Associate Cybersecurity Analyst – Third Party Technology Risk Management (3PTRM)

Visa invites qualified applicants to apply for the position of Cybersecurity Analyst within the Third Party Technology Risk Management (3PTRM) team. This role is integral to ensuring the security and integrity of Visa’s third-party engagements and the protection of sensitive information across the supply chain. The successful candidate will collaborate with Supplier Relationship Owners and cybersecurity professionals in a hybrid capacity based in London, UK.

Essential Functions:

• Conduct comprehensive security reviews and assessments for suppliers and third-party partners, with particular emphasis on systems processing sensitive data.
• Perform threat modeling and detailed walkthroughs of cybersecurity controls to substantiate risk mitigation measures.
• Participate in and support security audits and onsite assessments, with a focus on evaluating suppliers’ security posture against Visa’s proprietary security framework.
• Assist in the ongoing monitoring of third-party compliance with regulatory requirements and industry standards, including PCI DSS and NIST.
• Participate in third-party security incident management processes, ensuring rapid identification, escalation, and resolution of security incidents.
• Facilitate enhancements to process remediation and the implementation of robust risk management strategies.

This is a hybrid position. Expectation of days in the office will be confirmed by your Hiring Manager.  ​

Required Qualifications

• Bachelor’s degree in Computer Science, Information Systems, Engineering, or a related discipline, or equivalent professional experience.
• One to three years of direct experience in cybersecurity, IT audit, or IT risk management, including a demonstrable understanding of third-party risk and supply chain security.
• Proven experience conducting security reviews, threat modeling, and risk assessments of systems containing sensitive data.
• Demonstrated experience performing security audits or assessments, with an emphasis on identifying threats and cybersecurity risks.
• Familiarity with third-party security incident management practices.
• Comprehensive knowledge of cybersecurity frameworks and standards, including NIST, ISO, and PCI DSS.
• Technical proficiency in at least one programming language, and the ability to successfully complete a coding assessment as part of the selection process.

Preferred Qualifications

• Prior experience conducting onsite third-party risk assessments.
• Advanced analytical, communication, and organizational skills.

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.