Senior Cloud Security Engineer

Mastercard - Boston, MA

posted 2 months ago

Part-time - Senior
Hybrid - Boston, MA
Credit Intermediation and Related Activities

About the position

As a Senior Cloud Security Engineer at SessionM, a Mastercard Company, you will play a pivotal role in guiding the organization's information security, data privacy, and risk management strategies specifically for its AWS-platformed solutions. Reporting directly to the Director of Information Security, you will serve as a trusted advisor to engineering teams, helping to evolve and enhance the security posture of our AWS-hosted platform. Your responsibilities will include designing and reviewing cloud security controls and architecture changes, building proofs of concept, and ensuring compliance with Mastercard's policies and procedures. You will collaborate closely with development and operational teams to identify process improvements and automation opportunities that enhance efficiency across various security domains. In this role, you will also be responsible for consulting with teams to securely design applications and services, maintaining effective working relationships with a diverse range of internal stakeholders, and performing technology evaluations to support business case development and vendor selection. Additionally, you will assist in the collection and review of evidence for internal and external audits, respond to security incidents and breaches, and stay informed about current and emerging security threats and best practices. Your expertise in threat modeling will be crucial in ensuring that the organization adapts to evolving security challenges.

Responsibilities

  • Design and/or review designs for cloud security controls and architecture changes
  • Build and/or consult on proofs of concept
  • Validate compliance with Mastercard policies and procedures
  • Collaborate with development and operational teams on process improvements and automation opportunities
  • Consult with development and operational teams to securely design applications and services
  • Cultivate and maintain effective working relationships with internal stakeholders
  • Perform technology evaluations, supporting business case development, test case definition, and vendor selection
  • Assist in collecting and reviewing evidence for internal and external audits
  • Respond to security incidents and breaches, coordinating investigations and remediation
  • Stay abreast of current and emerging security threats, trends, technologies, and best practices

Requirements

  • Knowledge of security capabilities and constraints related to AWS services
  • Strong understanding and previous experience in various security domains such as application security, cloud security, cryptography, identity and access management, network security, incident response, disaster recovery, and endpoint security
  • Demonstrated technical competency in security engineering based on hands-on experience or relevant qualifications
  • Understanding of automation tooling, scripting languages, and continuous delivery/continuous integration processes
  • Demonstrated effectiveness working in a global environment
  • Ability to communicate effectively and develop solid working relationships across multiple levels
  • Experience identifying and remediating cloud-related risks with Cloud Security Posture Management (CSPM) technologies
  • Credentials including but not required: CISSP, CCSP, AWS Solutions Architect, AWS Security Specialty, or equivalent

Nice-to-haves

  • Experience with security incident response
  • Familiarity with compliance frameworks such as SOC 1 & 2
  • Knowledge of security best practices in cloud environments

Benefits

  • Insurance (medical, prescription drug, dental, vision, disability, life insurance)
  • Flexible spending account and health savings account
  • 16 weeks new parent leave
  • Up to 20 paid days bereavement leave
  • 10 annual paid sick days
  • 10 or more annual paid vacation days based on level
  • 5 personal days
  • 10 annual paid U.S. observed holidays
  • 401k with a best-in-class company match
  • Deferred compensation for eligible roles
  • Fitness reimbursement or on-site fitness facilities
  • Eligibility for tuition reimbursement
  • Gender-inclusive benefits

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service