Our Purpose
We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.
Title and Summary
Senior Information Security EngineerWho is Mastercard?Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.
Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all.
Mission First, People Always
As Corporate Security, we are responsible for keeping Mastercard safe and secure from cyber and physical threats, and it is our people on the frontlines who make this happen every day.
By taking care of our people, their wellbeing, and career development, we provide them the necessary tools and environment to ensure the success of our mission.
Overview
The PKI Engineering team is looking for an Information Security Engineer, who will be part of a team to support aspects of the enterprise Public Key Infrastructure (PKI), certificate management, and Hardware Security Module (HSM) infrastructures.
• The ideal person should be able to extrapolate information with minimal details provided and apply business process improvement practices.
• Ability to coordinate and/or support large complex projects including upgrades and deployment of new capabilities and enhancements.
Role
• Perform PKI design which will result in the delivery of x.509 certificates in supporting Mastercard projects and infrastructure, which includes on/off-hours support including problem analysis and resolution.
• Participate in defining and developing the strategic plan for PKI and the enterprise certificate management service.
• Provide certificate support on UNIX, mainframe, and Windows.
• Knowledge of HSMs, scripting, and PKI tools such as OpenSSL and keytool is a plus.
• Participate in the preparation and execution of disaster recovery on business continuity plans.
All About You
• Possess strong verbal and written communication skills with ability to communicate at all levels across the organization.
• Detail oriented, self-starter, and able to work independently at self-directed pace.
• Must be able to act with a sense of urgency and respond to issues critical in nature.
• Knowledge of relevant industry standards and guidelines such as ISO27001, PCI-DSS, NIST SP800-53.
• Knowledge and technical security experience in cryptography, including several of the following: encryption, hashing, key management, digital certificates, TLS.
NICE Framework References
Mastercard Corporate Security Roles have been aligned with the NICE framework (National Initiative for Cybersecurity Education). For this role, a competency proficiency level of proficient is expected in the following areas:
• Encryption
• Identity Management
• Operations Support
• Software Testing and Evaluation
Corporate Security Responsibility
Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:
• Abide by Mastercard’s security policies and practices.
• Ensure the confidentiality and integrity of the information being accessed.
• Report any suspected information security violation or breach.
• Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.Mastercard is an inclusive equal opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. In the US or Canada, if you require accommodations or assistance to complete the online application process or during the recruitment process, please contact reasonable_accommodation@mastercard.com and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard’s security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.
In line with Mastercard’s total compensation philosophy and assuming that the job will be performed in the US, the successful candidate will be offered a competitive base salary based on location, experience and other qualifications for the role and may be eligible for an annual bonus or commissions depending on the role. Mastercard benefits for full time (and certain part time) employees generally include: insurance (including medical, prescription drug, dental, vision, disability, life insurance), flexible spending account and health savings account, paid leaves (including 16 weeks new parent leave, up to 20 paid days bereavement leave), 10 annual paid sick days, 10 or more annual paid vacation days based on level, 5 personal days, 10 annual paid U.S. observed holidays, 401k with a best-in-class company match, deferred compensation for eligible roles, fitness reimbursement or on-site fitness facilities, eligibility for tuition reimbursement, gender-inclusive benefits and many more.Pay Ranges
O'Fallon, Missouri: $115,000 - $184,000 USD