Build Your Career in Cybersecurity -
YOUR WAY

Company Description

​

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

​

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

• Help define consistent Secure Software Development Lifecycle practices for all Visa technology projects throughout the planning and delivery cycles that assure that application security risks are mitigated.
• Ensure end-to-end security of Visa products by hands-on testing, hypothesizing threats, helping development teams remediate risks upfront, and championing secure implementation efforts.
• Improve secure coding practices, application security requirements, automation, training, and metrics
• Integrate threat modeling practices into the Software Development Lifecycle.
• Help build secure products and standards around emerging technologies and using existing standards and security practices.
• Perform Security Architecture and Low-Level Application Security Design review involving: Data Protection, Authentication and Authorizations, Web Application Security, and Network Security.
• Actively use and evangelize the use of artificial intelligence (AI) to support application security practices and processes
• Collaborate with product development and solution teams proactively to manage software security risk aligned with business goals.
• Collaborate with product and solution teams to achieve Cybersecurity software security program objectives.
• Manage cross-functional internal and external team collaboration, evangelization, and communications.
• Develop and optimize processes to improve software development efficiency in the consumption of security development practices.
• Maintain active understanding of industry practices for secure software development and incident response.

Required Qualifications:

​

• Bachelor's degree, OR 3+ years of relevant work experience

​

Preferred Qualifications:

​

• 2 or more years of work experience
• You have a Bachelor's degree in Computer Science or related field and 2-3 years of Software Development Experience.
• 1-2 Years of Experience in Web Application Security, SSDLC, and Threat Modelling with MS/BS degree in Information System management / Computer Science / Information Security or a related technical discipline
• Hands-on experience with Software Development Java, C#, JavaScript, and HTML,
• MUST have a deep understanding of OWASP Top 10 and CWE 25. Proven track record and experience in implementing and integrating remediation strategies
• Excellent understanding of web applications, web servers, layer 7 application technologies, frameworks, and protocols with respect to application development and deployment
• Well versed in web application design, penetration testing, application risk assessment, and risk categorization
• Operational knowledge of secure software development lifecycle principles from training and requirements gathering to post-implementation operations support
• Well versed (experience preferred) with driving and implementing secure development practices into SDLC (SSDLC). Have the ability to successfully integrate security into a developer's world.
• Success in implementing effective Secure SDLC frameworks across a large corporation.
• Ability to effectively present and communicate security threats and risks to ANY audience and impress upon them the mitigation techniques and strategies
• Candidates should be familiar with waterfall and agile development processes and have experience integrating secure development practices into both models.
• Deep knowledge and experience in using SAST, DAST, and fuzz testing tools
• Highly effective communicator. Well-honed influencing and negotiating skills.
• Solid problem-solving and analytical skills. Able to quickly digest any issue/problem encountered and recommend an appropriate solution.
• Self-motivated and able to work independently. Able to negotiate and bring consensus to diverse priorities of product development and solution teams.

• Work Hours: Varies upon the needs of the department.
• Travel Requirements: This position requires travel 5-10% of the time.
• Mental/Physical Requirements: This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.
• Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.
• Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.
• U.S. APPLICANTS ONLY: The estimated salary range for a new hire into this position is 95,200.00 to 134,600.00 USD per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401(k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.

Who We Are

Stanley Reid is your trusted matchmaker, connecting you with top contractors and exciting IC/DoD opportunities. Founded by experts in the field, we go beyond just finding jobs. We prioritize personalized guidance, matching your unique skills and goals to the perfect fit. Looking for a stress-free job search? We got you. Let's chat and unlock your career potential!

About Our Client

Driven by mission and dedicated to service, our client has been securing the US and its allies for over 20 years. Founded in 1999 and led by an engineer, they offer meaningful work across diverse areas like software development, systems engineering, test & analysis, and cybersecurity. You can expect fulfilling work with national security impact and opportunities for growth through their broad portfolio of work, including several PRIME contracts. They have fostered a culture of well-being by supporting the physical, mental, social, and financial health of their employees with their competitive compensation and benefits. Significant investment in professional development and openness to using cutting-edge technologies have created consistent growth and strong employee retention. If you're looking to contribute to critical missions within a super-technical and supportive environment, our client might be the right fit for you.

