Our PurposeMastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.Title and SummaryInformation Security Engineer IIOverviewThe Information Security Engineer II will have a high degree of responsibility primarily focusing on change request tickets related to network connectivity and user-authenticated access. This role will work closely with Network and Security Engineering, Cloud Security, and Enterprise Application teams to determine if change requests follow Mastercard's policies and standards while driving business alignment. This person will be involved in policy reviews including researching risk areas and changes to the network design which will drive changes to policies and technical standards and technology requirements for future security services. The role requires the ability to influence and collaborate across a diverse group of internal stakeholders, effectively managing multiple priorities, demands, and possess a deep understanding of networks and systems in both on-premises and cloud environments.ResponsibilitiesReview and analyze new and existing network connectivity and user access change requests.Participate in policy reviews that involve researching initiatives, new regulations, and policies that may be impacted.Participating in procedure reviews to better align our processes to the business.Apply technical capabilities within own discipline to coach and develop junior employees.Influence and implement security requirements, standards, and architecture for the security aspects of large, complex projects.Raise opportunities for improvement to senior leadership.Understand and define security requirements and policies following industry best practices and regulatory compliance and to ensure repeatable processes.Review risk artifacts.Provide support for the development of technical security requirements ensuring appropriate stakeholders are engaged, requirements are updated, prepared for Governance reviews, and published.Cultivate and maintain working relationships with variety of internal stakeholders, including business owners, end-users, customers, project managers, engineers, and senior leadership.All about YouA high desire to develop technical and security expertise and have a passion to learn about new technologies, and progressively takes initiative to develop that expertise.Working experience with firewalls and access control lists.Working knowledge and application of NIST Security Publications, PCI-DSS, and industry standards for hardening systems and software.Effective communication and organizational skills.Information Security Engineering experience including risk identification with options and compensating controls to remediate.NICE Framework ReferencesNational Initiative for Cybersecurity Education (NICE) competency proficiency levels of advanced in leadership, operational, and professional, to advanced and expert in technical.Related NICE Work RolesSP-DEV-002, OPM, 622, Secure Software AssessorSP-ARC-002, OPM652, Security ArchitectSP-TRD-001, OPM661, Research & Development SpecialistSP-SRP-001, OPM641, Systems Requirements PlannerSP-SYS-001, OPM631, Information Systems Security DeveloperOV-SPP-002, OPM751, Cyber Policy and Strategy PlannerCorporate Security ResponsibilityAbide by Mastercard's security policies and practices;Ensure the confidentiality and integrity of the information being accessed;Report any suspected information security violation or breach, andComplete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
#J-18808-Ljbffr