Be an Early Applicant
We are a global technology company in the payments industry.
The Role
Responsible for reviewing network connectivity change requests, policy reviews, and implementing security requirements while collaborating with internal stakeholders.
Summary Generated by Built In
Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
Information Security Engineer II
Overview
The Information Security Engineer II will have a high degree of responsibility primarily focusing on change request tickets related to network connectivity and user-authenticated access. This role will work closely with Network and Security Engineering, Cloud Security, and Enterprise Application teams to determine if change requests follow Mastercard's policies and standards while driving business alignment. This person will be involved in policy reviews including researching risk areas and changes to the network design which will drive changes to policies and technical standards and technology requirements for future security services.
The role requires the ability to influence and collaborate across a diverse group of internal stakeholders, effectively managing multiple priorities, demands, and possess a deep understanding of networks and systems in both on-premises and cloud environments.
In this role you will:
Review and analyze new and existing network connectivity and user access change requests.
Participate in policy reviews that involve researching initiatives, new regulations, and policies that may be impacted.
Participating in procedure reviews to better align our processes to the business.
Apply technical capabilities within own discipline to coach and develop junior employees
Influence and implement security requirements, standards, and architecture for the security aspects of large, complex projects
Raise opportunities for improvement to senior leadership
Understand and define security requirements and policies following industry best practices and regulatory compliance and to ensure repeatable processes
Review risk artifacts.
Provide support for the development of technical security requirements ensuring appropriate stakeholders are engaged, requirements are updated, prepared for Governance reviews, and published.
Cultivate and maintain working relationships with variety of internal stakeholders, including business owners, end-users, customers, project managers, engineers, and senior leadership
All about You
The ideal candidate for this position should have:
A high desire to develop technical and security expertise and have a passion to learn about new technologies, and progressively takes initiative to develop that expertise.
Working experience with firewalls and access control lists.
Working knowledge and application of NIST Security Publications, PCI-DSS, and industry standards for hardening systems and software.
Effective communication and organizational skills.
Information Security Engineering experience including risk identification with options and compensating controls to remediate.
NICE Framework References
National Initiative for Cybersecurity Education (NICE) competency proficiency levels of advanced in leadership, operational, and professional, to advanced and expert in technical.
This Mastercard role shares KSAs with related NICE work roles:
SP-DEV-002, OPM, 622, Secure Software Assessor
SP-ARC-002, OPM652, Security Architect
SP-TRD-001, OPM661, Research & Development Specialist
SP-SRP-001, OPM641, Systems Requirements Planner
SP-SYS-001, OPM631, Information Systems Security Developer
OV-SPP-002, OPM751, Cyber Policy and Strategy Planner
Corporate Security Responsibility
Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:
Abide by Mastercard's security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
Information Security Engineer II
Overview
The Information Security Engineer II will have a high degree of responsibility primarily focusing on change request tickets related to network connectivity and user-authenticated access. This role will work closely with Network and Security Engineering, Cloud Security, and Enterprise Application teams to determine if change requests follow Mastercard's policies and standards while driving business alignment. This person will be involved in policy reviews including researching risk areas and changes to the network design which will drive changes to policies and technical standards and technology requirements for future security services.
The role requires the ability to influence and collaborate across a diverse group of internal stakeholders, effectively managing multiple priorities, demands, and possess a deep understanding of networks and systems in both on-premises and cloud environments.
In this role you will:
Review and analyze new and existing network connectivity and user access change requests.
Participate in policy reviews that involve researching initiatives, new regulations, and policies that may be impacted.
Participating in procedure reviews to better align our processes to the business.
Apply technical capabilities within own discipline to coach and develop junior employees
Influence and implement security requirements, standards, and architecture for the security aspects of large, complex projects
Raise opportunities for improvement to senior leadership
Understand and define security requirements and policies following industry best practices and regulatory compliance and to ensure repeatable processes
Review risk artifacts.
Provide support for the development of technical security requirements ensuring appropriate stakeholders are engaged, requirements are updated, prepared for Governance reviews, and published.
Cultivate and maintain working relationships with variety of internal stakeholders, including business owners, end-users, customers, project managers, engineers, and senior leadership
All about You
The ideal candidate for this position should have:
A high desire to develop technical and security expertise and have a passion to learn about new technologies, and progressively takes initiative to develop that expertise.
Working experience with firewalls and access control lists.
Working knowledge and application of NIST Security Publications, PCI-DSS, and industry standards for hardening systems and software.
Effective communication and organizational skills.
Information Security Engineering experience including risk identification with options and compensating controls to remediate.
NICE Framework References
National Initiative for Cybersecurity Education (NICE) competency proficiency levels of advanced in leadership, operational, and professional, to advanced and expert in technical.
This Mastercard role shares KSAs with related NICE work roles:
SP-DEV-002, OPM, 622, Secure Software Assessor
SP-ARC-002, OPM652, Security Architect
SP-TRD-001, OPM661, Research & Development Specialist
SP-SRP-001, OPM641, Systems Requirements Planner
SP-SYS-001, OPM631, Information Systems Security Developer
OV-SPP-002, OPM751, Cyber Policy and Strategy Planner
Corporate Security Responsibility
Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:
Abide by Mastercard's security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
- Abide by Mastercard's security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Top Skills
Access Control Lists
Firewalls
Nist Security Publications
Pci-Dss
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re building a resilient economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Why Work With Us
We live the Mastercard Way: creating value in the communities we touch, growing together through the opportunities we see, and moving fast to innovate and scale. Our collaborative culture and our passionate people are the key to what we do, driving meaningful change as one team and connecting everyone to priceless possibilities.
Gallery
Mastercard Teams
Mastercard Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
In our ongoing workplace evolution, we’ve introduced hybrid work, Work-From-Elsewhere Weeks and Meeting-Free Days.
Typical time on-site:
3 days a week
Purchase, NY
Arlington, VA
Atlanta, GA
Bogotá, CO
Boston, MA
Chicago, IL
Dublin, Dublin
Gurugram, Gurugram
London, GB
Miami, FL
Mumbai, Maharashtra
New York, NY
O'Fallon, MO
Pune, Maharashtra
Ramat Gan, IL
Saint Leonards, St Leonards
San Francisco, CA
São Paulo, SP
Seattle, WA
Singapore, SG
Toronto, Ontario
Vancouver, BC
Learn more
