Full-Time Cybersecurity Analyst - Sr. Consultant - Red Team

Visa's Red Team proactively identifies weaknesses in Visa's security posture and recommends necessary controls and procedures to cost-effectively protect Visa services from intentional or inadvertent modification, disclosure, or destruction.

Visa's internal Red Team experts engage in covert operations simulating adversarial threats and attacks in a timely manner, performing internal and external ethical hacks of Visa applications and systems.

Red team members also assist with design, development, and recommendation of security solutions to protect Visa proprietary/confidential data and systems.

Essential Functions:

• Conduct high-risk, sensitive ethical hacks of internally and externally hosted applications globally.
• Coordinate and execute system/network-level advanced Red Team and ethical hacking exercises.
• Design and develop scripts, frameworks, and tools for complex undetectable attacks.
• Review results of network and application ethical hacks to determine severity and ensure proper remedies.
• Perform penetration and remediation testing and reporting.
• Identify network and system vulnerabilities and provide countermeasures.
• Provide accurate and timely reporting of findings, remediation, and mitigations.
• Coordinate Red team operational briefings and presentations for non-technical audiences.
• Provide technical support to Business Leaders in identifying and streamlining protocols and tools.
• Define and develop agendas for training security professionals on advanced exploits.
• Perform research on emerging technologies and design frameworks for Red Team exercises.

Basic Qualifications:

• 8+ years experience with Bachelor's degree or 5+ years with Advanced degree (Master's, MBA, etc.) or 2+ years with PhD.

Preferred Qualifications:

• Expertise performing advanced exploitation and post-exploitation attacks.
• Prior Red Team exercise experience.
• Experience with exploit development and custom payloads.
• Knowledge of security tools (Metasploit, Cobalt Strike, etc.)

What is the last date for applying to the job?

Which countries are accepted for this remote job?