Job
Description
Candidate will develop, support, tune and deploy security solutions across Visa. Essential Functions: Web Application Security: Engineering, deployment, and operations of security solutions, including Web Application Firewalls, as well as integration of those platforms with other solutions as required. Engineers, configures, deploys, and maintains Web Application Firewall solutions Maintains scripts for manipulation of multiple data repositories to support analysts Builds alerts/reports to meet the requirements of key stakeholders Contributes to automation for security tools management and workflow integration Collaboration with key stakeholders within Cybersecurity Engineering teams to develop specific use cases to address web and application security requirements Creates WAF rules to mitigate threats and implement security best practices Create and enhance SIEM content for Cybersecurity teams, including correlations, enrichments, dashboards, reports, and alerts that appropriately illustrate and characterize web application attacks and mitigation mechanisms Application Security: Knowledge of SSDLC processes, procedures, and tools Knowledge of open source and commercial application security tools and frameworks, including but not limited to Kali Web application testing tools Experience in exploiting web apps and web services security vulnerabilities including cross-site scripting, cross-site request forgery, SQL injection, DoS attacks, XML/SOAP, and API attacks Excellent understanding of OWASP Risks, Vulnerabilities and Mitigation Mechanisms Strong experience with Web Application Firewall management and rules Excellent understanding of common network and web protocols Excellent understanding of DDoS, Bot, and ATO techniques and mitigation mechanisms Cyber Defense and Incident Response: Solid understanding of events, related fields in log records and alerts reported by various data sources such as Windows/Unix systems, IDS/IPS, AV, HIDS/HIPS, WAFs, firewalls, and web proxies Prior experience or support of Security Operations and Incident Response Excellent understanding of Cyber Security Operations and Incident Response processes Infrastructure management and support: System administration experience with Windows and Unix servers Experience working in a large enterprise environment Experience integrating solutions in a multi-vendor environment Familiarity with Atlassian JIRA Basic Qualifications: 2+ years of relevant work experience and a Bachelors degree, OR 5+ years of relevant work experience. Masters graduates must have 2+ years of relevant work experience to qualify. Preferred Qualifications: 3
