Senior Cloud Security Engineer

Mastercard - Boston, MA

posted 2 months ago

Part-time - Senior
Hybrid - Boston, MA
Credit Intermediation and Related Activities

About the position

As a Senior Cloud Security Engineer at SessionM, a Mastercard Company, you will play a pivotal role in guiding the organization's information security, data privacy, and risk management strategies specifically for its AWS-platformed solutions. Reporting directly to the Director of Information Security, you will serve as a trusted advisor to engineering teams, helping to evolve the security posture of our AWS-hosted platform. Your responsibilities will include designing and reviewing cloud security controls and architecture changes, building proofs of concept, and validating compliance with Mastercard's policies and procedures. You will collaborate closely with development and operational teams to identify process improvements and automation opportunities that enhance efficiency across various security domains. In this role, you will also be responsible for consulting with teams to securely design applications and services in accordance with industry best practices. Building and maintaining effective working relationships with a diverse range of internal stakeholders—including business owners, end-users, project managers, and engineers—will be crucial. You will conduct technology evaluations, support business case development, define test cases, and assist in vendor selection based on industry-standard criteria. Additionally, you will play a key role in responding to security incidents and breaches, coordinating investigations, containment, remediation, and reporting efforts. Staying informed about current and emerging security threats, trends, technologies, and best practices will be essential to ensure that the organization adapts accordingly through effective threat modeling.

Responsibilities

  • Design and/or review designs for cloud security controls and architecture changes.
  • Build and/or consult on proofs of concept.
  • Validate compliance with Mastercard policies and procedures.
  • Collaborate with development and operational teams on process improvements and automation opportunities.
  • Consult with development and operational teams to securely design applications and services following industry best practices.
  • Cultivate and maintain effective working relationships with various internal stakeholders.
  • Perform technology evaluations, supporting business case development, test case definition, and vendor selection.
  • Assist in collecting and reviewing evidence for internal and external audits (e.g. SOC 1 & 2).
  • Respond to security incidents and breaches, coordinating with internal and external parties to investigate, contain, remediate, and report on them.
  • Stay abreast of current and emerging security threats, trends, technologies, and best practices.

Requirements

  • Knowledge of security capabilities and constraints related to AWS services, including relevant practical experience.
  • A strong understanding and previous experience in various security domains such as application security, cloud security, cryptography, identity and access management, network security, incident response, disaster recovery, and endpoint security.
  • Demonstrated technical competency in security engineering based on hands-on experience or relevant qualifications.
  • Understanding of automation tooling, scripting languages, and continuous delivery/continuous integration processes.
  • Demonstrated effectiveness working in a global environment.
  • Ability to communicate effectively (both oral and written) and develop solid working relationships across multiple levels and organization boundaries.
  • Experience identifying and remediating cloud-related risks with Cloud Security Posture Management (CSPM) technologies or equivalent solutions.

Nice-to-haves

  • Credentials including but not required: CISSP, CCSP, AWS Solutions Architect, AWS Security Specialty, or equivalent.

Benefits

  • Insurance (including medical, prescription drug, dental, vision, disability, life insurance)
  • Flexible spending account and health savings account
  • Paid leaves (including 16 weeks new parent leave, up to 20 paid days bereavement leave)
  • 10 annual paid sick days
  • 10 or more annual paid vacation days based on level
  • 5 personal days
  • 10 annual paid U.S. observed holidays
  • 401k with a best-in-class company match
  • Deferred compensation for eligible roles
  • Fitness reimbursement or on-site fitness facilities
  • Eligibility for tuition reimbursement
  • Gender-inclusive benefits

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service