Vocalink will have confidence that their Security work streams are executed in a timely and effective manner with appropriate governance and communication updates. This will help maintain Executive confidence that Security initiatives are focussed on balancing business needs and Security controls that align with Vocalink’s position as a supplier of Critical National Infrastructure services. The communications and outcomes managed by the role will also form evidential artefacts for audit purposes and articulate effective Cyber resilience capabilities as defined by regulators.
Role
The scope of the role encompasses the implementation of compliance management procedures, performing Security assessments and providing Security expertise and support for the monitoring of compliance and associated remediation activities.
The role will take responsibility for delivering compliance metrics and tracking key remediation/improvement of Security to ensure they are delivering for the business.
Lead complex compliance testing across the organisation.
Lead complex remediation/improvement activities across the organisation.
Apply technical capabilities within own discipline and use expert knowledge to support the delivery team solve and evolve implementation solutions.
Liaise with business leaders to proactively identify the Security impact of implementations across the organization.
Act as a go-to technical resource for compliance matters.
Oversee internal and external communications, ensuring the cadence and content of communications is appropriate.
Drive Security maturity through metrics and evidence based findings.
Maintain centralised evidence library for all control testing.
Work across the organisation to inform and educate on Security best practice and enforce compliance.
Ensure the effective operation and development of appropriate tooling is maintained.
All About You
In this role you will need to be able to do, and have experience of, the following:
Lead large, complex compliance testing.
Lead regular stakeholder meetings to facilitate open, efficient communication.
Lead technical collaboration with other teams.
Ability to improve efficiency through both process and technical enhancements.
Experience reviewing compliance evidence and communicating findings to owners.
Knowledge of global Security and reporting standards such as NIST, IOSCO, PCI, ISO and MITRE.
Strategic mind-set supported by ability to deliver in a complex technical environment.
Experience managing complex cross-functional projects, teams or committees.
Experience collaborating cross-functionally to identify and implement best practice Security, across all aspects of Security.
Experience working with industry and regulatory frameworks and standards.
COVID-19 Considerations
We value the safety of each member of our community because we know we’re all in this together. In many locations, which may change over time, we’ve implemented a virtual hiring process and continue to interview candidates by video or phone. In addition, in some locations, only individuals who have been fully vaccinated will be permitted inside Mastercard offices until further notice.
In the US, Mastercard is a government contractor, which may legally require most Mastercard employees to be vaccinated unless a verified approved medical or religious exemption is granted. Further, we are currently making every effort towards having employees return to work in the office 2 days per week, if that makes sense for their team. Everyone must be vaccinated to enter Mastercard offices at this time. Therefore, we expect all candidates to be vaccinated or to be approved for a medical or religious accommodation prior to commencing work at Mastercard.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
- Abide by Mastercard’s security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.