Responsible for reviewing network connectivity change requests, policy reviews, and implementing security requirements while collaborating with internal stakeholders.
Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
Information Security Engineer II
Overview
The Information Security Engineer II will have a high degree of responsibility primarily focusing on change request tickets related to network connectivity and user-authenticated access. This role will work closely with Network and Security Engineering, Cloud Security, and Enterprise Application teams to determine if change requests follow Mastercard's policies and standards while driving business alignment. This person will be involved in policy reviews including researching risk areas and changes to the network design which will drive changes to policies and technical standards and technology requirements for future security services.
The role requires the ability to influence and collaborate across a diverse group of internal stakeholders, effectively managing multiple priorities, demands, and possess a deep understanding of networks and systems in both on-premises and cloud environments.
In this role you will:
Review and analyze new and existing network connectivity and user access change requests.
Participate in policy reviews that involve researching initiatives, new regulations, and policies that may be impacted.
Participating in procedure reviews to better align our processes to the business.
Apply technical capabilities within own discipline to coach and develop junior employees
Influence and implement security requirements, standards, and architecture for the security aspects of large, complex projects
Raise opportunities for improvement to senior leadership
Understand and define security requirements and policies following industry best practices and regulatory compliance and to ensure repeatable processes
Review risk artifacts.
Provide support for the development of technical security requirements ensuring appropriate stakeholders are engaged, requirements are updated, prepared for Governance reviews, and published.
Cultivate and maintain working relationships with variety of internal stakeholders, including business owners, end-users, customers, project managers, engineers, and senior leadership
All about You
The ideal candidate for this position should have:
A high desire to develop technical and security expertise and have a passion to learn about new technologies, and progressively takes initiative to develop that expertise.
Working experience with firewalls and access control lists.
Working knowledge and application of NIST Security Publications, PCI-DSS, and industry standards for hardening systems and software.
Effective communication and organizational skills.
Information Security Engineering experience including risk identification with options and compensating controls to remediate.
NICE Framework References
National Initiative for Cybersecurity Education (NICE) competency proficiency levels of advanced in leadership, operational, and professional, to advanced and expert in technical.
This Mastercard role shares KSAs with related NICE work roles:
SP-DEV-002, OPM, 622, Secure Software Assessor
SP-ARC-002, OPM652, Security Architect
SP-TRD-001, OPM661, Research & Development Specialist
SP-SRP-001, OPM641, Systems Requirements Planner
SP-SYS-001, OPM631, Information Systems Security Developer
OV-SPP-002, OPM751, Cyber Policy and Strategy Planner
Corporate Security Responsibility
Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:
Abide by Mastercard's security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
Information Security Engineer II
Overview
The Information Security Engineer II will have a high degree of responsibility primarily focusing on change request tickets related to network connectivity and user-authenticated access. This role will work closely with Network and Security Engineering, Cloud Security, and Enterprise Application teams to determine if change requests follow Mastercard's policies and standards while driving business alignment. This person will be involved in policy reviews including researching risk areas and changes to the network design which will drive changes to policies and technical standards and technology requirements for future security services.
The role requires the ability to influence and collaborate across a diverse group of internal stakeholders, effectively managing multiple priorities, demands, and possess a deep understanding of networks and systems in both on-premises and cloud environments.
In this role you will:
Review and analyze new and existing network connectivity and user access change requests.
Participate in policy reviews that involve researching initiatives, new regulations, and policies that may be impacted.
Participating in procedure reviews to better align our processes to the business.
Apply technical capabilities within own discipline to coach and develop junior employees
Influence and implement security requirements, standards, and architecture for the security aspects of large, complex projects
Raise opportunities for improvement to senior leadership
Understand and define security requirements and policies following industry best practices and regulatory compliance and to ensure repeatable processes
Review risk artifacts.
Provide support for the development of technical security requirements ensuring appropriate stakeholders are engaged, requirements are updated, prepared for Governance reviews, and published.
Cultivate and maintain working relationships with variety of internal stakeholders, including business owners, end-users, customers, project managers, engineers, and senior leadership
All about You
The ideal candidate for this position should have:
A high desire to develop technical and security expertise and have a passion to learn about new technologies, and progressively takes initiative to develop that expertise.
Working experience with firewalls and access control lists.
Working knowledge and application of NIST Security Publications, PCI-DSS, and industry standards for hardening systems and software.
Effective communication and organizational skills.
Information Security Engineering experience including risk identification with options and compensating controls to remediate.
NICE Framework References
National Initiative for Cybersecurity Education (NICE) competency proficiency levels of advanced in leadership, operational, and professional, to advanced and expert in technical.
This Mastercard role shares KSAs with related NICE work roles:
SP-DEV-002, OPM, 622, Secure Software Assessor
SP-ARC-002, OPM652, Security Architect
SP-TRD-001, OPM661, Research & Development Specialist
SP-SRP-001, OPM641, Systems Requirements Planner
SP-SYS-001, OPM631, Information Systems Security Developer
OV-SPP-002, OPM751, Cyber Policy and Strategy Planner
Corporate Security Responsibility
Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:
Abide by Mastercard's security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
- Abide by Mastercard's security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Top Skills
Access Control Lists
Firewalls
Nist Security Publications
Pci-Dss
Similar Jobs at Mastercard
Blockchain • Fintech • Payments • Consulting • Cryptocurrency • Cybersecurity • Quantum Computing
Manage and execute Enterprise & Credit Risk projects, collaborating with stakeholders, driving delivery milestones, and resolving issues to meet business goals.
Blockchain • Fintech • Payments • Consulting • Cryptocurrency • Cybersecurity • Quantum Computing
The Product Manager will lead data enablement for optimization products, collaborating with teams to identify needs, drive development, and enhance data architecture.
Top Skills:
AirflowBigQueryDelta LakeHadoopKafkaS3Spark
Blockchain • Fintech • Payments • Consulting • Cryptocurrency • Cybersecurity • Quantum Computing
Lead the product operations function, manage MNGS product offerings, optimize client interactions, and collaborate with teams for product launches and enhancements.
Top Skills:
Mastercard Studio (Pme) ToolsPayment Switching Technologies
What you need to know about the Edinburgh Tech Scene
From traditional pubs and centuries-old universities to sleek shopping malls and glass-paneled office buildings, Edinburgh's architecture reflects its unique blend of history and modernity. But the fusion of past and future isn't just visible in its buildings; it's also shaping the city's economy. Named the United Kingdom's leading technology ecosystem outside of London, Edinburgh plays host to major global companies like Apple and Adobe, as well as a growing number of innovative startups in fields like cybersecurity, finance and healthcare.
