Our Purpose

We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion (https://www.mastercard.us/en-us/vision/who-we-are/diversity-inclusion.html) for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.

Title and Summary

Director, Technology Risk Management

Who is Mastercard?

Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple and smart. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.

Technology Risk Management

The Technology Risk Management (TRM) organization is a business enabler and industry leader of technology and security risk management practices, supported by a multi-disciplinary team of top security, technology, and risk professionals. The Stakeholder Assurance team is responsible for working with and demonstrating to our stakeholders (e.g., regulators, customers, Mastercard businesses) how Mastercard complies with our promises, commitments, and obligations. We do this by translating regulatory and customer requirements and providing assurance on how Mastercard standards/controls meet these expectations.

Overview

The Stakeholder Assurance team is looking for a Director, Technology Risk Management, to drive our customer experience strategy forward by consistently innovating and problem-solving. The ideal candidate is passionate about risk & controls, highly motivated, and always puts the customer first. This is a hands on role where you will be expected to perform the tasks you are also delegating to team members, with supervision responsibilities.

Role

In this customer-facing position, you will:

support first line in responding to external technology and security examinations (e.g., on-site, virtual); providing documentation and evidence to demonstrate how Mastercard satisfies obligations and commitments. These may be via questionnaire response or onsite/virtual exams and assessments. Duties include supervision of a dedicated team;

understand and advocate the Technology risk strategies that maintain the status of industry compliance standards (e.g., PCI, SOC, ISO, PFMI) applicable to Mastercard; 

lead and actively participate in TRM cross-functional initiatives to deliver on risk goals, policies and procedures, including standardization efforts; preparation of internal risk reports, execute on risk management processes and procedures in accordance with established policies, including requirements to maintain industry compliance standards;

monitor business, market and regulatory landscape to identify required standards, policy requirements and potential implications to company  

work collaboratively with internal stakeholders at the corporate, regional or local level across all of Mastercard, including:

partnering with Market Teams to translate regulatory and customer expectations to Mastercard technology and security standards and associated control requirements to support assurance assessments

advise business owners on analysis of business and functional requirements resulting from regulation and customer contracts; and help identify technology and security risk and governance solutions

develop collaborative relationships with business unit leaders and subject matter experts (e.g., Tech region leaders, regulatory affairs, product teams) to assist with understanding regulatory and customer technology and security risk management obligations, identifying potential roadblocks and proactively develop strategies to manage obligations;

manage day to day operations of a globally dispersed team;

be an expert in the Mastercard control environment;

coordinate and manage work performance metrics and reporting and deliver to leadership on a periodic basis, including documenting, reviewing and updating department systems regularly;

All About You

The ideal candidate for this position will have the following:

advanced knowledge of NIST, ISO, PCI, and other leading control frameworks

advanced understanding of risk & controls associated with security and technology domains

substantial project management experience, preferably managing a team in a multi-project environment with short timelines

excellent presentation skills and substantial presentation experience, preferably including executive level

skilled at explaining complex technical problems succinctly and clearly

knack for finding solutions and solving problems where others don’t

understanding of developing and presenting metrics to leadership

Corporate Security Responsibility

Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:

Abide by Mastercard’s security policies and practices;

Ensure the confidentiality and integrity of the information being accessed;

Report any suspected information security violation or breach, and

Complete all periodic mandatory security training in accordance with Mastercard’s guidelines.

Mastercard is an inclusive equal opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. In the US or Canada, if you require accommodations or assistance to complete the online application process or during the recruitment process, please contact reasonable_accommodation@mastercard.com and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard’s security policies and practices;

• Ensure the confidentiality and integrity of the information being accessed;

• Report any suspected information security violation or breach, and

• Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.

In line with Mastercard’s total compensation philosophy and assuming that the job will be performed in the US, the successful candidate will be offered a competitive base salary based on location, experience and other qualifications for the role and may be eligible for an annual bonus or commissions depending on the role. Mastercard benefits for full time (and certain part time) employees generally include: insurance (including medical, prescription drug, dental, vision, disability, life insurance), flexible spending account and health savings account, paid leaves (including 16 weeks new parent leave, up to 20 paid days bereavement leave), 10 annual paid sick days, 10 or more annual paid vacation days based on level, 5 personal days, 10 annual paid U.S. observed holidays, 401k with a best-in-class company match, deferred compensation for eligible roles, fitness reimbursement or on-site fitness facilities, eligibility for tuition reimbursement, gender-inclusive benefits and many more.

Pay Ranges

O'Fallon, Missouri: $128,000 - $198,000 USD