Overview
Senior Cybersecurity Risk Analyst
Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. We are building a sustainable world that unlocks priceless possibilities for all through secure data, networks, partnerships, and innovation. Corporate Security protects Mastercard from cyber and physical threats as the 1st Line of Defense, coordinating with enterprise risk management and technology owners to assess risks, implement controls, and provide assurance to regulators and stakeholders.
In This Position, You Will
* Perform risk assessments using qualitative and quantitative methodologies in support of the Information Security Management System (ISMS) and other regulatory requirements
* Assess the impact of compensating controls and mitigation actions on risk likelihood and magnitude
* Engage with technology owners, control owners, risk owners, and senior management to assist in managing risks
* Prioritize risks and identify items requiring escalation to senior management
* Develop and deliver executive-level updates on the status of security risks
* Compose responses to regulators and auditors on queries regarding security risks
* Maintain documentation of risk management and analysis procedures for Corporate Security
The Ideal Candidate For This Position Should Be
* Literate in standard cybersecurity and risk management frameworks such as NIST CSF
* Familiar with risk management methodologies including FAIR and tools used to perform FAIR risk assessments
* Adept at recognizing control shortfalls with significant risk implications for the business
* Familiar with RSA Archer or similar governance, risk, and compliance (GRC) tools
* Effective at communicating with a wide range of stakeholders across technology and business functions, including senior executives, product owners, and information security engineers
* Knowledgeable of technology systems and platform functions
* Willing to learn new technical skills
* Able to influence and drive results cross-functionally
Corporate Security Responsibility
Every person working for or on behalf of Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks come with an inherent risk to the organization. The successful candidate must:
* Abide by Mastercard’s security policies and practices
* Ensure the confidentiality and integrity of the information being accessed
* Report any suspected information security violation or breach
* Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines
Seniority level
* Mid-Senior level
Employment type
* Full-time
Job function
* Information Technology
Industries
* Financial Services, IT Services and IT Consulting, and Technology, Information and Internet
#J-18808-Ljbffr