Vacancy expired!
Overview:Information security is an integral part of Visa's corporate culture. It is essential to maintaining our position as an industry leader in electronic payments, which is why Visa has made it a priority to create top-tier security operations and incident response teams to defend the company against evolving cyber threats. If you would like to join a company where security is truly valued, where you can work with like-minded peers who are passionate about the art & science of cyber defense, and where you can use state of the art tools for maximum impact, then we have a home for you.The successful candidate will be a senior member in a team of incident responders at one of Visa's Cyber Fusion Centers located in Ashburn, VA. The team is part of a larger organization located across multiple geographical sites that are responsible for the comprehensive cyber defense of Visa and its subsidiaries.Responsibilities: Mitigate and contain identified threats using approved incident response methodologies.Initiate escalation procedures and incident response processes as defined in operational plan.Provide subject matter expertise as an escalation point for security incidents to ensure proper assessment, containment and mitigation is taken in daily security incident response operation.Be a technical lead contributor to high-severity incident response efforts which involve multiple teams in order to reach containment, primarily aiding in incident analysis and reporting. Provide mentorship to improve technical capabilities of junior analysts within the sub-function.Perform threat hunting and alert trend analysis to find inconspicuous threats. Identify trends, potential new technologies, and emerging threats which may impact the business.Operationalize actionable Threat Intelligence reports from internal and external sources.Assist with the security monitoring enrollment process to ensure adequate coverage and effectiveness of all new and existing cloud and on-premise based applications, services and platforms.Facilitate the development and tuning of detection use-cases to support enrollments and ensure high fidelity alerting in SIEM.Work closely with other cross-functional teams within Cybersecurity to identify gaps and improve cybersecurity postureDevelop and review Incident Response Playbooks and SOPs to streamline incident response strategy and action across IR team.Work with colleagues in other technology departments as well as the business and product offices to establish effective, productive business relationships.This is a hybrid position. Hybrid employees can alternate time between both remote and office. Employees in hybrid roles are expected to work from the office three days a week, Monday through Wednesday, with a general guidepost of being in the office 50% of the time based on business needs.
Vacancy expired!