Lead DevOps Security Engineer

Our Purpose

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart, and accessible. Our technology, innovation, partnerships, and networks combine to deliver a unique set of products and services that help people, businesses, and governments realize their greatest potential.

Title and Summary

Lead DevOps Security Engineer

Overview

This position will work as part of a DevOps team focusing on security services for Mastercard. The environment is entirely in AWS, comprising dozens of accounts that provide infrastructure and security services for the RiskRecon product. AWS proficiency is required, especially in infrastructure, security, automation, deployment maturity, monitoring/alerting, and self-healing environments. The team collaborates closely with development groups and product management to ensure rapid delivery, robust security, and high uptime.

Role

• Proficiency in AWS Networking (VPCs, Subnetting, NAT, NACLs, Security Groups, VPC Endpoints, Transit Gateways, Routing Tables, Network Interfaces, etc.)
• Experience with Application Load Balancers, Network Load Balancers, Target Groups, Listener Routing, etc.
• Knowledge of WAF rules, Shield configuration, DDOS protection, Cloudfront setup
• Experience with Route 53
• Proficiency in AWS EC2 (Linux instances, volumes, AMIs, snapshots, auto scaling groups, launch templates)
• Experience with AWS ECS (Docker, Tasks, Clusters)
• Proficiency in CloudTrail and CloudWatch for logging, monitoring, and alerting
• Experience with AWS EKS (Docker, Clusters, resources)
• Proficiency in AWS IAM (Roles, Policies, Resource policies, conditions, SCPs)
• Proficiency in Linux OS, shell scripting, host monitoring, and tuning
• Experience with AWS CLI and Systems Manager
• Knowledge of Automation and Administration tools
• Proficiency in AWS Config for compliance and reporting
• Good understanding of Git, AWS CodeCommit, Terraform, RDS, KMS, HSM, Workspaces

All about You/Experience

• Minimum 10 years of enterprise-level IT experience
• At least 5 years of AWS experience managing multiple accounts
• Bachelor's Degree required
• Ability to work independently and in a team, with excellent communication skills
• Experience managing infrastructure and security in large multi-account AWS environments, including documentation and reporting responsibilities

Pay Ranges

Toronto, Canada: $108,000 - $173,000 CAD

Mastercard is an inclusive, merit-based employer that considers all qualified applicants without discrimination. For accommodations during the application or recruitment process, contact reasonable_accommodation@mastercard.com.

Corporate Security Responsibility

All activities involving Mastercard assets, information, and networks carry inherent risks. Employees must:

• Follow Mastercard’s security policies and practices
• Maintain confidentiality and integrity of accessed information
• Report security violations or breaches
• Complete mandatory security training