Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
Information Security Operations Analyst II-1Who is Mastercard?
Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.
Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all.
Overview
• Employee Identity Access Management teams are responsible for providing end to end services to support internal employees and external customer’s capabilities to manage logical and physical access to Mastercard systems, applications, and offices.
• The CARD Team is part of the overall Identity Access Management team within Corporate Security, focused on the controls related to access across Mastercard. Team leverage their knowledge and experience to to both improve existing control processes as well as ensure new processes, procedures, or projects have appropriate controls put in place around them.
• The position will execute current access controls lifecycle activities, assist with the maturation of the department's access and process controls, and participate in design enhancement and testing for the organization's Access Management application.
• There will be opportunities for ownership of processes and projects, many of which involve exposure across the broader organization.
Role
In this internally-focused position, you will:
• Identify gaps and enhancements within Identity Access Management processes and systems globally, provide recommendations, and track to completion, as directed
• Work closely with internal auditors on the control environment and coordinate the fulfillment of evidence/documentation requests
• Lead and support the execution of individual Access controls including Privileged Access Reviews, company-wide access certifications, Segregation of Duties, etc.
• Serves as a resource to other Mastercard teams for questions related to Access Management practices and governance controls.
• Will both lead and work on project teams to enhance and mature the Identity Access Management function
• Partner with peers in the Identity Access Management organization to ensure governance processes are in place, enabling access to the business with least privileges
• Identify automation opportunities to deliver smarter and easier Identity Access Management services to support “access as an enabler” strategy
All About You
In this section, list essential responsibilities and education desired. Customize based on the role and feel free to add intrinsic values. Add bullet points to:
• Intermediate skills in Identity Access Management pillars such as, but not limited to, roles, entitlements, access certifications, and segregation of duties
• Skilled in running multiple disparate efforts at any given time, seeing each through to completion
• Basic to Intermediate platform specific access knowledge (Active Directory, UNIX, Mainframe, Windows, Databases)
• Organization, problem solving, and communication skills
• Basic strategic thoughtful risk taking experience
• Basic analytical skills working with large amounts of data and identifying outliers
• Basic skills in Information Security
• Basic experience with regulatory compliance (SOX, SOC1, PCI)
Corporate Security Responsibility
Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:
• Abide by Mastercard’s security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard’s security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.