Associate Cybersecurity Engineer, Intern - Austin, TX

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose - to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

The Associate Cybersecurity Engineer, Intern will support product security architecture in conducting security architecture reviews. This role aims to proactively identify weaknesses in Visa's security posture, perform architectural assessments, and recommend necessary controls to protect Visa from adversarial threats. The intern will gain hands-on experience in security architecture reviews, threat modelling, and secure development practices.

The Associate Cybersecurity Engineer, Intern will assist in reviewing security designs, identifying gaps in security controls, and ensuring security best practices are integrated into the software development lifecycle. The role also involves developing tools to support security automation efforts and streamline assessments.

Some job duties and projects could include:

• Be a product security champion by driving Security Architecture and design/implementation/optimization for Web, API, and Mobile backend applications.
• Engage in initial requirements definition, including analysis of threats and risks, ensuring alignment with security, engineering, IT, and architecture standards.
• Conduct and facilitate security reviews, threat modeling, and deep design reviews throughout the development lifecycle.
• Facilitate tabletop, red-team, and scenario analysis exercises in conjunction with other SMEs and coordinate resolution plans for identified vulnerabilities.
• Develop security mechanisms to protect applications from attacks across various platforms and technologies, including:
  • o Public cloud environments like AWS, Google Cloud, and Azure.
  • o Web technologies such as HTTP, SOAP, REST services, AJAX.
  • o Databases including MySQL, MS SQL, Couchbase, Cassandra.
  • o Programming languages like Java, C, C++, .Net, JavaScript, GoLang.
  • o Web Access Management solutions like ForgeRock and custom security frameworks.
• Automate security tools and processes to enhance security-in-depth, secure transaction processing, and secure coding practices for web and mobile applications.
• Oversee multiple security projects, services, and functions, providing strategic direction and execution.
• Identify and analyze system and application vulnerabilities, recommending countermeasures and mitigating controls to reduce risks.
• Independently develop enterprise-wide security programs with a significant impact on the organization's success.

Basic Qualifications

• Students pursuing a Bachelor's or Masters degree in Computer Science, Computer Engineering, CIS/MIS, Cybersecurity, Business or a related field, with less than 2 years relevant work experience, graduating December 2025 or later.
• Strong communications skills, specifically, the absence of repeated grammatical or typographical errors, clear and concise written and spoken communications that demonstrate professional judgment.

Preferred Qualifications

• Development skills with experience in secure coding and application security.
• Knowledge or understanding of security architecture principles and best practices.
• Familiarity with OWASP Top 10, SANS Top 25, and threat modeling frameworks.
• Knowledge of cryptographic concepts and secure communication protocols.
• Experience or exposure with penetration testing tools such as Burp Suite, Nmap, Nessus, and Kali.
• Proficiency in one or more scripting languages (Python, Bash, etc.).
• Experience in one or more programming languages (Java, C++, JavaScript, etc.).
• Understanding of networking fundamentals, OSI model, and TCP/IP stack.
• Awareness of cloud security principles (AWS, Azure, or GCP security best practices).
• The ability to take on challenges and address problems head-on
• Strong ability to collaborate
• Highly driven, resourceful and results oriented
• Good team player and excellent interpersonal skills
• Good analytical and problem-solving skills
• Demonstrated ability to lead and navigate through ambiguity

U.S. APPLICANTS ONLY:The estimated hourly range for a new hire into this position is $27/hr to $31/hr which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401 (k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program.

Work Authorization: Visa will not sponsor applicants for work visas in connection with this position. Future sponsorship will not be considered.

Work Hours:Varies upon the needs of the department.

This is a hybrid position:Expectation of days in office will be confirmed by your hiring manager.

Travel Requirements:This position requires travel5-10% of the time.

Mental/Physical Requirements:This position will be performed in an office setting. The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.

Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.