MasterCard Director, Emerging Capabilities in O'Fallon, Missouri
We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion (https://www.mastercard.us/en-us/vision/who-we-are/diversity-inclusion.html) for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.
Director, Emerging Capabilities
The Technology Risk Management (TRM) organization is a business enabler and industry leader of technology and security risk management practices, supported by a multi-disciplinary team of top security, technology, and risk professionals. Our mission is to exceed our stakeholder expectations by providing enhanced visibility and proactive management of technology risks and ensuring strong security and sound operational environment.
The Technology Risk Team is looking an experienced compliance professional who will lead efforts to establish controls and compliance frameworks that can be operationalized and sustained to protect evolving technologies. This role will be responsible for developing and implementing Mastercard’s cloud compliance program, and ensuring the business meets industry standards and regulatory requirements. The ideal candidate will have the ability to think and act both strategically and tactically while ensuring that the corporation remains compliant with required security and technology standards.
Lead the development of compliance strategy for cloud solutions while engaging with security and business teams to ensure controls are designed appropriately and operationalized
Provide compliance roadmap input to business, operations, and product development processes for commercial cloud centric offerings
Build control frameworks to ensure needs and expectations over services are met for various standards, certifications and/or regulatory requirements (e.g., NIST, ISO 27001, ISAE 3000, SOC2 etc.)
Assess and recommend policies, standards, procedures, controls, and security solutions to assure the confidentiality, integrity, and availability of the information technology environment
Analyze existing/new cybersecurity regulations along with colleagues from the Security and Architecture & Technology teams
Establish appropriate controls and undertake risks assessments on compliance position for Mastercard
Interpret assessment results and partner with business to advise, develop, and communicate recommendations to management
Identify & define process improvements for gained efficiencies across security and technology domains
Experience working within digital and technology functions ideally in a compliance role
Knowledge of cloud architecture and SaaS-delivered services
Familiar with and able to apply generally accepted security methods, concepts and techniques
Experience successfully implementing compliance frameworks
Understanding of information security controls for various computing environments and applications including experience with NIST and ISO 27001
Bachelor’s degree or equivalent combination of education and experience/Bachelor’s degree in computer science, information technology or related field preferred
IT certification(s) preferred such as CISSP/CISA/CRISC
Strong interpersonal, communication and presentation skills necessary for interaction with business leaders and teams across all levels of the organization
Demonstrated ability to operate with independence and autonomy
Contribute to work environment that encourages knowledge of, respect for and development of skills to engage with those of other cultures and backgrounds
The ability to push back and challenge decisions as necessary
Strong negotiation and consensus building skills
We value the safety of each member of our community because we know we’re all in this together. In many locations, which may change over time, we’ve implemented a virtual hiring process and continue to interview candidates by video or phone. In addition, in some locations, only individuals who have been fully vaccinated will be permitted inside Mastercard offices until further notice.
In the US, Mastercard is a government contractor, which may legally require most Mastercard employees to be vaccinated unless a verified approved medical or religious exemption is granted. Further, we are currently making every effort towards having employees return to work in the office 2 days per week, if that makes sense for their team. Everyone must be vaccinated to enter Mastercard offices at this time. Therefore, we expect all candidates to be vaccinated or to be approved for a medical or religious accommodation prior to commencing work at Mastercard.
In the US, Mastercard is an inclusive Equal Employment Opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. If you require accommodations or assistance to complete the online application process, please contact firstname.lastname@example.org and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard’s security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.
Requisition ID: R-153450