- Nivelles, Belgium
Who is Mastercard?
We are the global technology company behind the world's fastest payments processing network. We are a vehicle for commerce, a connection to financial systems for the previously excluded, a technology innovation lab, and the home of Priceless ®. We ensure every employee has the opportunity to be a part of something bigger and to change lives. We believe as our company grows, so should you. We believe in connecting everyone to endless, priceless possibilities.
We are a searching for a highly technical, cybersecurity SME as our PKI Architect to join our team in support of the Key Management department.
The person in this position will support our Public Key Infrastructure (PKI) systems. This person will collaborate with technical employees, partners, and other IT teams to ensure that program and project architectures adhere to the standards and planned roadmaps. This role may involve dealing with highly confidential and sensitive information.
•Technical program oversight specific to the PKI security domain
•Responsible for maintaining our current PKI and developing our next generation PKI platform
•Responsible for the design, implementation, operationalization, and management across all PKI related technologies and frameworks, including Microsoft Certificate Authorities, hardware and software based HSM's, certificate lifecycle tools and frameworks
•Responsible for authoring and maintaining CP and CPS documentation, possibly in accordance with legal team
•Responsible for integrating PKI based solutions into existing and new technologies and applications across Mastercard
•Create, maintain and align Mastercard's information security policies and standards with industry best practices
•SME to help with solution design, troubleshooting, and problem management for current and future challenges and needs around PKI and authentication-based systems and integrations
•Required to understand how existing PKI and authentication related capabilities can be leveraged, extended and utilized for expansion into Cloud based frameworks, platforms and applications
All About You
•strong background in cybersecurity field focused on PKI services. CISSP or similar cybersecurity certification is a plus.
•Experience managing Certificate Authorities, Revocation Services, X509 Certificate and key lifecycle management
•Experience implementing Certificate Authorities (CA), Subordinate Certificate Authorities, Registration Authorities (RA), Certificate Revocation Lists (CRLs), and Certificate Management System/Tool, Online Certificate Status Protocol (OCSP) Responders, Hardware Security Modules (HSM) in enterprise PKI environment
•Experience implementing physical and logical controls in the enterprise network PKI environment in accordance with NIST and PCI
•Detail oriented, self-starter who possess strong verbal and written communication skills with ability to communicate at all levels across the organization
•Expert level experience in SSL certificate management concepts, processes, and solution management
•Experience in cloud solution development with Azure or AWS architectures as it related to PKI management.
•Experience with hardware security module (HSM) technology. Direct experience with nCipher HSM and Safenet HSM (Gemalto) platforms is highly desirable.
•Knowledge of IAM protocols and application such as LDAP, SAML, OAUTH, Kerberos, etc.
•Experience with RSA Keon, Venafi, Entrust preferred
Mastercard is an inclusive Equal Employment Opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law.
If you require accommodations or assistance to complete the online application process, please contact email@example.com and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.
Back to top