Mastercard Jobs

Job Information

MasterCard Director / Principal Technology Risk Management Market Lead (Asia Pacific) in Singapore

Our Purpose

We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion ( for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.

Job Title

Director / Principal Technology Risk Management Market Lead (Asia Pacific)


The Technology Risk Management (TRM) organization is a business enabler and industry leader of technology and security risk management practices, supported by a multi-disciplinary team of top security, technology, and risk professionals. Our mission is to exceed stakeholder expectations by providing enhanced visibility and proactive management of technology risks and ensuring strong security and sound operational environment.


• Help build and manage Technology Risk Management market engagement model in Asia Pacific Region (i.e., core and regulated businesses)

• Primary market contact; develop relationships with business unit leaders (e.g., O&T region leaders, regulatory affairs, product teams) to assist with understanding regulatory and customer technology and security risk management obligations (e.g., SIPS), identifying potential roadblocks and proactively develop strategies (e.g., localization, interoperability) to help manage obligations in a consultative manner

• Advise business owners in determining strategy and implementing policies and procedures to minimize risk exposure and drive proper controls

• Supports leadership, leveraging subject matter expertise regarding PCI and vendor management principles, generally accepted industry (regulatory) standards and internal control concepts

• Supports leadership, leveraging a solid understanding of industry audit and compliance standards and internal control concepts and principles, risks and regulations

• Manages cross-functional initiatives to deliver on risk goals, policies and procedures

• Manage customer and regulatory technology and security examinations (e.g., on-site, virtual) and inquiries; provide documentation and evidence to demonstrate how Mastercard satisfies obligations and commitments

• Facilitate periodic customer and regulator meetings and reporting

• Manages collaborative working relationships with stakeholders at the regional or local level

• Liaises with business partners to develop, manage and document best practices for risk processes

• Monitor business, market and regulatory landscape to identify required standards, policy requirements and potential implications to company

• Identify, analyze and report regulator and customer examination findings and trends to internal stakeholders for action/follow-up

• Understand and Advocate the Technology risk strategies that maintain the status of industry compliance standards (e.g., PCI, SOC, ISO, PFMI) for applications that process, store or transfer credit card information and the enterprise infrastructure where they reside

• Understand and Advocate the Technology risk strategies that maintain the status of payment, financial and industry data standards accessible to Mastercard’s third parties according to Mastercard Technology Policies and Standards, performing critical vendor reviews and Mastercard subsidiary reviews globally

• Understand and Advocate the Technology risk strategies that maintain the necessary focus and quality of the 3rd party due diligence and control validation functions within risk management


• Experience managing complex cross-functional projects

• Experience collaborating cross-functionally to identify and implement best practice risk processes

• Experience delivering presentations and engaging with senior leadership

• Knowledge of Risk and Control Framework standards such as SOC 1SOC 2, PCI-DDS, ISO

• Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and IT management (e.g., GDPR, FBA, CBA, PFMI, etc.)

• Strong IT technical knowledge, including emerging technologies and potential for exploitation


• Successfully led complex cross-functional projects

• Demonstrated success building relationships and delivering results on a key strategic initiative

• Experience identifying capability gaps and successfully works to coach and build skills within project teams

• Exposure to delivering presentations and engaging with senior leadership

• Experience supporting multiple markets overseas is a plus, but not required

COVID-19 Considerations

We value the safety of each member of our community because we know we’re all in this together. In many locations, which may change over time, we’ve implemented a virtual hiring process and continue to interview candidates by video or phone. In addition, in some locations, only individuals who have been fully vaccinated will be permitted inside Mastercard offices until further notice.

In the US, Mastercard is a government contractor, which may legally require most Mastercard employees to be vaccinated unless a verified approved medical or religious exemption is granted. Further, we are currently making every effort towards having employees return to work in the office 2 days per week, if that makes sense for their team. Everyone must be vaccinated to enter Mastercard offices at this time. Therefore, we expect all candidates to be vaccinated or to be approved for a medical or religious accommodation prior to commencing work at Mastercard.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

  • Abide by Mastercard’s security policies and practices;

  • Ensure the confidentiality and integrity of the information being accessed;

  • Report any suspected information security violation or breach, and

  • Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.

Requisition ID: R-153971