Company Description

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

Job Description

Visa’s Internship Program provides an immersive, 12-week journey where you’ll work on impactful projects that drive Visa’s mission forward. As a Visa intern, you’ll build valuable connections across the organization, sharpen your communication and business acumen, and gain hands-on experience in a dynamic, global environment. 

Throughout the program, you’ll have exclusive access to interactive workshops and learning sessions designed to deepen your expertise, expand your industry knowledge, and elevate your professional skillset. You won’t just be learning, you’ll be contributing, collaborating, and innovating every step of the way. In addition to professional development, you’ll enjoy a variety of intern social events that foster community, connection, and fun throughout the summer. 

The experience culminates in an exciting final presentation, where you’ll showcase your project achievements, share key insights, and present your recommendations to Visa’s leaders and stakeholders. This is your chance to demonstrate your business impact, highlight your personal growth, and align your work with Visa’s vision for the future. 

The Associate Cybersecurity Engineer, Intern will support product security architecture in conducting security architecture reviews. This role aims to proactively identify weaknesses in Visa’s security posture, perform architectural assessments, and recommend necessary controls to protect Visa from adversarial threats. The intern will gain hands-on experience in security architecture reviews, threat modelling, and secure development practices.

The Associate Cybersecurity Engineer, Intern will assist in reviewing security designs, identifying gaps in security controls, and ensuring security best practices are integrated into the software development lifecycle. The role also involves developing tools to support security automation efforts and streamline assessments.

Some job duties and projects could include:

• Be a product security champion by driving Security Architecture and design/implementation/optimization for Web, API, and Mobile backend applications.
• Engage in initial requirements definition, including analysis of threats and risks, ensuring alignment with security, engineering, IT, and architecture standards.
• Conduct and facilitate security reviews, threat modeling, and deep design reviews throughout the development lifecycle.
• Facilitate tabletop, red-team, and scenario analysis exercises in conjunction with other SMEs and coordinate resolution plans for identified vulnerabilities.
• Develop security mechanisms to protect applications from attacks across various platforms and technologies, including:
  • o Public cloud environments like AWS, Google Cloud, and Azure.
  • o Web technologies such as HTTP, SOAP, REST services, AJAX.
  • o Databases including MySQL, MS SQL, Couchbase, Cassandra.
  • o Programming languages like Java, C, C++, .Net, JavaScript, GoLang.
  • o Web Access Management solutions like ForgeRock and custom security frameworks.
• Automate security tools and processes to enhance security-in-depth, secure transaction processing, and secure coding practices for web and mobile applications.
• Oversee multiple security projects, services, and functions, providing strategic direction and execution.
• Identify and analyze system and application vulnerabilities, recommending countermeasures and mitigating controls to reduce risks.
• Independently develop enterprise-wide security programs with a significant impact on the organization's success.

Qualifications

Basic Qualifications

• Students pursuing a Bachelor’s degree in Computer Science, Computer Engineering, CIS/MIS, Cybersecurity, Business or a related field, with a graduation date in December 2026-August 2027
• Strong communications skills, specifically, the absence of repeated grammatical or typographical errors, clear and concise written and spoken communications that demonstrate professional judgment.  

Preferred Qualifications

• Development skills with experience in secure coding and application security.
• Knowledge or understanding of security architecture principles and best practices.
• Familiarity with OWASP Top 10, SANS Top 25, and threat modeling frameworks.
• Knowledge of cryptographic concepts and secure communication protocols.
• Experience or exposure with penetration testing tools such as Burp Suite, Nmap, Nessus, and Kali.
• Proficiency in one or more scripting languages (Python, Bash, etc.).
• Experience in one or more programming languages (Java, C++, JavaScript, etc.).
• Understanding of networking fundamentals, OSI model, and TCP/IP stack.
• Awareness of cloud security principles (AWS, Azure, or GCP security best practices).
• The ability to take on challenges and address problems head-on
• Strong ability to collaborate
• Highly driven, resourceful and results oriented
• Good team player and excellent interpersonal skills
• Good analytical and problem-solving skills
• Demonstrated ability to lead and navigate through ambiguity

Additional Information

U.S. APPLICANTS ONLY: The estimated hourly range for a new hire into this position is $35/hr to $40/hr. The hourly rate may vary depending on job-related factors which may include knowledge, skills, experience, and location.

Work Hours: Varies upon the needs of the department.

Work Authorization: Visa will not sponsor applicants for work visas in connection with this position. Future sponsorship will not be considered.

This is a hybrid position. Expectation of days in office will be confirmed by your hiring manager. 

Travel Requirements: This position requires travel 5-10% of the time.

Mental/Physical Requirements: This position will be performed in an office setting.  The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.

Visa is an EEO Employer.  Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.  Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.