Description
Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
Lead Cloud Security Engineer Over ViewCloud security Engineering team is looking for a Lead Cloud Security Engineer. The Lead Cloud Security Engineer will design and implement security solutions in support of Mastercard's cloud security strategy. This position will focus on enabling and supporting a secure cloud environment for Mastercard applications and services.
Questions
• Can you demonstrate a good working level of knowledge in information and cloud security principles, theories and concepts?
• Can you collaborate with and influence cross-functional teams to securely develop, build, and deploy cloud native and multi-cloud applications and infrastructure?
• Can you perform security analysis of application architectures and cloud services; identifying methods to mitigate threats, attacks and risks to payment applications?
• Can you provide detailed guidance on the securely implement systems in public cloud environments?
• Can you advise development teams on how to securely design applications and services following industry best practices and enhance existing approaches to security engineering?
Role
• Primary role is to engineer, implement and support Cloud security posture management and cloud workload protection for Mastercard (CNAPP tool)
• Lead discussions with internal stakeholders, cloud platform and DevOps teams to onboard Cloud accounts and CI/CD pipelines into CNAPP platform
• Work closely with platform teams and vulnerability management teams to mitigate cloud misconfigurations and vulnerabilities
• Support the designing, testing, and implementation of complex security solutions to meet security and regulatory requirements for cloud environments
• Consults with development and operational teams to securely design applications and services following industry best practices
• Cultivates and maintains effective working relationships with a variety of internal Mastercard stakeholders, including business owners, end-users, customers, project managers, and engineers
• Performs technology evaluations, supporting business case development, test case definition, and vendor selection based on industry standard criteria
All About You
• Experience with information/cloud security, cloud compliance and vulnerability management within the domain of digital commerce including relevant practical experience
• Strong understanding of Cloud security Posture Management (CSPM) and Cloud Native Application Protection Platform (CNAPP)
• Knowledge of security capabilities and constraints related to native Azure and AWS services, including relevant practical experience
• Good understanding of CI/CD pipeline deployments, Kubernetes, container technology and image vulnerability scanning tools
• Good understanding of threat prevention and detection, and application security principles
• Good understanding of identity management, user authentication and authorization principles
• Demonstrated technical competency in security engineering based on hands-on experience or relevant qualifications
• Demonstrated effectiveness working in a global environment
• Ability to communicate effectively (both oral and written) and develop solid working relationships across multiple levels and organization boundaries
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard's security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Apply on company website
Find Connections via Linkedin
