We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.
Job TitleSenior Security Risk AnalystThe mission of the PCI program at Mastercard is to protect our security posture. The PCI team ensures that all of our applications and platforms that handle payment data are PCI compliant and certified to PCI- DSS (Data Security Standards) as well as other PCI standards where applicable.
We are looking for someone to join our team to help us meet these compliance goals. This person will be a technically savvy person who likes to solve issues and drive outcomes.
Provide support to assessment teams during PCI certifications; act as the liaison between the assessment team and the QSA (Qualified Security Assessor); manage multiple certifications simultaneously
Work with assessment teams to develop remediation strategies and compensating controls
Partner with manager and the QSA (Qualified Security Assessors) to scope application for PCI relevance
Research and learn and apply knowledge about new technologies and environments that impact PCI
Participate in building the PCI program to meet new requirements and address rapid growth
Represent PCI in long term technical projects that were identified through the PCI process to ensure compliance with standards
Communicating of security risks and gaps as related to PCI to executive management
Manage PCI inquiries from both internal and external stakeholders
Develop reports, metrics and presentations for meetings, as needed
PCI standards and requirements
Latest information security protocols and standards
Mastercard environments—physical and cloud
Security controls, especially those that impact PCI (encryption, access, testing etc.)
Security prevention and detection systems and other security event management systems
Data structures and classifications
Review security architecture of applications and determine PCI relevance
Employ strong research skills and problem solving skills
Apply PCI standards to new and existing technologies
Identify and evaluate security gaps
Communicate business risk to stakeholders
Understand security findings (scanning/Pen test) and assess remediation strategy
Evaluate compensating controls
Conduct or facilitate meaningful meetings
Work in slightly chaotic, rapidly growing environment
Due to COVID-19, most of our employees are working from home. We've implemented a virtual hiring process and continue to interview candidates by phone or video and are onboarding new hires remotely. We value the safety of each member of our community because we know we're all in this together.
Mastercard is an inclusive Equal Employment Opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law.
If you require accommodations or assistance to complete the online application process, please contact firstname.lastname@example.org and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.
Apply on company website