Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.
Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.
Job DescriptionThis leadership position is part of Visa's Cybersecurity Regulatory, Audit, and Compliance function within the Cybersecurity Governance Risk and Compliance and M&A Integration (GRC) team. Reporting to the Senior Director, this role involves overseeing, coordinating, and delivering activities that support regulatory operations, internal audits, external audits, and customer/client requests. The primary responsibility will be to manage technical requests from regulators in the US, UK, and other regions where Visa operates.
In addition, you will be building, implementing, and optimizing Regulatory, Audit and Compliance solutions for our team. This role translates regulatory and audit requirements into scalable, automated technical solutions enabling efficiency and operational excellence.
Essential Functions
Oversee and manage audits, compliance, and regulatory activities related to Cybersecurity, including FBA/FFIEC, Bank of England, other regulators, GLBA, SSAE16/ISAE3402, SOC 2, PCI-DSS, Sarbanes-Oxley (SOX), internal audits, ISO, NIST, COSO, COBIT, and customer/client inquiries.
Collaborate with Cybersecurity, Technology, Compliance, Audit, and HRIS teams to automate manual compliance and control tasks for ongoing audit readiness.
Regularly review, analyze, and apply current technologies, including AI and machine learning, to enhance automation, efficiency, and risk management within Regulatory, Audit, and Compliance functions.
Build intuitive dashboards and reporting capabilities for stakeholders, providing real-time visibility into the risk and compliance posture of critical business systems
Advise Cybersecurity leadership on the status of technology risk and compliance issues, based on assessment results and information from various monitoring and control systems.
This is a hybrid position. Expectation of days in office will be confirmed by your hiring manager.
Qualifications
Basic Qualifications:
•8+ years of relevant work experience with a Bachelor's degree or at least 5 years of experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or 2 years of work experience with a PhD, OR 11+ years of relevant work experience
Preferred Qualifications:
•Advanced Degree (e.g., Masters, MBA) in related field.
•Bachelor’s degree in Computer Science, Information Systems, Management Information Systems, or Business Administration or another related field.
oSignificant and relevant technical experience meeting the job description may be substituted for degree requirements.
•8-10 years of leadership experience in Information Security, Audit, Risk, and/or Compliance.
oOpen to experience in other relevant fields (i.e., finance, business administration, information technology, etc.) as long as a candidate can demonstrate relevancy to this Information Security based role.
•6+ years direct participation and experience across common industry security policy areas, including, PCI-DSS, NIST, COSO, COBIT, FFIEC, SOX, SSAE16/ISAE3402, SOC 2 and others. Candidates with experience in Audit/Compliance/Regulatory discussions and proactive readiness activities in a large global financial institution or a matrix organization preferred.
•Proven experience collaborating with multiple stakeholders on both internal and external delivery and communication initiatives.
•Expertise in implementing and integrating enterprise GRC solutions, including AuditBoard, with hands-on experience in system integrations and platform administration.
•Hands-on experience with workflow automation, APIs, scripting, or low-code/no-code tools
•Passion for continuous improvement, emerging technologies, and driving innovation with AI and automation.
•Strong executive presence and exceptional communication skills, with experience in audit, compliance, regulatory discussions, and proactive readiness activities with internal partners and external clients.
•Capability to influence beyond the immediate team and engage with more experienced or senior individuals.
•Must be highly flexible and able to manage multiple tasks and priorities under tight deadlines.
•Data Analysis skills using Microsoft Excel, SQL, or other scripting languages.
•Broad and deep experience across PCI standards (DSS, PIN, P2PE, Token etc.) with the ability to apply the standards with confidence across different organizational contexts.
•Previous experience in implementing or managing Governance, Risk, and Compliance (GRC) tools, as well as developing dashboards and creating tools to automate tasks to enhance efficiency.
•Prior experience in utilizing Artificial Intelligence tools to improve efficiency.
•CISSP, CISA, CISM, CEH, PCI QSA/ISA Certifications preferred
Work Hours: Varies upon the needs of the department.
Travel Requirements: This position requires travel 5-10% of the time.
Mental/Physical Requirements: This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.
Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.
Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.
U.S. APPLICANTS ONLY: The estimated salary range for this position is $180,600.00 to $289,300.00 USD per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401 (k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.
Cyber Security Engineer - Sr. Consultant level - Regulatory, Audit, & Compliance • Foster City, CA, US
A leading AI evaluation platform in California is seeking a Senior Product Security Engineer to enhance security across all product levels.The role emphasizes the implementation of robust systems t...[internal_linking.show_more]
At Fireworks, we’re building the future of generative AI infrastructure.Our platform delivers the highest-quality models with the fastest and most scalable inference in the industry.We’ve been inde...[internal_linking.show_more]
A leading data platform company is seeking a Senior Anti-Abuse Security Engineer to design, build, and operate systems that protect against abuse, misuse, and fraud.The role involves working at the...[internal_linking.show_more]
Cyber Security Controls Assessor.Oakland, CA 94612 (Hybrid: 1-2 days onsite per week).The IT Compliance Project Specialist acts as a compliance and governance partner across the IT project portfoli...[internal_linking.show_more]
A leading cybersecurity firm is seeking a Software Engineer 1 for Identity Security in San Francisco.This entry-level role involves building and enhancing systems that protect machine identities an...[internal_linking.show_more]
We are seeking a highly skilled Infrastructure Security Engineer to join our team.This role is integral to ensuring the security and integrity of our platform.You will be responsible for securing l...[internal_linking.show_more]
As a Security Engineer, you will play a critical role in safeguarding our organization’s digital assets and infrastructure.You will be responsible for identifying vulnerabilities, implementing secu...[internal_linking.show_more]
Factory is seeking a talented Security Engineer to join our team.In this role, you will play a critical role in developing and maintaining the security foundation of our platform.You will conduct i...[internal_linking.show_more]
At Anyscale, we're on a mission to democratize distributed computing and make it accessible to software developers of all skill levels.We’re commercializing Ray, a popular open-source project that'...[internal_linking.show_more]
A cutting-edge tech company in San Francisco is seeking a skilled engineer to architect the foundation of AI agents aimed at detecting and stopping adversarial AI threats.You will design and build ...[internal_linking.show_more]
Our mission is to scale intelligence to serve humanity.We’re training and deploying frontier models for developers and enterprises who are building AI systems to power magical experiences like cont...[internal_linking.show_more]
Thinking Machines Lab's mission is to empower humanity through advancing collaborative general intelligence.We're building a future where everyone has access to the knowledge and tools to make AI w...[internal_linking.show_more]
An established industry player is seeking a Senior Cyber Risk Management Capability Assessor to enhance cyber risk management frameworks.This role involves conducting thorough risk assessments, ide...[internal_linking.show_more]
A fintech company in San Francisco is looking for a Security-Focused DevOps Engineer for a full-time, in-person position.The role involves securing payment infrastructure, building CI/CD pipelines,...[internal_linking.show_more]
A leading AI research firm in San Francisco seeks a Principal-level Offensive Security Engineer to enhance its security posture.This role involves hunting for vulnerabilities, conducting red team o...[internal_linking.show_more]
The Network Security Engineer within the University of California, San Francisco's (UCSF) Information Technology (IT) department will ensure the security and integrity of UCSF's network infrastruct...[internal_linking.show_more]
Senior Infrastructure & Security Engineer.Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.We can NOT provide sponsorship or work C2C.This is a 1...[internal_linking.show_more]
A tech company in San Francisco is seeking a Sales Engineer to act as a technical expert throughout the sales cycle.In this role, you will work closely with Sales, Product, and Engineering teams to...[internal_linking.show_more]
