Our Purpose

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

Title and Summary

Director, Technology Risk Management

Director, Regulatory Relations and Market Compliance

Who is Mastercard?
Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.

Regulatory Relations and Market Compliance
The Regulatory Relations and Market Compliance (RRMC) organization is a business enabler and industry leader of technology and security risk management practices, supported by a multi-disciplinary team of top security, technology, and risk professionals. The team is responsible for working with, and demonstrating to, our stakeholders (e.g., regulators, customers, Mastercard businesses) how Mastercard complies with our promises, commitments, and obligations and also as a member of the front-line risk organization. We do this by translating regulatory and customer requirements into actionable information and demonstrating how Mastercard standards/controls meet and/or exceed these expectations.
Overview
Looking for a Director, Regulatory Relations and Market Compliance, to drive our strategy forward by consistently innovating and problem-solving. The ideal candidate is passionate about risk & controls, highly motivated, and understands how to interact effectively with regulators and customers.
Role
You will:
•\tbe responsible for performing and managing risk assessments/ gap assessments and related activities across TECH business groups and understanding the regulatory or customer driven risk/compliance environment.
•\tprovide actionable information regarding the changing regulatory environment to drive business compliance
•\tAssist with respond to complex customer inquiries regarding Mastercard’s technology and security obligations, which may be via questionnaire response or onsite/virtual assessments; this will include supervision of a dedicated team
•\tunderstand and advocate the Technology risk strategies that maintain the status of industry compliance standards (e.g., PCI, SOC, ISO, PFMI) for applications that process, store or transfer credit card information and the enterprise infrastructure where they reside
•\tlead and actively participate in cross-functional initiatives to deliver on risk goals, policies and procedures, including standardization efforts; preparation of internal risk reports, execute on risk management processes and procedures in accordance with established policies, including requirements to maintain industry compliance standards
•\twork collaboratively with internal stakeholders at the corporate, regional or local level across all of Mastercard
•\tcoordinate and manage work performance metrics and deliver to leadership on a periodic basis, including documenting, reviewing and updating department systems regularly
•\tmonitor business, market and regulatory landscape to identify required standards, policy requirements and potential implications to company

All About You
The ideal candidate for this position will have the following:
•\tability to perform risk assessments, gap assessments
•\texcellent presentation skills and substantial presentation experience, preferably including executive level. Understanding of developing and presenting metrics to leadership
•\tskilled at explaining complex technical problems succinctly and clearly
•\tadvanced knowledge of NIST, ISO, PCI, and other leading control frameworks
•\tadvanced understanding of risk & controls associated within security and technology domains
•\tsubstantial project management experience, preferably managing a team in a multi-project environment with short timelines
•\tknack for finding solutions and solving problems where others don’t
Corporate Security Responsibility
Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:
•\tAbide by Mastercard’s security policies and practices;
•\tEnsure the confidentiality and integrity of the information being accessed;
•\tReport any suspected information security violation or breach, and
•\tComplete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

Abide by Mastercard’s security policies and practices;

Ensure the confidentiality and integrity of the information being accessed;

Report any suspected information security violation or breach, and

Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.