Sr. Cybersecurity Engineer, Multi-Cloud

About The Position

Requirements

• 5+ years of relevant work experience with a Bachelor’s Degree or at least 2 years of work experience with an Advanced degree (e.g. Masters, MBA, JD, MD) or 0 years of work experience with a PhD, OR 8+ years of relevant work experience.

Nice To Haves

• 6 or more years of work experience with a Bachelor’s degree or 4 or more years of relevant experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or up to 3 years of relevant experience with a PhD.
• Strong domain expertise in cloud security engineering within multi‑cloud enterprise environments (AWS, Azure, and/or GCP).
• Expert‑level certification in at least one major cloud platform.
• Hands‑on experience migrating applications to the cloud and implementing cloud‑native security controls at scale.
• Proven ability to design and implement new security controls based on risk assessments, gaps, and regulatory requirements.
• Demonstrated experience building GenAI solutions and autonomous agents for cloud security engineering or security operations.
• Strong programming skills in Python (preferred) or Go, with experience in building production‑grade services.
• Expertise in IaC, automation, and GitOps workflows, including secure state management and drift detection.
• Experience with policy‑as‑code and enterprise guardrail enforcement.
• Ability to independently drive POCs, own implementations end‑to‑end, and transition solutions into production.
• Experience assisting with cost modeling, timelines, and delivery planning for security initiatives.
• Strong understanding of threat management, vulnerability management, and cloud security posture management.
• Excellent communication, collaboration, and technical leadership skills, with the ability to influence across teams.

Responsibilities

• Security Engineering & Platform Development:
• Design, develop, and operate large‑scale cyber security platforms that deliver detection, prevention, and response capabilities across cloud and hybrid environments.
• Build cloud‑native, API‑first security services using Python and modern web service frameworks.
• Develop and expand security integration frameworks to interconnect SIEM, CSPM, CNAPP, IAM, network security, and threat intelligence platforms.
• Drive security automation to minimize manual intervention and accelerate incident response workflows.
• GenAI & Agentic Security Capabilities:
• Design and implement GenAI‑powered security workflows, including:
• Autonomous agents for cloud misconfiguration analysis, policy validation, and remediation recommendations
• AI‑assisted threat triage, alert summarization, and root‑cause analysis
• Intelligent enrichment of security signals using applied threat intelligence
• Build and operate agentic systems that can reason across telemetry, policies, and infrastructure state to propose or execute remediation actions safely.
• Evaluate and adopt emerging LLM, agent orchestration, and AI governance frameworks for enterprise‑grade security use cases.
• Ensure secure, compliant, and auditable use of GenAI, including data handling, prompt safety, access controls, and model risk considerations.
• Cloud Security & Automation:
• Engineer and enforce cloud security controls across AWS, Azure, and/or GCP in large‑scale enterprise environments.
• Implement Infrastructure‑as‑Code (IaC) and automation frameworks to provision and manage security controls using tools such as Terraform.
• Drive Policy‑as‑Code and Guardrails, authoring and maintaining policies using:
• OPA/Rego or Sentinel, AWS Service Control Policies (SCP), Azure Policy, GCP Organization Policies
• Integrate GitOps‑based promotion pipelines (dev → test → prod) with secure remote state management and drift detection.
• Threat Detection, Response & Posture Management:
• Reduce time‑to‑detect and time‑to‑remediate by automating:
• Threat intelligence ingestion and correlation
• Sensor enrichment and contextual risk scoring
• Design and operate cloud security posture management (CSPM/CNAPP) capabilities using platforms such as Wiz, Prisma Cloud, or Microsoft Defender for Cloud.
• Work across multiple security domains including:
• Cloud firewalls and security groups, DDoS protection, Network proxies, Cloud‑native SIEM platforms (e.g., ADX, Sumo Logic)
• Architecture, Innovation & Leadership:
• Lead technical design discussions and translate business requirements into secure, scalable architectures.
• Conduct proof‑of‑concepts (POCs) for new technologies, tools, and architectures, evaluate feasibility and drive production adoption.
• Stay current with emerging cloud, security, and AI technologies, proactively assessing their applicability within Visa.
• Act as a technical leader and mentor, raising the engineering and security maturity of the team.
• Contribute to project planning, including cost estimation, timelines, and risk assessment for new security initiatives.

Benefits

• Medical
• Dental
• Vision
• 401 (k)
• FSA/HSA
• Life Insurance
• Paid Time Off
• Wellness Program