Lead Cybersecurity Engineer

About Us

Visa is a world leader in payments technology, facilitating transactions between consumers, merchants, financial institutions and government entities across more than 200 countries and territories, dedicated to uplifting everyone, everywhere by being the best way to pay and be paid.

At Visa, you'll have the opportunity to create impact at scale – tackling meaningful challenges, growing your skills and seeing your contributions impact lives around the world.

Join Visa and do work that matters – to you, to your community and to the world. Progress starts with you.

Visa's Cyber Security team is seeking a Cloud Security Architect with an automation‑first mindset to design, build, and operate large‑scale, cloud‑native and AI‑driven security platforms that protect Visa's global brand, networks, products, and data. This role combines hands‑on engineering, automation‑first security design and technical leadership in a highly dynamic, high‑impact environment.

The ideal candidate is a strong cloud security engineer and problem solver with deep experience in Python‑based services, cloud security engineering, API‑driven architectures, and automation, and who is excited to apply GenAI and autonomous agent technologies to modern security challenges.

This role plays a critical part in reducing time‑to‑onboard workload, time‑to‑detect (TTD) and time‑to‑remediate (TTR) by driving intelligent automation, threat‑intelligence enrichment and policy‑as‑code across Visa's multicloud ecosystem.

• Design, develop, and operate large‑scale cyber security platforms that deliver detection, prevention, and response capabilities across cloud and hybrid environments.
• Build cloud‑native, API‑first security services using Python and modern web service frameworks.
• Develop and expand security integration frameworks to interconnect SIEM, CSPM, CNAPP, IAM, network security, and threat intelligence platforms.
• Drive security automation to minimize manual intervention and accelerate incident response workflows.

• Design and implement GenAI‑powered security workflows, including:
  • Autonomous agents for cloud misconfiguration analysis, policy validation, and remediation recommendations
  • AI‑assisted threat triage, alert summarization, and root‑cause analysis
  • Intelligent enrichment of security signals using applied threat intelligence
• Build and operate agentic systems that can reason across telemetry, policies, and infrastructure state to propose or execute remediation actions safely.
• Evaluate and adopt emerging LLM, agent orchestration, and AI governance frameworks for enterprise‑grade security use cases.
• Ensure secure, compliant, and auditable use of GenAI, including data handling, prompt safety, access controls, and model risk considerations.

• Engineer and enforce cloud security controls across Azure (or AWS) in large‑scale enterprise environments.
• Implement Infrastructure as Code (IaC) and automation frameworks to provision and manage security controls using tools such as Terraform.
• Drive Policy as Code and Guardrails, authoring and maintaining policies, and
  • Integrate Git Ops‑based promotion pipelines (dev, test, prod) with secure remote state management and drift detection.

• Reduce TTD and TTR by automating:
  • Threat intelligence ingestion and correlation
  • Sensor enrichment and contextual risk scoring
• Design and operate cloud security posture management (CSPM/CNAPP) capabilities using platforms such as Wiz, Prisma Cloud, or Microsoft Defender for Cloud.
• Work across multiple security domains including:
  • Cloud firewalls and security groups, DDoS protection, network proxies, cloud‑native SIEM platforms (e.g., ADX, Sumo Logic)

• Lead technical design discussions and translate business requirements into secure, scalable architectures.
• Conduct proof‑of‑concepts (POCs) for new technologies, tools, and architectures, evaluate feasibility and drive production adoption.
• Stay current with emerging cloud, security, and AI technologies, proactively…