Mastercard Jobs

Job Information

MasterCard Senior IT SOX Analyst in Pune, India

Our Purpose

We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion ( for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.

Job Title

Senior IT SOX Analyst

Senior Analyst, IT Risk Management – Individual Contributor


The Senior Analyst, IT Risk Management, will support our SOX Compliance program within the Finance Organization, and will report into the US-based Manager, Risk Management, with dotted line reporting into the Pune-based Manager, Internal Controls. This position will primarily focus on scoping and evaluation of general and application IT controls. The Senior Analyst will be responsible for managing and executing various aspects of the program including IT scoping, delivery of the program, and reporting of results. The Senior Analyst will work closely with the US-based SOX team, worldwide IT departments, regional controllership, our shared services center, business owners, and our internal and external auditors, with the expectation of some overlap in the working hours.

Requirements for this position include extensive knowledge of IT general and application controls, strong understanding of IT control frameworks (e.g., COBIT, NIST Cybersecurity, NIST SP 800-53, CIS/SANS Top 20), familiarity with SEC/PCAOB regulations, COSO and US GAAP, as well as the demonstrated ability to monitor an effective global risk-based IT control environment.

• Are you looking to join a fast-paced, collaborative environment supporting a world class growing organization?

• Do you have the ability to think strategically and execute a complex project?

• Do you have a risk-based mindset?

• Are you IT savvy?

• Do you have the ability to drive change and improve awareness across the organization?


Job Description

• Support the execution of various SOX program components, including IT scoping, IT risk assessment, training of stakeholders on IT control-related best practices, IT control testing and review, remediation recommendations, deficiency evaluations and reporting

• Report to a US-based Manager, Risk Management with dotted line reporting to a Pune-based Manager, Internal Controls

• Assess and determine design effectiveness of internal controls

• Experience covering multiple technology environments such as Mainframe, UNIX/Linux, and Windows environments

• Work with business owners to address any potential control gaps that may require remediation

• Partner with various business owners and IT teams including technology compliance, operations, development, and application support to provide expertise in assessing the design and effectiveness of IT controls

• Liaise with regional finance and IT stakeholders as well as internal and external auditors

• Ensure the delivery of high quality, timely work products

• Continuously identify efficiencies in the SOX program and opportunities for optimization of the financial and operational processes and controls through interaction and partnership with management

• Exhibit strong project management skills with the ability to hold self and others accountable to internal and external deadlines

• Ability to effectively manage international time-zone differences in communication globally

• Demonstrate the ability to exercise judgment and display a high standard of ethics and professionalism

• Demonstrate exceptional communications skills, both written and verbal, with the ability to understand complexities of the business

All About You

• Bachelor Degree Accounting, Business, Management Information Systems or equivalent, a CPA/CA, CISA or similar certification required

• Has a strong understanding of IT control concepts and framework such as COBIT, NIST Cybersecurity, NIST SP 800-53, CIS/SANS Top 20, Sarbanes Oxley, COSO, and leading business practices

• Recent experience providing IT auditing or IT advisory-type services

• Knowledge of best practices around IT controls

• Working knowledge of current PCAOB Auditing and Accounting Standards

• Experience with the IT external audit or risk advisory services or an in-house Technology Risk Management (first/second line of defense) or equivalent experience in a large, regulated organization with exposure to both infrastructure and applications

• Knowledge of common enterprise and web application technologies

• Familiarity with audit automation preferred

• Proven ability to manage complex engagements or programs

• Excellent oral and written communication skills and interpersonal skills with emphasis on building strong, longer-term relationships worldwide across varying geographies and functions

• Detail oriented, self-motivated with the ability to meet project deadlines and deliverables in a fast-paced environment

• Experience in risk management field (e.g., risk management, audit, compliance) desired

• Effective ability to influence, drive change and resolve conflicts

• Strong analytic, logical reasoning and problem solving skills

• Strong project management skills to lead and prioritize multiple projects

• Demonstrated ability to drive change and continuous improvement

• Some travel may be required in the future, up to 10% travel

COVID-19 Considerations

We value the safety of each member of our community because we know we’re all in this together. In many locations, which may change over time, we’ve implemented a virtual hiring process and continue to interview candidates by video or phone. In addition, in some locations, only individuals who have been fully vaccinated will be permitted inside Mastercard offices until further notice.

About Mastercard

Mastercard is an inclusive Equal Employment Opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law.

If you require accommodations or assistance to complete the online application process, please contact and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

  • Abide by Mastercard’s security policies and practices;

  • Ensure the confidentiality and integrity of the information being accessed;

  • Report any suspected information security violation or breach, and

  • Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.

Requisition ID: R-144372