Description
Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
Lead Information Security Engineer OverviewMastercard is seeking for an experienced Lead Information Security Engineer – IAM Architect to design, implement, and manage our Identity and Access Management (IAM) solutions. This role will focus on securing enterprise identities, ensuring compliance with security policies, and driving IAM best practices across the organization. The ideal candidate will have deep expertise in IAM technologies, authentication protocols, role-based access control (RBAC), and cloud-based identity solutions. We are looking for an experienced security and identity professional who is passionate about enhancing the customer experience journey, highly motivated, analytical, and possesses an entrepreneurial mindset.
Role
IAM Architecture & Design:
• Develop and implement a strategic IAM architecture to support enterprise security and compliance requirements.
• Design and manage IAM frameworks, including authentication, authorization, provisioning, and governance.
• Lead the adoption of Zero Trust principles and best practices for identity security.
• Contribute to optimize and improve the IAM processes and policies
- Design the IAM processes (JML or access reviews) and discuss and implement once approved by the mgmt.
- Document any new standards
• Lead the troubleshooting/resolving the issues/defects identified, by working with Saviynt and ensure the solution is deployed
• Contribute to the architecture advice for AWS, Azure and GCP environments
- Work on the connector architecture for better integration with AWS
- Apply best practices to improve the connector performance, if required
- Document the new architecture in confluence
IAM Solutions:
• Architect, deploy, and maintain IAM solutions such as Microsoft Entra ID (Azure AD), AWS IAM and Saviynt.
• Design and enforce Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and Least Privilege models.
• Implement and manage Multi-Factor Authentication (MFA), Single Sign-On (SSO), and Privileged Access Management (PAM) solutions.
• Support access review cycles based on the SOX, SOC1 and PCI standards, create campaigns
• Support any remediation of audit findings and work on it to get it resolved
• Contribute/Create automation scripts for Azure using Powershell scripting
- Lead the scripting efforts as required to automate processes in Azure or any other environment
- Ensure the scripts are peer reviewed and unit tested
- Ensure the scripts are updated into Github repository
• Responsible for contributing to best practices & compliance for IGA
Leadership & Collaboration:
• Act as a subject matter expert (SME) in IAM, advising leadership and IT teams.
• Lead a team of IAM engineers, provide mentorship, and drive innovation in identity security.
• Collaborate with Corporate Security and subsidiary IT teams to align IAM initiatives with enterprise goals.
Preferred Qualifications:
• CISSP, CISM, or Certified Identity and Access Manager (CIAM) certification.
• Experience with IAM governance tools (SailPoint IdentityNow or Saviynt).
• Hands-on experience with SIEM solutions like Splunk etc.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard's security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Apply on company website
Find Connections via Linkedin
