Senior Information Security Engineer Apply locations: London, England (Angel Lane), Waterloo, Belgium, Dublin, Ireland
Time type: Full time
Posted on: Posted 6 Days Ago
Time left to apply: End Date: December 9, 2024 (7 days left to apply)
Job requisition id: R-232939
Our Purpose Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart, and accessible. Our technology and innovation, partnerships, and networks combine to deliver a unique set of products and services that help people, businesses, and governments realize their greatest potential.
Title and Summary Mastercard is seeking candidates to join our Application Security team. Mastercard is developing the next generation of applications and services to enable consumers and businesses to securely, efficiently, and intelligently conduct payment transactions, and is leveraging state-of-the-art cryptographic equipment to protect its assets.
• Can you demonstrate expertise in information security, and more specifically, with cryptography?
• Can you navigate through the many security frameworks (PCI, FIPS, ISO) with respect to cryptographic standards?
• Can you properly assess the pros and cons of implementing different key management and cryptographic services in the cloud, in order to help in the design of productive yet secure cloud applications?
• Can you manage the relationship with vendors, understanding market trends, and forecast impacts on the payment industry?
Roles Provide technical design and architecture advice to internal teams on how to securely develop and build applications and supporting systems. Define secure mechanisms for critical business functions, for both on-premises and in cloud environments. Work closely with Hardware Security Module vendors to follow up on product lifecycle, product roadmap, new functionalities, and issues. Assist in the strategy, standards, and architecture for the cryptography, PKI, and key management aspects of the SDLC including application, mobile, web service, DevOps, cloud, and CI/CD efforts. All About You Demonstrate a broad awareness of security engineering concepts and practices across all phases of the software development lifecycle. Strong understanding of information security, risk, and data privacy within the domain of digital commerce including relevant practical experience. Knowledge of cryptography, including several of the following: encryption, hashing, key management, digital certificates, TLS, PKCS#11, HSMs, confidential computing. Working knowledge of public cloud computing (AWS/Azure/GCP), and technical understanding of security and data protection. Demonstrate technical competency in security engineering based on hands-on experience or relevant qualifications. Experience providing secure design advice for web-based environments and secure communication, including mobile applications, web applications, and web services. Working knowledge and technical security experience with UNIX, Linux, FreeBSD, AIX, or Windows. Demonstrate the ability to articulate and communicate effectively to diverse audiences and properly translate security and risk management terminology into business terms and recommend alternative solutions to these stakeholders. Strong verbal and written communication skills. Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks come with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard's security policies and practices. Ensure the confidentiality and integrity of the information being accessed. Report any suspected information security violation or breach. Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines. About Us Everyone wants easier ways to pay; we invent them.
Checkout lines are slow; we speed them along.
Merchants want more sales; we give them data and insights.
People need financial access; we connect them.
Corporate purchasing is complicated; we make it simple.
Commuters are busy; we speed them on their way.
We help create them.
Small businesses are virtual; we give them access to a world of buyers.
#J-18808-Ljbffr