Our Purpose We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results. Title and Summary Security Risk Manager Overview The Vocalink Cyber Security team is looking for a Manager, Technology Risk Management. This is a newly created position for strategy and implementation and regulatory engagement capability within the Vocalink Business unit under Real-Time Payments (RTP) division at Mastercard. The role will be primarily charged with developing, delivering maintaining and monitoring IT security workstreams, including policies, technical implementations, standards and best practices. Vocalink will have confidence that their security workstreams are executed in a timely and effective manner with appropriate governance and communication updates. This will help maintain Executive confidence that security initiatives are focused on balancing business needs and security controls that align with Vocalink’s position as a supplier of Critical National Infrastructure services. The communications and outcomes managed by this role will also form evidential artefacts for audit purposes and articulate effective Cyber Resilience capabilities as defined by regulators. Role: The Security GRC Manager shall: • Implements policies and procedures to minimize exposure and drive the proper controls • Supports the management and facilitation of governance committees • Provides data analysis and strategy execution across risk areas, leveraging an understanding of risk and regulation • Supports cross-functional initiatives to deliver on risk goals, policies and procedures • Develops and manages risk processes, including identifying and implementing best practices and ensuring all processes are documented, reviewed and updated regularly • Experience delivering presentations and supporting messaging to senior leadership • Understand and support the Corporate Security risk strategies that maintain the status of industry compliance standards (e.g. PCI) for applications that process, store or transfer credit card information and the enterprise architecture where they reside • Understand and support the Technology Risk strategies that maintain the status of payment, financial and industry data standards accessible to Mastercard’s third parties according to Mastercard Technology Policies and Standards, performing critical vendor reviews and Mastercard subsidiary reviews globally • Understand and support the Technology Risk strategies that maintain the necessary focus and quality of the due diligence and control validation functions within Risk management • Maintain security metrics and reporting aligned to management and business requirements. • Assist with any security related tasks as required by the security director or line manager. All about you In this role you will need to be able to do, and have experience of the following: • Experience collaborating cross-functionally to identify and implement best practice risk processes • Experience managing a team, conducts goal setting and performance appraisal processes • Experience delivering presentations and supporting messaging with senior leadership • Experience leading cross-functional projects, teams or committees • Demonstrated success building relationships and delivering results on a key initiatives • Experience identifying capability gaps and successfully works to coach and build skills within team • Exposure to delivering presentations and engaging with senior leadership Technical: • Intermediate Consulting and Strategic Judgement • Intermediate Data Analytics • Intermediate IT Security • Intermediate Program Management and Optimization • Intermediate Risk Management and Investigation Professional: • Advanced Business acumen • Advanced commercial focus • Advanced future focus • Advanced global perspective • Intermediate innovation and thought leadership • Advanced people leadership • Advanced personal influence Corporate Social Responsibility: Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must: • Abide by Mastercard’s security policies and practices • Ensure the confidentiality and integrity of the information being accessed • Report any suspected information security violation or breach • Completed all periodic mandatory security trainings in accordance with Mastercard’s guidelines Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: Abide by Mastercard’s security policies and practices; Ensure the confidentiality and integrity of the information being accessed; Report any suspected information security violation or breach, and Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines. Everyone wants easier ways to pay; we invent them. Checkout lines are slow; we speed them along. Merchants want more sales; we give them data and insights. People need financial access; we connect them. Corporate purchasing is complicated; we make it simple. Commuters are busy; we speed them on their way. Governments need greater efficiencies; we help create them. Small businesses are virtual; we give them access to a world of buyers. Retailers want to fight fraud; we provide the tools.