AG真人百家乐

Candidate will develop, support, tune and deploy security solutions across Visa.

听

Essential Functions:

• Web听Application Security: Engineering, deployment, and operations of security solutions, including Web Application Firewalls, as well as integration of those platforms with other solutions as required.听

• Security Software Development: Scripting and Development in听Python, Shell听scripting and development in other languages.

• Engineers, configures, deploys, and maintains Web Application Firewall solutions听

• Develops scripts for manipulation of multiple data repositories to support analysts

• Develops alerts/reports to meet the requirements of key stakeholders听

• Develops automation for security tools management and workflow integration听

• Collaboration with key stakeholders within Cybersecurity Engineering teams to develop specific use cases to address web and application security requirements

• Creates WAF rules to mitigate threats and implement security best practices听

• Develop and enhance SIEM content for Cybersecurity听teams,听including听correlations, enrichments, dashboards, reports, and alerts that appropriately illustrate and characterize web application attacks and mitigation mechanisms听

听

Application Security:听

• Knowledge of SSDLC processes, procedures, and tools

• Knowledge of open source and commercial application security tools and frameworks, including but not limited to Kali Web application testing tools听

• Experience in exploiting web apps and web services security vulnerabilities including cross-site scripting, cross-site request forgery, SQL injection, DoS attacks, XML/SOAP, and API attacks

• Excellent understanding of OWASP Risks, Vulnerabilities and Mitigation Mechanisms听

• Strong experience with Web Application Firewall management and rules听

• Excellent understanding of common network and web protocols听

• Excellent understanding of DDoS, Bot, and ATO techniques and mitigation mechanisms听

Cyber Defense and Incident Response:听

• Solid understanding of events, related fields in log records and alerts reported by various data sources such as Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies听

• Prior experience or support of Security Operations and Incident Response

• Excellent understanding of Cyber Security Operations and Incident Response processes听

Infrastructure management and support:听

• System administration experience with Windows and Unix servers听

• Experience working in a large enterprise environment听

• Experience integrating solutions in a multi-vendor environment听

• Familiarity with Atlassian JIRA听

听

This is a hybrid position. Hybrid employees can alternate time between both remote and office. Employees in hybrid roles are expected to work from the office 2-3 set days a week (determined by leadership/site), with a general guidepost of being in the office 50% or more of the time based on business needs.

Basic Qualifications:
鈥�5+ years of relevant work experience with a Bachelor鈥檚 Degree or at least 2 years of work experience with an Advanced degree (e.g. Masters, MBA, JD, MD) or 0 years of work experience with a PhD, OR 8+ years of relevant work experience.

Preferred Qualifications:
鈥� 6 or more years of work experience with a Bachelor鈥檚 Degree or 4 or more years of relevant experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or up to 3 years of relevant experience with a PhD
鈥� Experience with one or more: Akamai, AWS Cloudfront, Cloudflare, or other CDN solutions
鈥� Experience with one or more of the following: Imperva WAF, F5 WAF, and CDN Firewall
鈥� Experience with API Security solutions such as Imperva API Anywhere, Cloudflare API Shield, or other similar solutions.
鈥� Web Application Firewall Experience (Must have), Experience with one or more of the following:
- SecDevOps Experience:
鈥� Expertise in one or more of the following: Python, Perl, shell scripting, C++, Java, Java Script
鈥� Excellent experience in creating Regular Expressions for security polices and rules
鈥� Experience in maintaining and enhancing infrastructure as code with one or more of the following: CloudFormation, Terraform, Chef, Puppet, Jenkins, CodeDeploy
鈥� Experience with using knowledge management and code repositories with Github, Gitlab, Jira, and Confluence
鈥� Experience with Lambda, API Gateway
鈥� Experience with API Security solutions such as Imperva API Anywhere, Cloudflare API
Shield, or other similar solutions.

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.