Our Purpose
We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.
Title and Summary
Security Monitoring and Response Analyst I
Who is Mastercard?
Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.
Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all.
Overview
The Information Security Operation team is looking for an Information Security Operations Analyst I to drive our monitoring and response strategy forward by consistently innovating and problem-solving. The ideal candidate is passionate about corporate security, highly motivated, intellectually curious, and analytical, and possesses an entrepreneurial mindset that helps to solve problems in innovative ways that help customers and internal teams.
Role
• 24/7 Security monitoring and response to incidents and security triage of incidents.
• Respond to security events triggered by security detection tools, documenting all actions in the security log, escalating significant issues.
• Follows defined processes and recommends process improvements.
• Ability to document change/update in the standard operating procedure/runbook/use case.
• Works to improve cyber security acumen to ensure they are up-to-date on security techniques and practices.
• management reports any issues or areas in the process that need to be addressed.
• Conduct proper evidence collection for all commercial platforms utilized in the Mastercard environment.
Skills Desired:
• Incident Response
• Forensic knowledge in Windows and Linux is required.
• Malware analysis - Basic (Static & Dynamic Analysis)
• SIEM - Splunk & Azure Sentinel (KQL & SPL)
• EDR/XDR - Microsoft Defender, Sentinel One, Crowd Strike (Anyone)
• Experience in SOC (Preferred)
All About You
The ideal candidate for this position should:
• Work experience within a SOC, incident response or digital forensics investigation
• Intermediate expertise in Splunk enterprise security (SIEM) and ability to correlate events as well able to write correlation rules.
• Better understanding of ITSM Process & ticketing technologies.
• Details understanding of event logs of Windows & Linux environment along with supporting application.
• Experience with Windows, Unix Based Operating Systems, and Cloud Security fundamentals (Preferably Azure Security & Microsoft Security control)
• Intermediate monitoring skills in Web application firewall, Data loss prevention, Endpoint/EDR response and appropriate response accordingly.
• Strong understanding of TCP/IP, MITRE ATT&CK, Kill Chain, Incident Management and Networking principles
• Ability to work effectively in ambiguous and/or high-pressure situations
• Be skilled at explaining technical problems succinctly and clearly
Corporate Security Responsibility
Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:
• Abide by Mastercard’s security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security training as per the Mastercard’s guidelines.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard’s security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.