Information Security Engineering

Our Purpose

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

Title And Summary

Information Security Engineering

• Overview
  
  
  

We are seeking a highly skilled Security Engineer to join our team and play a critical role in safeguarding our systems, applications, and infrastructure. This role is responsible for shaping and implementing secure architecture and engineering practices across the organization. You will collaborate with cross-functional teams to ensure our systems are designed, built, and maintained with security at the forefront, while also supporting regulatory compliance and risk management efforts.

• Role
  
  
  

As a Security Engineer, You Will

Provide technical design and architecture guidance to internal teams on secure application and system development.

Collaborate with developers to assess business requirements and proposed designs, recommending secure and compliant solutions.

Define and maintain security requirements, standards, and reference architectures aligned with internal policies and industry best practices.

Offer security consulting and strategic direction on a global scale, with a strong focus on detail and customer needs.

Ensure that business and functional requirements align with security policies and technical standards.

Identify security capabilities, gaps, and opportunities for improvement across platforms and technologies.

Manage multiple security initiatives across diverse environments, including networks, applications, and cloud platforms.

Communicate project status and issues clearly and professionally to senior leadership, escalating blockers as needed.

Produce clear and comprehensive documentation to support security initiatives.

Lead efforts in business security architecture, threat modeling, secure development practices, code reviews, and third-party assessments.

• All About You / Experience
  
  
  

You Bring

5–7+ years of experience in security engineering, with strong expertise in application and cloud security.

A deep understanding of secure architecture for web-based environments, secure communication protocols, and defense-in-depth strategies.

Hands-on experience with secure development practices, including secure coding, scanning, and issue management.

Familiarity with IT security risk management and security frameworks such as NIST, ISO, PCI, and ISAE.

Strong knowledge of cryptographic principles including encryption, hashing, key management, digital certificates, and TLS.

Awareness of technologies such as firewalls, hardware security modules, and threat detection/prevention tools.

Experience with DevSecOps practices and security tooling integration.

Relevant certifications such as CISSP, OSCP, or CISM.

Excellent interpersonal, communication, and presentation skills, with the ability to influence and collaborate across all levels of the organization.

A proactive mindset and a passion for shaping a strong security culture within a global team.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard’s security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.