Mastercard logo
Mastercard

Founded in 1966, Mastercard is a worldwide transaction, payment-processing, and consulting company best known for its line of personal and business credit cards. As an employer, Ma

Lead, Information Security Engineer

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 38,800Since 1966

Location

Ireland

Posted

19 hours ago

Salary

0

Seniority

Senior

English

Job Description

Lead, Information Security Engineer

Mastercard

Our Purpose Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential. Title and Summary Lead, Information Security Engineer Who is Mastercard? Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all. Mission First, People Always As Corporate Security, we are responsible for keeping Mastercard safe and secure from cyber and physical threats, and it is our people on the frontlines who make this happen every day. By taking care of our people, their wellbeing, and career development, we provide them the necessary tools and environment to ensure the success of our mission. Overview Mastercard is seeking candidates to join the Enterprise Security Architecture and Innovation team! Mastercard is developing the next generation of applications and services to enable consumers and businesses to securely, efficiently, and intelligently conduct payment transactions, and is leveraging state-of-the-art cryptographic practices to protect its assets. Whether through traditional retail, mobile, or e-commerce, Mastercard innovation is leading the digital convergence of traditional and emerging payments technologies across a wide variety of new devices and services. • Can you demonstrate expertise in information security?• Can you advise teams on how to implement security practices related to cryptography, blockchain, and stablecoin?• Can you navigate through the many security frameworks (PCI, FIPS, ISO) and regulatory requirements with respect to cryptographic standards? Role• Contribute to the execution the security roadmap for Mastercard - enhancing security posture and enforcing governance and compliance to the security standards • Provide technical design and architecture advice to internal teams on how to securely develop and build applications and supporting systems• Partner with application teams to determine path to compliance - articulate short, medium and long term plans when necessary • Define secure mechanisms for critical business functions, for both on-premises and in cloud environments• Define security requirements and guidelines to ensure repeatable processes are followed globally• Provide security advice in cryptography, including several of the following: encryption, hashing, key management, digital certificates, TLS• Research emergent technologies and security practices to support development of security strategy, standards, and architecture All About You• Experience providing secure design advice for web-based environments and secure communication, including mobile applications, web applications and web services• Demonstrate a broad awareness of security engineering concepts and practices across all phases of the software development lifecycle• Strong understanding of information security, risk and data privacy within the domain of digital commerce including relevant practical experience• Knowledge of cryptography, including several of the following: encryption, hashing, key management, digital certificates, TLS, PKCS#11, HSMs• Demonstrate technical competency in security engineering based on hands-on experience or relevant qualifications• Ability to perform analysis, review, and design of custom systems, not just product implementation or operations• Strong verbal and written communication skills• Demonstrate the ability to articulate and communicate effectively to diverse audiences and properly translate security and risk management terminology into business terms and recommends alternative solutions to these stakeholders Required Skills• Application security • Cryptography• Security engineering• Architecture and design Additional Nice to Have• Application development (hands-on experience)• Blockchain• Stablecoin• Cloud security• Experience with PKI systems and vendors Relevant Previous Experience• Security Engineering• Security Consultant• Application developer/architect with security experience/focus Mastercard Corporate Security Roles have been aligned with the NICE framework (National Initiative for Cybersecurity Education). For this role the NICE Work Roles most closely aligned are: • Cybersecurity Architecture• Secure Systems Development• Security Control Assessment• Systems Security Management• Technology Research and Development Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: - Abide by Mastercard's security policies and practices; - Ensure the confidentiality and integrity of the information being accessed; - Report any suspected information security violation or breach, and - Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

Related Categories

Related Job Pages

More Security Engineer Jobs

NinjaOne logo

Product Manager – Endpoint Management, Security

NinjaOne

The world’s best IT teams and MSPs use NinjaOne.

Security Engineer23 hours ago
Full TimeRemoteTeam 1,001-5,000H1B Sponsor

• Help define and evolve the vision for NinjaOne’s endpoint management and security capabilities. • Contribute to and own key parts of the endpoint management and security roadmap. • Drive product direction for features to identify security gaps, and remediate or protect against them. • Work closely with engineering, design, support, and other stakeholders to bring new capabilities from concept to delivery. • Engage with customers, MSPs, and internal teams to understand how endpoint management and security features are used in practice. • Write clear product requirements, define workflows and edge cases, and ensure features are delivered to a high standard. • Ensure capabilities work cohesively across NinjaOne and enable other product areas to build on top of them effectively.

California + 16 moreAll locations: California | Colorado | Connecticut | Florida | Illinois | Kansas | Maine | New Jersey | New York | North Carolina | Oregon | Maryland | Massachusetts | Tennessee | Texas | Virginia | Washington
$150K - $200K / year
ClanX logo

Senior Security Engineer

ClanX

clanX brings world-class product builders together as cloud-based teams & connects them with high growth tech companies.

Full TimeRemoteTeam 1-10H1B No Sponsor

• Oversee security across the entire infrastructure and codebase. • Conduct penetration testing and proactively identify system vulnerabilities. • Assess and improve security across enterprise deployments. • Identify and remediate security flaws in applications, DevOps pipelines, and cloud environments. • Strengthen data protection controls including encryption, access management, audit logging, and secure hosting. • Lead compliance initiatives for SOC 2, ISO 27001, and GDPR. • Support audit preparation, security reviews, and certification activities. • Establish secure development practices and security review processes. • Partner with Engineering, DevOps, and ML teams to embed security throughout the development lifecycle. • Drive continuous improvement of the organization's security posture.

India

Role Description - Aufbau, Pflege und Weiterentwicklung des Information Security Management Systems (ISMS) - Durchführung von Risikoanalysen und Sicherheitsbewertungen - Entwicklung und Umsetzung von Sicherheitsrichtlinien und -konzepten - Begleitung von Audits sowie Unterstützung bei Zertifizierungen (z. B. ISO 27001) - Sensibilisierung und Schulung von Mitarbeitenden im Bereich IT-Sicherheit Qualifications - Fundierte Kenntnisse im Bereich Informationssicherheitsmanagement - Erfahrung im Aufbau, Betrieb oder der Weiterentwicklung eines ISMS - Kenntnisse relevanter Standards und Frameworks, insbesondere ISO/IEC 27001 und/oder BSI IT-Grundschutz - Kenntnisse in den Bereichen Governance, Compliance und IT-Sicherheitsanforderungen - Erfahrung in der Erstellung von Sicherheitsrichtlinien und Konzepten Benefits - Spannende Security-Projekte mit hoher technischer Tiefe - Flexible Arbeitsmodelle und Remote-Möglichkeiten - Attraktives Gehaltspaket - Individuelle Weiterbildungs- und Zertifizierungsmöglichkeiten - Moderne Technologien und ein professionelles Security-Umfeld - über 30 Tage Urlaub - Firmenwagen-Option

Germany
60K - 95K / year
Full TimeRemoteTeam 501-1,000H1B No Sponsor

• Generate new registrations through strategic outbound prospecting via email, LinkedIn, phone, and targeted outreach campaigns • Build relationships with cybersecurity practitioners, engineering teams, security researchers, and enterprise security leaders • Re-engage previous conference attendees, training participants, and members of the ISMG community • Identify and close enterprise and multi-seat registration opportunities • Consult with prospective attendees to understand their professional goals and recommend the most valuable conference experiences • Partner closely with marketing to improve messaging, campaign performance, and attendee conversion • Maintain an active sales pipeline while consistently achieving outreach, conversion, and revenue goals • Represent ISMG and our event portfolio professionally across the cybersecurity community

United Kingdom