• Implementing and overseeing security measures
• Ensuring compliance with industry standards
• Leading a team of security professionals
• Developing and enforcing security policies
• Responding to security incidents
• Managing security risks

Required Qualifications

• BS in Computer Science, IT Engineering, or related field and 12+ years of experience in IT security
• Strong leadership and communication skills and in-depth knowledge of security tools, technologies, and industry best practices
• Advanced security certifications:
• IAT III (CISA, CISSP, GSE, SCNA, or GCIH)
• IAM I (GISF, GSLC, Security+, or CAP)
• IAT I (GSEC, Security+, or SSCP)

Preferred Qualifications

NA

Clearance Requirements

TS/SCI with FS Polygraph (no clearance upgrades or CCAs). Please note, you MUST have the required clearance for consideration (uncleared or under-cleared applicants will not receive a response).

Location

Contractor SCIF in Annapolis Junction, MD

Ready for next steps?

Apply online at https://careers.stanleyreid.com/, or contact our MD team for more info: mwhitford@stanleyreid.com, asmith@stanleyreid.com.

We look forward to exploring opportunities with you!

Please note: We are constantly expanding our network of opportunities and do our best to keep our openings current as they open and close. We encourage you to apply and connect with us even if a directly matching role isn't currently listed (or available), as new opportunities arise frequently.

Posted on (01/31/2025)

Summary: This position is 3rd shift Monday-Friday, 11pm-7:30am

​

Staples is business to business. You’re what binds us together.

​

Our digital solutions team is more than a traditional IT organization. We are a team of passionate, collaborative, agile, inventive, customer-centric, results-oriented problem solvers. We are intellectually curious, love advancements in technology and seek to adapt technologies to drive Staples forward. We anticipate the needs of our customers and business partners and deliver reliable, customer-centric technology services.

• The ESOC Incident Operator’s primary responsibly is answering routine and emergency calls, monitoring alarms and video equipment including fire alarms, door alarms, and duress alarms and provides general assistance to Associates, Vendors and Visitors under the guidance of a supervisor.
• Effectively triages alerts or alarms received through the Access Control System through an end stage resolution and escalates to a supervisor as necessary.
• Monitoring lone workers and verifying check ins, responding to failed check ins, safe corridor requests, and / or emergency notifications.
• Continuously monitors physical security systems, including surveillance cameras and access control systems, to detect and assess potential security threats and escalates when concerns are identified.
• Maintains and processes all telephone, radio, and email communications coming into the ESOC while providing excellent customer service.
• Reports any faulty equipment and\or health and safety hazards identified immediately to appropriate personnel, and documents actions accordingly.
• Supports all requests for assistance by any caller with respect and patience to maintain a standard of excellence for both internal and external customer service.
• Facilitates access to multiple locations by remotely operating lift gates, gates, doors, etc., after verifying Associates’ or Vendor identify and authorized access level.
• Initiates incident reports and work orders for situations that require one.
• Reviews ISOS Travel Notifications and escalates when necessary to a supervisor to notify Business Travelers of potential impact.
• Monitors risk events received via Everbridge in the ESOC and escalates as directed.
• Checks to ensure all Access Control, CCTV, and other tools are working properly.

Required Qualifications:

​

• Minimum high school diploma or equivalent required.
• 1+ years’ experience in a progressive security organization, preferably in a security operations center environment, or equivalent combination of education and experience sufficient to perform the essential functions of the job, as determined by Staples.
• The ability to write effective and concise reports. A working knowledge of Microsoft Office software and email is required.
• Knowledge and understanding of Access Management Systems, i.e. Exacqvision, Genetec, Vector, Everbridge, etc.
• Basic knowledge of physical security systems, components, causes of alarms, and Security Operations.
• Understanding and knowledge of Open-Source Intel applications, i.e. Everbridge Visual Command Center

​

Preferred Qualifications:

​

• Experience with physical security systems and threat intelligence tools, i.e. Everbridge, Genetec.
• Experience working in an Enterprise Security Operations Center (ESOC) or similar.

NA