LAC Ecosystem Security Manager

Reporting to the LAC Ecosystem Security Director the LAC Ecosystem Security Manager will execute a broad portfolio of responsibilities oriented to the LAC Data Security. The full-time employee will work to supporting the several Security Programs for all countries in LAC.

The Ecosystem Data Security goal is to maintain and enhance stakeholder trust in Visa by securing data across the payment system. Visa takes a comprehensive and layered approach to payments security with a dual focus: protecting cardholder data wherever it is found in the payment ecosystem and making strategic investments in technologies that enable stakeholders to respond to compromises and prevent fraud.

The key Data Security Programs and Activities are the Payment Card Industry Data Security Standard the Technology Innovation Program Third Party and Processor Risk VisaNet Processor Risk Program Third Party Risk and Agent Registration Program and the 3DS and Card Vendor Approved Vendor Program.

Candidate will be responsible for:

• Support the programs oriented to the Payment Card Industry Data Security Standard (PCI DSS) for the LAC Region. As a Founding Member of PCI Visa maintain and evolve industry standards which have been expanded to include PIN Transaction Security (PTS) requirements P2PE Standards and the Secure Software Framework (SSF). These Programs include TPA PCI DSS program Merchant PCI DSS Program and VNP PCI DSS Program.
• Manage the Third-Party Risk program (TPA) and its registering at Visa. The Third Party Agent Program main function is to identify participants in the payment system and drive compliance with the Visa Rules and applicable industry standards such as PCI DSS and PCI PIN requirements. The Third-Party Agents (TPAs) provide payment related services to Visa clients or their merchants and do not have a direct connection to VisaNet.
• Support the VisaNet Processor Risk program to ensure the Visa payment system is protected from operational and financial risk associated with Visa endpoints. Visa Rules state that a Visa client is responsible for any and all loses caused by its agents.
• Support the Visa Approved Vendors Program. They are third-party organizations worldwide responsible for the manufacturing personalization and distribution of Visa card products. Prospective vendors seeking to participate in the Approved Vendor Program must undergo due diligence reviews.
• Support the Visa 3DS Approved Vendors Program.
• Prepare reports that will be shared with the high management team as well as with all account executives in LAC demonstrating the non-compliant entities and its progress.
• Support workshops to the market about best practices policies processes and controls.
• Manage relationships with issuers acquirers merchants payment processors service providers and regulators to:
  • Provide stakeholder training.
  • Respond to ad hoc queries questions from entities.
  • Partner with business teams to engage with clients to operate and maintain compliance with requirements.

This is a hybrid position. Expectation of days in office will be confirmed by your hiring manager.

Qualifications :

Basic Qualifications:

• Bachelors degree.
• 2 years experience with Visa Data Security Programs.
• 5 years experience in Information Security/Risk Management projects.
• Knowledge on Payment Card Industry and Payment System Risk including knowledge on PCI DSS and other PCI Standards.
• Ability to work accurately with a sense of urgency and deliver under tight deadlines/time frames.
• Team oriented collaborative diplomatic and flexible.
• Strong work ethic can-do attitude and sense of humor required.
• Ability to manage multiple initiatives at once in a fast-paced entrepreneurial environment while demonstrating grace under pressure and comfort with problem solving ambiguity.
• Fluent in spoken and written English and Spanish. Portuguese and other languages is a plus.

Desired Additional Qualifications:

• Recently attended a PCI Council Internal Security Assessor Training. PCI ISA certification is a plus.
• Information Security Certifications are a plus.
• Knowledge of information security standards and frameworks such as ISO 27001/27002 HIPAA GDPR and NIST are a plus.

Critical Competencies for Success:

• Integrity and High Ethics:  Our values and our brand mandate a total commitment to honesty and the highest standards of ethical and Problem Solving: Visa seeks intellectually curious individuals who are committed and passionate about continual learning and who are driven to solve problems.
• Diversity:  Visa actively seeks diverse talent who will offer different perspectives and a variety of backgrounds to enhance Visa as a company.
• Teamwork: Teamwork and shared success are important to Visa given our complex ecosystem and the collaboration across function clients and industry players that is required to address our challenges and opportunities.
• Organization and Multi-Tasking: To manage 6 different programs document all the processes and propose improvements
• Expertise: Employees should have a passion for their domain and a willingness to build upon functional expertise and skills that help Visa differentiate and grow.  
• Forward Thinking: Employees must embrace emerging technologies that are rapidly driving towards the next generation of payments.
• Detail Centric: Employees must be able to communicate with people from different roles and positions internally and externally. Flexibility is key for conveying an effective communication.

Additional Information :

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race color religion sex national origin sexual orientation gender identity disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

Remote Work :

No

Employment Type :

Full-time