Senior Information Security Engineer
Mastercard
Job Overview
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Who is Mastercard?
Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.
Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all.
Overview of the Senior Information Security Engineer Role
The Information Security team at Mastercard is looking for a Senior Information Security Engineer responsible for the day-to-day management of Finicity's information security tools infrastructure, as well as the triage and investigation of information security events. This role involves the creation and refinement of standard operating procedures and utilizes strong policy and process knowledge, alongside expertise with a variety of technologies. It also requires interaction with numerous other departments and business functions.
Key Responsibilities
- Ownership of a variety of technologies, including internet security, IPS/IDS, SIEM, vulnerability tools, and other security technologies.
- Review and analyze security logs to identify anomalies within the company’s environment and activities within the network, as well as any devices accessing the network.
- Monitor and investigate anomalies resulting from scans by the Security Incident Event Monitoring (SIEM) application to ensure all activities comply with company policies and procedures.
- Monitor, track, and document information security issues and threats to ensure prompt resolution and root cause analysis as needed.
- Define, implement, and maintain information security policies, standards, and procedures, supporting audit efforts related to information security.
- Recommend and implement new tool sets and practices with regards to information security.
- Provide security consultation and architecture review on projects to business and IT groups, and actively participate in Threat Modelling Exercises.
All About You
The ideal candidate for this Senior Information Security Engineer position should have:
- Undergraduate degree in computer information technology, computer engineering, or a related degree.
- Intermediate experience in Information Security/Risk Management.
- Familiarity with regulatory and legal requirements (e.g., SOX, PCI).
- Familiarity with common Web Application Security risks (e.g., Cross Site Scripting, SQL Injection, Authentication and Session Management).
- Professional certifications preferred (e.g., CISSP, CEH, SSCP, CRISC etc.).
- Working knowledge of AWS and Cloud Security.
- Excellent time management skills and the ability to prioritize and multitask.
- Ability to work efficiently and independently with minimal supervision.
- Ability to work successfully in a cross-functional team environment.
Corporate Security Responsibility
Every person working for, or on behalf of, Mastercard is responsible for Information Security. All activities involving access to Mastercard assets, information, and networks come with an inherent risk to the organization. Therefore, it is expected that the successful candidate for this position must:
- Abide by Mastercard’s security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.
Key Skills/Competency
- Information Security
- Risk Management
- SIEM
- Vulnerability Management
- IPS/IDS
- AWS Security
- Cloud Security
- Security Policies
- Threat Modelling
- Incident Response
How to Get Hired at Mastercard
- Research Mastercard's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor to understand their DQ (decency quotient) and global impact.
- Customize your resume: Tailor your Senior Information Security Engineer resume to highlight direct experience with security tool ownership, SIEM, vulnerability management, AWS, and regulatory compliance (SOX, PCI).
- Master security concepts: Prepare to discuss in-depth your expertise in internet security, IPS/IDS, SIEM operations, web application security risks, and threat modeling during interviews.
- Showcase problem-solving skills: Be ready to provide specific examples of how you've triaged security events, conducted root cause analysis, and successfully implemented new security practices or tools.
- Highlight collaboration and autonomy: Emphasize your ability to work independently with minimal supervision while also succeeding in cross-functional team environments, contributing to security architecture discussions.
Frequently Asked Questions
Find answers to common questions about this job opportunity
Explore similar opportunities that match your background