Company Description

​

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

​

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

• Help define consistent Secure Software Development Lifecycle practices for all Visa technology projects throughout the planning and delivery cycles that assure that application security risks are mitigated.
• Ensure end-to-end security of Visa products by hands-on testing, hypothesizing threats, helping development teams remediate risks upfront and championing secure implementation efforts.
• Improve secure coding practices, application security requirements, automation, training, and metrics
• Integrate threat modeling practices into the Software Development Lifecycle.
• Help build secure products and standards around emerging technologies and using existing standards and security practices.
• Perform Security Architecture and Low-Level Application Security Design review involving: Data Protection, Authentication and Authorizations, Web Application Security and Network Security.
• Actively use and evangelize the use of artificial intelligence (AI) to support application security practices and processes
• Collaborate with product development and solution teams proactively to manage software security risk aligned with business goals.
• Collaborate with product and solution teams to achieve Cybersecurity software security program objectives.
• Manage cross-functional internal and external team collaboration, evangelization, and communications.
• Develop and optimize processes to improve software development efficiency in the consumption of security development practices.
• Maintain active understanding of industry practices for secure software development and incident response.

Required Qualifications

• Bachelor's degree, OR 3+ years of relevant work experience

​

Preferred Qualifications

• 2 or more years of work experience
• You have a Bachelor degree in Computer Science or related field and 2-3 years of Software Development Experience.
• 1-2 Years of Experience in Web Application Security, SSDLC and Threat Modelling with MS/BS degree in Information System management / Computer Science / Information Security or a related technical discipline
• Hands on experience with Software Development Java, C#, JavaScript and HTML
• MUST have deep understanding of OWASP Top 10 and CWE 25. Proven track record and experience in implementing and integrating remediation strategies
• Excellent understanding of web applications, web servers, layer 7 application technologies, frameworks and protocols with respect to application development and deployment
• Well versed in web application design, penetration testing, application risk assessment and risk categorization
• Operational knowledge of secure software development life cycle principles from training and requirements gathering to post-implementation operations support
• Well versed (experience preferred) with driving and implementing secure development practices into SDLC (SSDLC). Have ability to successfully integrate security into a developer's world.
• Success in implementing effective Secure SDLC frameworks across a large corporation.
• Ability to effectively present and communicate security threats and risks to ANY audience and impress upon them the mitigation techniques and strategies
• Candidates should be familiar with waterfall and agile development processes and have experience integrating secure development practices into both models.
• Deep knowledge and experience in using SAST, DAST and fuzz testing tools
• Highly effective communicator. Well-honed influencing and negotiating skills.
• Solid problem-solving and analytical skills. Able to quickly digest any issue/problem encountered and recommend an appropriate solution.
• Self-motivated and able to work independently. Able to negotiate and bring consensus to diverse priorities of product development and solution teams.

• Work Hours: Varies upon the needs of the department.
• Travel Requirements: This position requires travel 5-10% of the time.
• Mental/Physical Requirements: This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.

​

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

​

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.

​

U.S. APPLICANTS ONLY: The estimated salary range for a new hire into this position is 95,200.00 to 134,600.00 USD per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401(k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.

When you join Verizon

​

You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the V Team Life.

• Developing and executing technology-based audits and IT and application control assessments during complex business process reviews.
• Learning the functions being audited to verify the effectiveness of existing technology controls.
• Identifying technology control risks to improve process effectiveness.
• Developing action plans and communicating concise recommendations to management.
• Identifying risks associated with new technology.
• Participating in department initiatives to further develop the Internal Audit function.

Required Qualifications:

• Bachelor’s degree or four or more years of work experience.
• Four or more years of relevant work experience.
• IT auditing experience in at least one of the following areas: IT security administration, UNIX, Linux, or Windows platforms system administration, IT Architect, network security, network administration, network operation center experience and/or SAP and/or PeopleSoft technical support knowledge.
• Experience applying technical knowledge in at least one of the following areas: IT operations or application reviews, network operations or security audits, SSAE16 or PCI compliance engagements and/or ERP security and control reviews (Oracle, SAP, PeopleSoft).
• Knowledge of networks technology, operating systems, midrange platforms, personal computers, system development, client/server architecture.
• Willingness to travel up to 25%.

​

Preferred Qualifications:

• Bachelor’s degree in Management Information Systems, Computer Science, or related technical field.
• CISA and/or CISSP certification.
• Experience with ACL, Idea, Oracle, Microsoft SQL Server, Visual Basic, Microsoft.NET framework, Microsoft Access, SQL, Microsoft Exchange, or Hyperion applications.
• Technology Audit experience in a Public Accounting firm.

In this hybrid role, you'll have a defined work location that includes work from home and a minimum of eight assigned office days per month that will be set by your manager.

​

Scheduled Weekly Hours

40

​

Equal Employment Opportunity

Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to veteran status, disability, or other legally protected characteristics.

​

If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above.

Who is Tenable?

Tenable® is the Exposure Management company. 44,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. Our global employees support 65 percent of the Fortune 500, 45 percent of the Global 2000, and large government agencies. Come be part of our journey!

