Director of Software Engineering - Security Automation Job Listing at Mastercard in Pune, MH (Job ID R-222072)

Description

Our Purpose

We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.

Title and Summary

Director of Software Engineering - Security Automation Who is Mastercard?
 
Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships, and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.
Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all.
 
Overview
 
Security Threat and Response Management (STRM) program dedicated collection of self-organizing, high performing, interdependent, co-located individuals representing different functional roles with all the necessary skills to create the foundational capabilities that application teams develop on top of it. This team leads with mission to provide overall stewardship of enterprise grade application architecture & design within the context of holistic software development. This includes driving the architecture & design decisions and building consensus around it. The team leads the exploration in software architecture & technology innovations along with enabling excellence in overall team.
 
The STRM Engineering team is looking for a Director of Software Engineering - Security Engineering & Automations to build and maintain engineering solutions for security threats, automate response capabilities using technologies such as SOAR.  Director of Software Engineering at MasterCard is a high performing people leader within the organization and spearheads the architecture or framework implementations. He or she participates in the Software Development Life Cycle through Coaching, R&D, Proof of Concepts, Prototyping, Code review etc. Additionally, he or she influences the development practices so that they are in compliance with best practices, policies and procedures. The ideal candidate is highly motivated, intellectually curious, analytical, and possesses an entrepreneurial mindset. The role requires a blend of highly developed technical, communications and cybersecurity experience to be a security liaison for Mastercard.
 
Role
In this highly visible position, you will:
•          Work closely with the Security Operations Center (SOC) and multiple Corporate Security stakeholders to gather requirements, analyze, build resilient automation solutions and maintain them.
•          Assess, design and improve SOC processes and workflows with a focus on integrating automation through Security Orchestration, Automation and Response (SOAR) tools, scripts and stand-alone applications.
•          Successfully lead definition, development and delivery of major cross-department initiatives with broad scope and long-term business implications.
•          Collaborate with business and technical partners to identify and scope the opportunities, quantify costs, outline potential value and ROI, identify risks, benefits and constraints.
•          Partner with business to identify innovative solutions and drive strategic decisions.
•          Make presentations to the Senior Management, Business Owners and other Stakeholders and help them in decision making process. 
•          Lead creation of roadmaps that align with the department strategy and long-term business vision and objectives
•          Lead implementation of processes and supporting tools per the evolving needs of the organization.
•          Collaborate with network security, engineering, product & infrastructure teams to build engineering solutions for automation via API calls to security appliances.
•          Instruct and guide the team to ensure that appropriate processes and documentation is in use by the team
 
 
All about you:
 
Essential requirements of candidates:
 
- 8+ years in Software Engineering Concepts and Methodologies
- 2+ years in people leader role
- Proven track record in selection and implementation of methodologies with focus on Lean methodology, delivery of High Efficiency Solutions leading to productivity gains is required
- Strong working knowledge of security technologies (Intrusion Detection and Prevention Systems, Web Proxy, Antivirus, Security Information and Event Management SIEMs, Endpoint Detection agents, Vulnerability Management, etc…)
- Experience in vendor relationship management, vendor selection, RFI/RFP process, SOW is highly desired
- Proven capacity to lead and influence matrix-based project team members and work as a member of a diverse and geographically distributed team
- Be a strong, confident, and exacting writer and speaker, able to communicate your vision and roadmap effectively to a wide variety of stakeholders
- Work on complex enterprise-wide Corporate Security initiatives spanning multiple services/programs and drive resolution
- Drive the architectural design, including dependent services, service interactions, and policies
- Take ownership to improve the customer experience of an entire set of services/applications sold as products or bundled services
- Apply judgment and experience to balance trade-offs between competing interests
- Consult across teams and across organization lines to identify synergies and reuse opportunities
- Conduct technical interviews for hiring engineering staff and raising the performance bar
- Identify and raise awareness of Silo-ed behaviors within the organization and teams
- Mentor and guide software engineers to improve engineering productivity, quality, and technology policy compliance
- Design and implement a scalable, resilient and highly performant set of security services in Identity and access management space
- Provide guidance to teams on development standards, automation and tools.
- Identify performance bottlenecks and come up with novel ways to solve them
- Experience with Windows, Unix Based Operating Systems
 
 
Must have
• Ability to perform Proof of Concepts, ability to quickly code, script and deploy
• BS in Computer Science or related technical field or equivalent practical experience
• Experience in working with fast paced, modern architecture using Java, JavaScript, Spring boot, Redis or similar technologies
• Solid understanding of security fundamentals in identity and access space.
• Proficiency in Software Development Best Practices (TDD/BDD, Unit test, Continuous Delivery)
• Very good analytical and problem solving skills
• Desire to stay abreast of new development technologies and tools
• Very good inter-personal skills and ability to work in a collaborative environment
• Strong communication skills, with an ability to express design ideas to a development team
 
Nice to have
• Working experience in a security space dealing with Identity Management or Vulnerability Management
• Working experience in a continuous integration development environment, preferably Jenkins
• Good understanding of private or public cloud ecosystems
• Experience in secure software development
• Experience with Python scripting, PowerShell, bash, KQL queries, or other scripting languages is desired
• Familiarity with Splunk, Splunk Enterprise Security, Splunk Phantom etc

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard's security policies and practices;

• Ensure the confidentiality and integrity of the information being accessed;

• Report any suspected information security violation or breach, and

• Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

 Apply on company website