Description
Our Purpose
We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.
Title and Summary
Information Security Lead Who is Mastercard?Mastercard is a global technology company in the payments industry. Our mission is to connect
and power an inclusive, digital economy that benefits everyone, everywhere by making
transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships
and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.
Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our
company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all.
Overview-
Dynamic Yield by Mastercard is looking for an Information Security Lead to steer the organization's information security, data security and risk management. The Information Security Lead will work with various departments in Mastercard and implement the organization's best practices in Dynamic Yield. This role will report to the VP technologies operations organization.
Role-
• Developing, implementing, and monitoring a strategic, comprehensive enterprise information security and IT risk management program that aligns with the organization's business objectives and regulatory requirements. The program is required to align with Mastercard's corporate strategy and directives.
• Providing and approving security related items in RFP responses and contract negotiations. Joining customer calls to explain our security position and understand the customer needs.
• Partnering with business units and stakeholders across the organization to facilitate risk assessment and risk management processes, and to raise awareness of security issues and best practices.
• Establishing and maintaining an information security management framework that incorporates industry standards and best practices and lead compliance audits for ISO/IEC 27xxx, SOC II and other security certifications.
• Assisting in the selection, implementation, and maintenance of security technologies, tools, and processes that support the organization's security goals and policies.
• Responding to security incidents and breaches, and coordinating with internal and external parties to investigate, contain, remediate, and report on them.
• Evaluating and reporting the organization's security posture and performance, and provide regular feedback and recommendations to senior management.
• Staying abreast of current and emerging security threats, trends, technologies, and best practices, and ensuring that the organization adapts accordingly.
• Sourcing and selecting vendors and service providers that offer security solutions or support.
All About You-
• A bachelor's degree in computer science, information technology, or a related field. Professional security certification, such as CISSP, CISM, CISA, or CRISC is a plus, or relevant security military service background. AWS Security Certification and/or AWS Architecture Certification is another plus
• Ability to work with various departments and supply authoritative answers. Great people skills and a customer oriented approach.
• A minimum 4 years of experience in information security, IT risk management, or a related field.
• A comprehensive knowledge of information security principles, practices, frameworks, standards, laws, regulations, and ethics.
• A strong understanding of various security domains, such as application security, cloud security, cryptography, identity and access management, network security, incident response, disaster recovery, endpoint security, etc.
• A proven track record of developing and implementing effective security strategies and programs that support business goals and mitigate risks.
• An excellent ability to communicate complex technical concepts in a clear and concise manner to various audiences, such as senior executives, board members, customers, partners, regulators, etc.
• An innovative and analytical mindset that can identify security gaps and opportunities for improvement.
• Excellent communication skills, proficient English
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard's security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Apply on company website
Find Connections via Linkedin
