Mastercard Jobs

Job Information

MasterCard Lead DevSecOps Engineer in London, United Kingdom

Who is Mastercard?

We are the global technology company behind the world’s fastest payments processing network. We are a vehicle for commerce, a connection to financial systems for the previously excluded, a technology innovation lab, and the home of Priceless at https://www.priceless.com/ ®. We ensure every employee has the opportunity to be a part of something bigger and to change lives. We believe as our company grows, so should you. We believe in connecting everyone to endless, priceless possibilities.

Job Title

Lead DevSecOps Engineer

About the role

Vocalink is in the process of transforming to an Agile culture which is bringing about a reorganisation of the technical engineering teams. In concert, we are building upon our industry leading knowledge to develop our Next Gen platforms. The DevSecOps Engineer is responsible for working within a product focussed Engineering Group to delivery our NextGen solutions. You will be focussed on:

• Working within the DevOps\DevSecOps Guild to ensure consistency of approach and knowledge share across products

• Enabling product teams to move fast into production

• Integrating network, infrastructure and operations concepts to deliver our products

• Writing exemplary, well tested code as and when necessary

• Customer focussed delivery

You are a DevSecOps expert skilled in the cultural and technical principles & practices of the DevSecOps movement with experience of implementing DevSecOps approach and associated tools within an organisation. You have a desire to continually improve your own skills and the ability to transfer those skills to others and, of course, you love seeing your software in production.

Together, you will be part of a team who will plan and shape the route DevSecOps takes within the organisation

At Vocalink we deliver products and services that are market leading and we can only do this because of our people.

Role Duties

• Perform hands-on security threat modelling, risk assessment, and vulnerability remediation;

• Maintain, validate, and communicate the products' threat model, security properties, and trust model;

• Evaluate, architect, implement, and support security-focused tools and services;

• Manage and oversee the Application Security Testing in CI/CD working with the Corporate Security team to ensure issues are tracked and closed;

• Work with DevSecOps teams to improve the secure software development lifecycle;

• Partner with Product/Engineering teams to define identity access and management, PKI and HSM implementations;

• Perform continuous code audits

All About you

• Familiar with vulnerability management and penetration testing tools, such as NMAP, Nessus, Qualys, Burp, ZAP, Kali Linux, or Metasploit;

• Multiple years of experience with identity and access management technologies such as ABAC/RBAC, Multi Factor Authentication, IDO U2F, etc;

• Deep knowledge of AuthN/AuthZ protocols, such as OpenID Connect, OAuth, SAML and AD;

• Familiarity with code analysis tools, such as Snyk, AquaSec, RedLock, Sysdig SonarQube, Checkmarx etc;

• Proficiency with two or more of: Java, JavaScript, Go, Python or C++.

• BSc, MSc or PhD in computer science, or related security discipline, or equivalent work experience

• Strong hands on knowledge of Unix / Linux

• Strong experience scripting solutions in Python

• Strong knowledge of the Infrastructure As Code tool

• Terraform

• Strong knowledge of the build tool Maven

• Strong knowledge of at least one RDBMS, e.g. Oracle / MySql / PostgreSQL

• Ability to build a network in AWS

• Experienced with administering Docker containers

• Experienced with administering a container orchestrator and scheduler, e.g. one of Kuberenetes, Rancher, Mesos, Swarm

• Experienced in Configuration Management using Ansible

• Expert in deploying packages using rpm/yum

• Working knowledge of the Atlassian Suite – Crowd, BitBucket, Jira, Confluence, HipChat

• Working knowledge of Ancillary pipeline tools Nexus, Sonatype, CheckStyle

• Strong experience of working within Agile frameworks - Scrum

• Strong experience in a cloud based environment, e.g. one of AWS, Azure, Google Cloud

• Strong experience of Infrastructure As Code automation in a container based environment

• Strong experience using a container schedule and orchestration framework such as Kubernetes, Mesos etc.

• Ability to design build and implement a CI server

• Drive issue resolution and root cause identification

• Able to orchestrate the build and deployment of a container environment including zero downtime and blue/green deployments

• Able to design and implement centralised monitoring solutions including logging, monitoring, alerting.

• CI\CD tools e.g. Jenkins, Gitlab CI

• Containerisation and Container Security

• Cloud platforms, particularly Google Cloud Platform.

• SAST\DAST

• API security

• Securing data at rest and in transit

• Identity solutions.

• Deep knowledge of AuthN/AuthZ protocols, such as OpenID Connect, OAuth, SAML and AD;

• Familiarity with code analysis tools, such as Snyk, AquaSec, RedLock, Sysdig SonarQube, Checkmarx etc;

• Proficiency with two or more of: Java, JavaScript, Go, Python or C++.

• BSc, MSc or PhD in computer science, or related security discipline, or equivalent work experience;

• Understanding of security requirements.

• Multiple years’ experience as a hands-on security engineer delivering mission-critical technology;

• Understanding of OWASP security concepts and common application security risks, such as XSS, CSRF, SQL Injection, Cookie Manipulation, etc;

• Deep understanding of API Security;

Mastercard is an inclusive Equal Employment Opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law.​

If you require accommodations or assistance to complete the online application process, please contact reasonable.accommodation@mastercard.com and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.

Everyone wants easier ways to pay;

we invent them.

Checkout lines are slow;

we speed them along.

Merchants want more sales;

we give them data and insights.

People need financial access;

we connect them.

Corporate purchasing is complicated;

we make it simple.

Commuters are busy;

we speed them on their way.

Governments need greater efficiencies;

we help create them.

Small businesses are virtual;

we give them access to a world of buyers.

Retailers want to fight fraud;

we provide the tools.

Requisition ID: R-92195

DirectEmployers