Our Purpose
We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.
Job Title
Senior Analyst, Network Engineering
Job Description Summary
Senior Network Security Analyst
Who is Mastercard?
Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.
Overview
The Vocalink Network Services team is looking for a Senior Network Security Analyst, reporting to the Manager of Network Security and Compliance.
The role will be primarily charged with administering and handling the vulnerability management and compliance processes across the network environment.
The communications and outcomes managed by the role will also form evidential artefacts for audit purposes and articulate effective Cyber resilience capabilities as defined by regulators.
Role
- Exposure to leading edge technology vendors including Palo Alto, Cisco and F5
- Ensure compliance with all relevant build standards, configuration templates and audit responsibilities i.e., PCI, ISO, ISAE.
- Manage and maintain automated baseline compliance checking systems
- Handle all internal and external vulnerability notifications
- Ensure our asset inventory is maintained, and all network assets are included in automated reporting across the toolsets
- Schedule and oversee preventative and remedial action as appropriate.
- Responsible for version control and oversee patching across all network devices.
- Responsible for all elements of DDoS protection, detection and alerting across core business services.
- Solicit and action regular product announcements from vendors (Cisco, Palo Alto, F5) regarding vulnerability and EOSS, EOHS information.
- Work with Risk, Audit and Compliance teams as required.
All About You
In this role you will need to be able to do, and have experience of, the following:
- Experience in using and managing Skybox.
- SIEM technology experience desirable.
- Must have a good working knowledge of the following protocols and technologies – IPSec, VPN, TCP/IP, SSL, TLS, IDS / IPS, SSH, SNMP, NTP.
- Must have a good working knowledge of the following routing and switching protocols - RIP, OSPF, BGP, EIGRP, all STP variants, HSRP or equivalent.
- Forensic analysis experience using SNMP, Syslog, Packet based analysis tools.
- Practical knowledge of threat detection, intrusion prevention / detection techniques and attack vectors.
- Strong written & verbal skills required to produce & present risk assessment and regulatory reporting
- Strong Routing, Switching and Firewall skills are essential.
- Hold a current industry related security certification (CISSP, CISA, CISM) – desirable.
- Previous experience working as part of Network or IT Security team within a high availability financial services or web facing environment.
- Working knowledge of PKI, Certificate Management processes.
- Willing to travel between our sites as required
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must
- Abide by Mastercard’s security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.