Director, Information Security Engineering

Our Purpose

We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.

Title and Summary

Director, Information Security Engineering

Overview

MasterCard is seeking a Director of Security Engineering to join our Business Security Enablement Guild within the Corporate Security team. The Business Security Enablement Guild is a powerful team of information security and DevSecOps experts focused on helping Mastercard achieve its goals by ensuring security is at the heart of everything we do. Mastercard is researching and developing the next generation of products, services, and solutions at scale to enable consumers to securely, efficiently, and intelligently conduct transactions regardless of channel.

• Are you passionate about security? Do you like to manage teams to make them better, stronger, and more resilient? Are you a people person who values partnership, teamwork, and building solutions with cross-functional disciplines and teams? Are you curious? Do you follow trends, research, and best practices as part of your insatiable desire to learn and teach others? Do you want to have a true impact on the security of how the world transacts? This may be the role for you.


The Role – Director, Security Engineering.

• As Director, Security Engineering reporting to the Business Security Officer, you will act as a central point of contact for Mastercard stakeholders that rely on security capabilities delivered by your team. You will ensure security is integrated into the product development lifecycle so that security is a natural outcome of development. You will provide security influence and support across the Product Security PI Planning lifecycle and champion adoption of Agile principles within Product Security.

• Proactively work to find solutions that align with business needs, are scalable, can be applied across multiple programs & platforms - while operating within Mastercard’s risk tolerance. Collaborate with cross-functional teams and regularly articulate and communicate to diverse audiences and properly translates security and risk management terminology into business terms, and recommends alternative solutions to these stakeholders.

• Grow, mentor and develop a team of product security practitioners to ensure efficient and effective delivery of security outcomes. This includes influencing Business Security Officer and Product Security Capability teams, Champion adoption of Agile principles within Product Security and measure and monitor outcomes to demonstrate the value of security to stakeholders.

All About You
• At least 7 years of experience in cybersecurity or information technology

• At least 5 years in people management or equivalent leadership roles.

• Adaptive communication skills to influence cross functionally, comfort speaking with customers and business partners at all levels

• Motivated self-starter with an agility and ability to manage ambiguity, deal with and anticipate change while still meeting business objectives

• Passion for great product design, security and usability

• Current knowledge of security best practices, common exploits, and threat landscape

• Knowledge of Application Security Architecture for N tier, broker-based models.

• Knowledge of Cloud Security architecture including CI/CD, microservice architecture and plus

• Knowledge of the security architecture of web-based network environments and secure communication between environments

• Strong understanding of Information Security, Authentication and Data
Privacy within the domain of Digital Commerce including relevant practical experience

• Good understanding of Software Development lifecycle.

Mastercard is an inclusive equal opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. In the US or Canada, if you require accommodations or assistance to complete the online application process or during the recruitment process, please contact reasonable_accommodation@mastercard.com and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard’s security policies and practices;

• Ensure the confidentiality and integrity of the information being accessed;

• Report any suspected information security violation or breach, and

• Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.

In line with Mastercard’s total compensation philosophy and assuming that the job will be performed in the US, the successful candidate will be offered a competitive base salary based on location, experience and other qualifications for the role and may be eligible for an annual bonus or commissions depending on the role. Mastercard benefits for full time (and certain part time) employees generally include: insurance (including medical, prescription drug, dental, vision, disability, life insurance), flexible spending account and health savings account, paid leaves (including 16 weeks new parent leave, up to 20 paid days bereavement leave), 10 annual paid sick days, 10 or more annual paid vacation days based on level, 5 personal days, 10 annual paid U.S. observed holidays, 401k with a best-in-class company match, deferred compensation for eligible roles, fitness reimbursement or on-site fitness facilities, eligibility for tuition reimbursement, gender-inclusive benefits and many more.

Pay Ranges

Arlington, Virginia: $190,000 - $304,000 USD