*This position can be located in either Foster City, CA or Ashburn, VA*
Visaās Cyber Security team is seeking a Cyber Security Engineer to design, build, and operate largeāscale, cloudānative and AIādriven security platforms that protect Visaās global brand, networks, products, and data. This role combines handsāon engineering, automationāfirst security design, and technical leadership in a highly dynamic, highāimpact environment.
The ideal candidate is a strong security engineer and problem solver with deep experience in Pythonābased services, cloud security engineering, APIādriven architectures, and automation, and who is excited to apply GenAI and autonomous agent technologies to modern security challenges.
This role plays a critical part in reducing timeātoādetect (TTD) and timeātoāremediate (TTR) by driving intelligent automation, threat intelligence enrichment, and policyāasācode across Visaās multiācloud ecosystem.
Key Responsibilities:
Security Engineering & Platform Development:
- Design, develop, and operate largeāscale cyber security platforms that deliver detection, prevention, and response capabilities across cloud and hybrid environments.
- Build cloudānative, APIāfirst security services using Python and modern web service frameworks.
- Develop and expand security integration frameworks to interconnect SIEM, CSPM, CNAPP, IAM, network security, and threat intelligence platforms.
- Drive security automation to minimize manual intervention and accelerate incident response workflows.
GenAI & Agentic Security Capabilities:
- Design and implement GenAIāpowered security workflows, including:
- Autonomous agents for cloud misconfiguration analysis, policy validation, and remediation recommendations
- AIāassisted threat triage, alert summarization, and rootācause analysis
- Intelligent enrichment of security signals using applied threat intelligence
- Build and operate agentic systems that can reason across telemetry, policies, and infrastructure state to propose or execute remediation actions safely.
- Evaluate and adopt emerging LLM, agent orchestration, and AI governance frameworks for enterpriseāgrade security use cases.
- Ensure secure, compliant, and auditable use of GenAI, including data handling, prompt safety, access controls, and model risk considerations.
Cloud Security & Automation:
- Engineer and enforce cloud security controls across AWS, Azure, and/or GCP in largeāscale enterprise environments.
- Implement InfrastructureāasāCode (IaC) and automation frameworks to provision and manage security controls using tools such as Terraform.
- Drive PolicyāasāCode and Guardrails, authoring and maintaining policies using:
- OPA/Rego or Sentinel, AWS Service Control Policies (SCP), Azure Policy, GCP Organization Policies
- Integrate GitOpsābased promotion pipelines (dev ā test ā prod) with secure remote state management and drift detection.
Threat Detection, Response & Posture Management:
- Reduce timeātoādetect and timeātoāremediate by automating:
- Threat intelligence ingestion and correlation
- Sensor enrichment and contextual risk scoring
- Design and operate cloud security posture management (CSPM/CNAPP) capabilities using platforms such as Wiz, Prisma Cloud, or Microsoft Defender for Cloud.
- Work across multiple security domains including:
- Cloud firewalls and security groups, DDoS protection, Network proxies, Cloudānative SIEM platforms (e.g., ADX, Sumo Logic)
Architecture, Innovation & Leadership:
- Lead technical design discussions and translate business requirements into secure, scalable architectures.
- Conduct proofāofāconcepts (POCs) for new technologies, tools, and architectures, evaluate feasibility and drive production adoption.
- Stay current with emerging cloud, security, and AI technologies, proactively assessing their applicability within Visa.
- Act as a technical leader and mentor, raising the engineering and security maturity of the team.
- Contribute to project planning, including cost estimation, timelines, and risk assessment for new security initiatives.
This is a hybrid position. Expectation of days in office will be confirmed by your hiring manager.