​

What makes Tenable such a great place to work?

Ask a member of our team and they’ll answer, “Our people!” We work together to build and innovate best-in-class cybersecurity solutions for our customers; all while creating a culture of belonging, respect, and excellence where we can be our best selves. When you’re part of our #OneTenable team, you can expect to partner with some of the most talented and passionate people in the industry, and have the support and resources you need to do work that truly matters. We deliver results that exceed expectations and we win together!

​

Your Role:

In this key Manager position, this leader will evaluate, coordinate, implement and maintain Cybersecurity systems and lead a team of security professionals. This includes an organization of Information Security Analysts, Engineers and members of other Tenable teams to ensure the confidentiality, integrity and availability of all Tenable’s assets; those OnPrem and in the Cloud. This role does not just manage a team but is a hands-on player/coach and technical architect. This role reports directly to the Chief Security Officer, is fast-paced, with tight deadlines, after hours expectations, driving tactical and strategic plans including supporting board level initiatives.

• Collaborate with senior members of various groups across Tenable, including Executive Staff and the CEO
• Partner with CSO on special projects, presentations, etc. and proactively represent Security as needed - internally to Tenable and externally
• Be an active member of the Information Security Leadership team; Work with others on the Security Leadership team to ensure the broader team has strong connections with Tenable; Have an active presence in the office and be readily available to the team
• Outstanding written and verbal communication with demonstrated ability to communicate effectively with all levels of the organization; informal and formal presentations
• Coach, mentor and enable members of the team; Create a positive working environment; Provide project management and leadership support for the team
• Attract strong cyber technical talent and work with each team member to develop their full potential
• Provide off-hours support on an infrequent but as needed basis; including weekends and holidays based on operational tempo
• Recommend, evaluate and deploy security solutions and build associated security programs
• Identify opportunities to improve the quality and resiliency of cybersecurity systems and applications
• Create documentation and write/review Standard Operating Procedures and Security Policies
• Manage time and technical responsibilities, set accurate expectations and meet deadlines
• Perform Security Architecture reviews and provide Information Security guidance
• Contribute to governance, risk and compliance initiatives via audits, certification and attestations

Required Qualifications:

• Ability to lead and mentor a technical team with varying skill level
• Strong Security Architecture experience and knowledge of Security Best Practices and Industry Standards
• Experience with securing Windows, Mac, Linux, mobile devices
• Experience with securing IaaS (AWS, GCP, Azure, OCI), SaaS and working with environment owners on resolutions
• Technical understanding and experience with network security technology including IDS and IPS, and network traffic analysis
• Understanding of the TCP/IP protocol stack and application protocols such as HTTP, SNMP, SMTP, DNS, and DHCP
• Experience with security controls for WAN, LAN, WLAN, VPN, Zero Trust and Cloud architectures
• Hands-on experience and strong knowledge of most of the following technologies: Endpoint Malware Protection/EDR, IDS/IPS, SIEM, Email Security/DMARC, DNS Security, Web Security (Proxy, WAF, DDoS), CASB, DLP, Encryption, PAM, MDM, Posture Management tools (e.g. CNAPP, CSPM, SaaSPM)
• Ability to collaborate with other technical teams to reach a common goal
• BA/BS in Computer Science, Information Technology, SANS training or equivalent experience
• Ability to perform well, in an agile environment, with minimal supervision
• Self-motivated while demonstrating a passion for Cybersecurity
• Minimum 10+ years of experience in Information Security and 5+ years management experience

​

Preferred Qualifications:

• Knowledge of scripting (Python) is preferred but not required
• Knowledge of application security controls and concepts (e.g., SAST, DAST, SCA, etc.) is preferred but not required
• CISSP, GIAC certifications or other Infosec certifications are a plus

This is the base pay range for this position. Compensation for the role will depend on a number of factors, including the candidate's qualifications, skills, competencies, location and experience, and may fall outside of the range shown. Employees are also eligible for variable compensation in addition to base pay (commission for sales roles, bonus for non-sales roles), depending on company and individual performance. Tenable also offers a variety of comprehensive and competitive benefits which include: medical, dental, vision, disability and life insurance; 401(k) retirement savings with company match; an employee stock purchase plan; an employee referral program; flexible spending accounts; an Employee Assistance Program (EAP); education assistance; parental leave; paid time off (PTO); company-paid holidays; health and wellness events; and community programs.

​

US Pay Ranges

$161,500 — $215,500 USD

​

We’re committed to promoting Equal Employment Opportunity (EEO) at Tenable - through all equal employment opportunity laws and regulations at the international, federal, state and local levels. If you need a reasonable accommodation due to a disability during the application or recruiting process, please contact Recruiting@Tenable.com for further assistance.

​

Tenable Data Consent Statement

Tenable is committed to protecting the privacy and security of your personal data. This Notice describes how we collect and use your personal data during and after your working relationship with us, in accordance with the General Data Protection Regulation (“GDPR”). Please click here to review.

​

For California Residents: The California Consumer Privacy Act (CCPA) requires that Tenable advise you of certain rights related to the collection of your private information. Please click here to review.