VP, Engineering SME, Second Line Technology Risk

Our Purpose

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

Title and Summary

VP, Engineering SME, Second Line Technology Risk

Overview:
Mastercard Risk is looking for a highly experienced and technically adept Vice President, Engineering Subject Matter Expert (SME) to join our Second Line Technology Risk function. In this critical role, you'll provide independent oversight and challenge to our technology and product teams, ensuring robust risk management practices across our global payments infrastructure.
You'll act as a trusted advisor, leveraging your deep engineering expertise to assess the effectiveness of controls, identify emerging risks, and drive continuous improvement in our technology risk posture. This is an excellent opportunity for a seasoned engineering leader to gain experience/transition into a vital risk management role, influencing the security and resilience of a leading payments company.

Role:
Provide Technical Expertise: Serve as the primary engineering SME for the Second Line Technology Risk function, offering in-depth knowledge of payment systems, distributed architectures, cloud computing, cybersecurity, software development lifecycles (SDLC), and emerging technologies.
Incident & Issue Review: Participate in the review of significant technology incidents and issues, providing technical insights into root causes and effectiveness of remediation plans.
Independent Risk Assessment & Challenge: Conduct independent reviews and challenges of technology and product initiatives, architectures, and controls to identify potential weaknesses, single points of failure, and areas of elevated risk.
Control Effectiveness Evaluation: Assess the design and operational effectiveness of technology controls, including those related to security, resilience, data security, and operational processes.
Emerging Technology Risk Identification: Proactively identify and evaluate risks associated with new and evolving technologies, providing recommendations for mitigation strategies.
Policy & Standard Influence: Contribute to the development and enhancement of technology risk policies, standards, and guidelines, ensuring they align with industry best practices and regulatory expectations.
Stakeholder Engagement: Collaborate effectively with First Line technology and product teams, internal audit, and other risk functions to foster a strong risk culture and drive informed decision-making.
Reporting & Communication: Prepare clear, concise, and impactful reports and presentations for senior management and relevant committees, articulating complex technical risks in an accessible manner.

All About You:
Qualifications
Significant prior experience in engineering roles within the financial services or technology sector, with a significant focus on payments systems, distributed systems, or high-transaction platforms.
Technical Depth:
oDemonstrable expertise in software engineering principles, secure coding practices, and architectural design patterns.
oStrong understanding of cloud native architectures (AWS, Azure, Google Cloud Platform), microservices, APIs, and containerization technologies (e.g., Kubernetes, Docker).
oIn-depth knowledge of cybersecurity principles, threat modeling, vulnerability management, and incident response.
oFamiliarity with data management, data privacy principles, and regulatory compliance (e.g., PCI DSS, GDPR, SOX).
oExperience with various programming languages (e.g., Java, Python, Go) and development methodologies (Agile, DevOps).
Risk Management Acumen:
oExperience in technology risk management, audit, or a related control function is a significant plus.
oUnderstanding of risk frameworks (e.g., NIST, ISO 27001, COBIT) is also a plus
Leadership & Communication:
oProven experience in a leadership or senior technical individual contributor role, with the ability to influence and guide technical discussions.
oExcellent analytical, problem-solving, and critical thinking skills.
oStrong written and verbal communication skills, with the ability to translate complex technical concepts into clear and actionable insights for both technical and non-technical audiences.
Education: Bachelor's degree in Computer Science, Engineering, or a related technical field desired. Master's degree or relevant certifications (e.g., CISSP, CISM, AWS Certified Solutions Architect) are a plus.

Mastercard is a merit-based, inclusive, equal opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. We hire the most qualified candidate for the role. In the US or Canada, if you require accommodations or assistance to complete the online application process or during the recruitment process, please contact and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard's security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

In line with Mastercard's total compensation philosophy and assuming that the job will be performed in the US, the successful candidate will be offered a competitive base salary and may be eligible for an annual bonus or commissions depending on the role. The base salary offered may vary depending on multiple factors, including but not limited to location, job-related knowledge, skills, and experience. Mastercard benefits for full time (and certain part time) employees generally include: insurance (including medical, prescription drug, dental, vision, disability, life insurance); flexible spending account and health savings account; paid leaves (including 16 weeks of new parent leave and up to 20 days of bereavement leave); 80 hours of Paid Sick and Safe Time, 25 days of vacation time and 5 personal days, pro-rated based on date of hire; 10 annual paid U.S. observed holidays; 401k with a best-in-class company match; deferred compensation for eligible roles; fitness reimbursement or on-site fitness facilities; eligibility for tuition reimbursement; and many more.

Pay Ranges
O'Fallon, Missouri: $170,000 - $263,000 USD

New York City, New York: $204,000 - $316,000 USD

Purchase, New York: $196,000 - $302,000 USD