Lead DevOps Security Engineer

Our Purpose

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

Title and Summary

- Overview
This position will work as part of a DevOps team that focuses on security services for Mastercard. 100% in AWS, this environment consists of dozens of AWS accounts that provide infrastructure and security services for the RiskRecon product for Mastercard. AWS proficiency is required. Especially in infrastructure, security, automation, deployment maturity, monitoring/alerting, along with self healing of environments. Team works heavily with development groups along with product management to ensure a quick pace along with robust security and uptime.

• Proficient in AWS Networking: VPCs, Subnetting, NAT, NACLs, Security Groups, VPC Endpoints, Transit Gateways, Routing Tables, Network Interfaces, etc.
• Application Load Balancers, Network Load Balancers, Target Groups, Network Bridging, Listener Routing, etc.
• WAF rules and logging, Shield configuration and monitoring, DDOS protection, Cloudfront configuration
• Route 53
• Proficient in AWS EC2: Linux instances, volumes, spot, hardened and secured AMIs, snapshots, auto scaling groups, launch templates, etc.
• Proficient in AWS ECS: Docker, Tasks, Clusters, etc.
• Proficient in Cloudtrail and Cloudwatch: Logging, monitoring, and alerting for infrastructure and security issues
• Proficient in AWS EKS: Docker, Clusters, resources, and instances
• Proficient in AWS IAM: Roles, Policies, Resource policies, conditions, SCPs, etc.
• Proficient in Linux OS: Shell scripting, host monitoring and alerting, host tuning
• Proficient in AWS CLI and Systems Manager: Automation and Administration
• Proficient in AWS Config: Compliance and reporting
• Good understanding of Git, AWS Codecommit, Terraform, RDS, KMS, HSM, Workspaces

• Candidate must have at least 10 years of Enterprise Level Information Technology experience
• Candidate must have a minimum of 5 years of AWS experience working with multiple AWS accounts
• Candidate should have a Bachelor’s Degree
• Ideal candidate will be able to function individually and within a team. Excellent communication skills required. Will be responsible for infrastructure and security for large multi-account AWS environment and must have experience working within a similar environment. Must be able to compile documentation as well as regular system and security reports.

Mastercard is a merit-based, inclusive, equal opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. We hire the most qualified candidate for the role. In the US or Canada, if you require accommodations or assistance to complete the online application process or during the recruitment process, please contact reasonable_accommodation@mastercard.com and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks come with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard’s security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.