Senior Cybersecurity Engineer Endpoint Security

Company Description

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

Job Description

“This role qualifies for Autorskie Koszty Uzyskania Przychodu (KUP), in accordance with applicable Polish tax regulations. Eligible employees may benefit from preferential tax treatment on income derived from the creation of intellectual property, subject to meeting statutory criteria.”

Cyber Security is an integral part of Visa’s corporate culture. It is important to maintaining our position as an industry leader in electronic payments. At Visa, we believe that it is the responsibility of every employee to safeguard information, protect it from unauthorized access, and ensure regulatory compliance. Cyber Security has a significant effect on privacy, consumer confidence, external reputation, and it is a priority on everyone’s agenda.

We are seeking a Cyber Security Engineer (Endpoint) with skills in EDR, AV, privilege management, application control and ringfencing solutions as well as Windows/MacOS security features. This role is within the Cybersecurity Engineering team, and is responsible for designing, deploying, and supporting solutions to monitor and protect Visa’s systems and data. The ideal candidate will also be proficient in Python and experienced applying AI/ML techniques to endpoint security use cases, including automation, detection engineering, and large-scale telemetry analysis.

The ideal candidate will have prior experience implementing or supporting cross-organizational IT security solutions with good written and verbal communication skills, and exceptional organizational skills.

Essential Functions:

· Provide direction and support in the implementation of leading-edge endpoint antivirus, EDR, application control, privilege management security technologies utilizing a risk-based approach for testing and introduction into the overall environment.

· Provide engineering solutions to new threats leveraging implemented endpoint tools and identify gaps where improvement and/or new controls are needed.

· Apply GenAI/ML methods (e.g., anomaly detection, supervised models, heuristics with feature engineering) to endpoint telemetry for threat detection, and other cybersecurity endpoint engineering use cases, from efficacy to operational efficiency, evaluate model performance and drift.

· Be passionate in the pursuit of securing Visa’s data and critical assets.

· Instil a culture that works toward the highest standards in security engineering while ensuring that business requirements are understood and adhered to and security risks in new and existing infrastructure are properly understood and mitigated.

· Collaborate with colleagues in technology departments as well as the business and product offices to establish effective, productive business relationships.

· Provide technical solutions and know-how to the global Cyber Engineering team in all aspects of endpoint security.

· Take part in the design, build and run of a variety of endpoint security implementations in a diverse and complex environment, taking ownership of each initiative and producing successful outcomes.

· Work within a team of security engineering professionals responsible for planning, design, implementation, attack prevention and mitigation and ongoing support of security systems of high complexity to fulfil security requirements without impacting business needs.

· Implement security and threat protection controls protect data and applications using a diversity of cloud and on-prem Endpoint security tools.

· Create clear and concise documentation to formalize work stream processes.

· Meet SLA’s by processing requests to resolve endpoint security issues with server and workstation support, as well as end users.

· Administrate and Implement policies/rules on endpoint sensors as well as refine security standards.

· Work with all interfacing teams to define and baseline the system uptime SLAs and KPIs from main security solutions.

· Work with other Cyber Security teams to manage endpoint security prevention effectively and efficiently. In doing so work closely with research team, undertake research of threat vectors, and provide mitigation strategies.

· Work with stakeholders, mentoring and providing technological guidance on endpoint security.

· Provide recommendations to management team to increase effectiveness of endpoint security solutions.

· Prioritization, planning of projects and features, stakeholder management and tracking of internal and external commitments.

· Respond to and assist with due diligence and internal / external security audit requests.

· Identify opportunities for further enhancements and refinements to security standards and processes.

This is a hybrid position. Expectation of days in office will be confirmed by your hiring manager.

Qualifications

Basic Qualifications

• 2+ years of relevant work experience and a Bachelors degree, OR 5+ years of relevant work experience

Preferred Qualifications

• 3 or more years of work experience with a bachelor’s degree or more than 2 years of work experience with an Advanced Degree. (e.g. Masters, MBA, JD, MD)

• 3+ years’ experience in designing, deploying, and/or supporting enterprise-scale security solutions

• Python programming experience

• Broad knowledge of scripting languages is a plus

• GenAI (Engineering) experience

• Experience working with or implementing endpoint and network security solutions in an enterprise.

• Knowledge of Operating systems internals, hardening, and monitoring (Windows and UNIX).

• Knowledge of TCP/IP network fundamentals.

• Hands-on experience implementing LLM-powered services / retrieval-augmented generation (RAG) at production scale: document ingestion pipelines, chunking/embedding strategies, vector databases and relevance tuning.

• Excellent communication skills and excellent team player.

• Experience demonstrating leadership, self-motivation, and accountability.

• Deep understanding of operating systems internal working – like kernel processes, privilege levels for both Windows and Linux / Mac.

• Good understanding of Cyber Security Operations and Incident Response processes.

• Preferred to have certification such as AWS Certified Cloud Practitioner, AZ-500, CISSP, SSCP, GIAC Certified. OSCP a major plus.

Additional Information

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.