Job Description

Our Purpose
We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team - one that makes better decisions, drives innovation and delivers better business results.
Title and Summary
Security Analyst II
Overview

The Mastercard Technology Risk Team is looking for a security analyst to support the implementation of international standards, processes, best practices and IT frameworks thereby helping the organization to enhance its current security posture.

Responsibilities:

Participate in the gathering, documenting, monitoring and preliminary analysis of the information security and technology metrics

Participate on ongoing, proactive risk assessment program for the business processes in the purview of ISO certification program

Develop effective working relationships with internal and external stakeholders, auditors, process and control owners and functional staff

Understand and interact with related disciplines through different committees to ensure the consistent application of policies and standards across all technology functions.

Experience

Required

Background in developing, and maintaining security policies, processes, procedures and standards.

Experience supporting information security, IT audit and/or IT risk management principles

Reasonable understanding of standards, processes, best practices and IT frameworks viz COBIT/ITIL, ISO 31000, ISO 27001 conceptual understanding of IT and security controls, networking and information security technologies.

Strong analytical and problem-solving skills for design, creation and testing of security controls and systems.

Experience developing management dashboards that's aggregates data from multiple sources



Nice to have

Experience using RSA Archer or equivalent risk tool sets.

Experience creating ISMS documentation to integrate the ISO 27001 requirements within the overall organization.



Qualifications and Skills

Bachelor's degree or equivalent combination of education and experience/Bachelor's degree in computer science, information technology or related field preferred

Experience in handling certifications, compliance and internal/external information security/cyber security audits.

Successfully completed ISO 27001:2022 Lead Auditor/Lead Implementer certification.

CISA/CISM Certification - would be an added advantage

Excellent written as well as verbal communication skills.

Contribute to work environment that encourages knowledge of, respect for and development of skills to engage with those of other cultures and backgrounds.

Ability to handle multiple tasks simultaneously and switch between tasks quickly
Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:• Abide by Mastercard's security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.