Title: Sr. Cybersecurity Engineer - IAM Location: Austin United States time type Full time job requisition id REF080077W Job Description: About Us Visa is a world leader in payments technology, facilitating transactions between consumers, merchants, financial institutions and government entities across more than 200 countries and territories, dedicated to uplifting everyone, everywhere by being the best way to pay and be paid. At Visa, you'll have the opportunity to create impact at scale - tackling meaningful challenges, growing your skills and seeing your contributions impact lives around the world. Join Visa and do work that matters - to you, to your community, and to the world. Progress starts with you. Job Description The Cybersecurity Engineer - Cloud is responsible for designing, implementing, and operating security controls that protect cloud‑native platforms and workloads across public cloud environments (AWS, Azure, GCP). The role partners closely with engineering, DevOps, and architecture teams to ensure cloud services are secure by design, compliant with regulatory requirements, and resilient at scale. This position combines hands‑on engineering, security architecture, and risk‑based decision‑making within complex, distributed, and regulated environments. In addition to cloud security responsibilities, this role provides security oversight and engineering support for AI‑enabled capabilities used across the Pismo platform. The engineer ensures that adoption of Artificial Intelligence and Large Language Models (LLMs) is aligned with Visa security controls, Pismo data‑protection principles, and global regulatory expectations. This is a remote position. A remote position does not require job duties be performed within proximity of a Visa office location. Remote positions may be required to be present at a Visa office with scheduled notice. Visa requires at least 3 days in office, expectations of these days will be confirmed by your Hiring Manager. Qualifications 6+ years in IAM/security engineering with strong hands-on delivery (not only governance). Strong knowledge of IAM fundamentals: identity lifecycle, authentication, authorization, MFA, RBAC/ABAC, access reviews. Demonstrated coding ability and automation mindset: Python/Go preferred; PowerShell/Bash acceptable; experience shipping tools used by others. Experience implementing enterprise IAM standards and operating in compliance-driven environments (access control evidence, audits, governance). Solid understanding of segregation of duties and production access constraints. Multi-cloud security/IAM experience across AWS/Azure/GCP. Experience with identity providers / governance platforms (e.g., federated SSO patterns, directory groups, access certification workflows). Experience engineering and/or integrating PAM capabilities and processes (vaulting/rotation, JIT/JEA). Experience applying GenAI to security operations responsibly (workflow automation, evidence generation, policy templating). Security certifications (nice-to-have): CISSP/CISM, cloud certs, IAM-related certs. U.S. Applicants Only The estimated salary range for this position is $145,300.00 to $ 232,700.00 USD per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity.Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401(k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program. Work Hours Varies upon the needs of the department. Travel Requirements This position requires travel 5-10% of the time. Mental/Physical Requirements This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers. Visa is an EEO Employer Qualified applicants will receive consideration for employment without regard to race, color religion, sex, national origin, sexual orientation, gender identity, disability or protect veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with the EEOC guidelines and applicable local law.

• Responsible for evaluating, implementing, evangelizing, and maintaining robust security solutions to protect the organization's information assets across various platforms and environments. • Design, validate, implement, and document security infrastructure and collaborate amongst Technology groups. • Architect and assist with the implementation of security controls, tools, and technologies to protect information assets from threats. • Collaborate with engineering teams to integrate security into development and deployment processes. • Design and implement strategies for IAM solutions to manage user identities, access rights, and privileges. • Architect and implement security controls and best practices for cloud infrastructure. • Conduct security assessments, code reviews, and penetration testing to identify and remediate application security vulnerabilities. • Ensure compliance with industry standards, frameworks, and regulations related to information security.

• Support risk and resilience assessments (RAP) • Conduct interviews with business and IT areas • Analyze policies, processes, and security governance controls • Organize and consolidate evidence • Support technical validations with infrastructure, cloud, and security teams • Contribute to the preparation of reports and action plans • Execute phishing and awareness campaigns: sending and follow-up • Analyze results

• Lead end-to-end assessments (RAP) • Conduct interviews with technical and executive stakeholders • Assess: governance, risk management, business continuity, compliance / LGPD (Brazilian General Data Protection Law) • Validate technical controls with teams • Identify gaps and prioritize risks • Prepare and present: executive reports, development roadmap • Lead awareness and phishing campaigns