medical
• Dental
• Vision
• 401 (k)
• FSA/HSA
• Life Insurance
• Paid Time Off
• Wellness Program

Apply tot his job Apply To this Job