Data Scientist

As a Data Scientist on Visa’s Global Business‑to‑Business Identity & Access Management (B2B IAM) team, you will turn authentication, authorization, and directory telemetry into actionable insight. You’ll help build baseline models and analyses for anomaly detection, user/entity behavior analytics (UEBA), and risk‑based access that strengthen MFA journeys and session controls while improving user experience. In partnership with IAM Engineering and Release Engineering, you’ll take work from notebooks to production on ForgeRock‑centric platforms using CI/CD, containerization, and monitoring. You will also explore agentic AI approaches—safe, human‑in‑the‑loop automations that can propose experiments, generate features, triage anomalies, and suggest policy or journey adjustments (e.g., automating onboardings), with audit trails and guardrails. Your contributions will support service reliability and SLA/availability targets and will follow privacy‑by‑design practices aligned to GDPR, PCI DSS, and other audits.

Essential Functions

·         Ingest and prepare IAM telemetry (ForgeRock AM/DS, SAML/OIDC/OAuth events, MFA, sessions, directory logs) for analysis and modeling.

·         Build and evaluate baseline models for anomaly detection, UEBA, and risk scoring, track clear metrics (precision/recall, ROC‑AUC/PR‑AUC).

·         Run focused EDA and A/B tests to tune adaptive journeys and MFA step‑ups for both security and user experience.

·         Engineer features and keep work reproducible (clean notebooks, versioned datasets, lightweight data docs).

·         Package analyses/models for production (Docker and VM’s) and contribute to CI/CD and safe rollouts (e.g., canary) with Release Engineering covering the entire scope of release and dependent functions to execute with PRE teams.

·         Set up basic monitoring for data/model quality, drift, and errors, create simple dashboards/alerts.

·         Partner with IAM engineers to turn insights into policy/rule changes (risk‑based access, session controls) and validate impact on SLO/SLA.

·         Explore agentic AI (human‑in‑the‑loop) to propose experiments, generate features, and triage anomalies—within audit and safety guardrails.

·         Apply privacy‑ and security‑by‑design (minimize personal data, pseudonymize) aligned to GDPR, PCI DSS, and other audits.

·         Document findings clearly and communicate results to technical and non‑technical stakeholders.

This is a hybrid position. Expectation of days in office will be confirmed by your Hiring Manager.