Description
Our Purpose
We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.
Title and Summary
Lead, Technology Risk Analyst Founded by Mastercard and IBM in 2018, Trūata specializes in privacy-enhancing technologies for privacy risk assessment, de-identification, and true anonymization of data. Trūata was one of the first companies in the EU to receive independently accredited ISO 27701 certification, the international standard for data privacy management. In 2023, Mastercard acquired full ownership of Trūata with Trūata continuing to operate as an independent entity within the Mastercard Data Insights & Analytics Organisation.Overview
We are seeking a highly skilled and motivated Lead, Technology Risk Analyst to join our growing team. The successful candidate will play a crucial role in identifying, assessing, and mitigating technology-related risks within our organization. This role requires expertise in ISO27001 and ISO27701 standards, as well as a deep understanding of technology risk management.
•Lead the development, implementation, and enhancement of the organization's technology risk management framework.
•Conduct regular risk assessments and identify potential threats and vulnerabilities in our technology infrastructure.
•Collaborate with cross-functional teams to establish and maintain a robust technology risk mitigation strategy.
• Monitors technology risk and compliance, and develops, delivers, maintains, and monitors IT policies, standards, and best practices
• Oversees compliance and the implementation of design (up-to-date standard operating procedures) and operational (testing the validity of procedures periodically) effectiveness
Responsibilities
•Ensures compliance with ISO27001 and ISO27701 standards and serve as the subject matter expert in these areas.
•Conducts internal audits to assess and validate adherence to ISO27001 and ISO27701 requirements.
•Works closely with internal stakeholders to remediate any identified non-compliance issues.
• Supports policies and procedures to minimize exposure and drive the proper controls
• Supports the management and facilitation of relevant governance committees
• Provides data analysis and strategy execution across risk areas, leveraging an understanding of risk and regulation
• Supports cross-functional initiatives to deliver on risk goals, policies and procedures
• Develops risk processes, including identifying and implementing best practices and ensuring all processes are documented, reviewed and updated regularly
• Experience delivering presentations and supporting messaging to senior leadership
• Understand and support the Technology risk strategies that maintain the necessary focus on quality of due diligence control validation functions within risk management
• Understand support Technology risk strategies that maintain status Stakeholder Assurance function provides interface controls expertise responding customer requests RFP support customer audit support
Experiences
• Experience collaborating cross-functionally to identify and implement best practice risk processes
• Experience delivering presentations and supporting messaging with senior leadership
• Experience working with data protection regulations a bonus
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard's security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Apply on company website
Find Connections via Linkedin
