Senior Information Security Engineer

Senior Information Security Engineer

To support our continued growth and success, we are seeking a Senior Information Security Engineer to assist in all operational aspects of our security program. The ideal candidate will have solid experience in information security technologies including incident, vulnerability and threat management, and excellent communication and technical abilities. If you want to collaborate within dynamic teams and work in a fast‑paced environment, this position is for you.

• Contribute as a senior team member of Information Security Operations professionals.
• Invite collaboration with technical and business stakeholders, advising on security standards, policies and industry trends.
• Develop relationships to share knowledge and influence security objectives, while being inclusive to all stakeholders.
• Improve and maintain security services, focusing on review efficiency, standards definition, and change‑management correctness.
• Maintain operational security posture through incident management, vulnerability management, key management, identity and access management, etc.
• Respond to security incidents, manage the process and escalate as required.
• Perform vulnerability scans, user access reviews, configuration and hardening validation, and automate many of these tasks within our SIEM.
• Document risk and mitigation controls, including policy and procedure updates.
• Participate in audits, assessments, and provide support as appropriate.
• Analyze established operational security controls and recommend improvements.
• Evaluate appropriate tools to support the security operations function.
• Participate in security on‑call rotation.

• Extensive Linux administration and troubleshooting.
• Extensive network technology administration and troubleshooting.
• Low‑level PKI management and troubleshooting.
• Cyber Ark PIM.
• HSM (e.g., Luna 7 or related appliances).
• Key Secure NAE, KMIP and related services.
• Splunk and Rsyslog filtering.
• Hashi Corp Vault for secret and PKI management.
• SIEMs such as QRadar, Splunk ES, Log Rhythm or related technologies.

• Bachelor's degree or equivalent experience/certification.
• Windows and Linux/UNIX administration experience.
• Solid understanding and troubleshooting of ISO layer protocols.
• Working understanding of cryptography.
• Excellent verbal and written communication skills.
• Experience in PCI DSS, SOC or HIPAA environments.
• Knowledge of hardware security modules, single‑sign‑on and identity management.
• Certifications such as CISSP, CCSP, CSSLP, OSCP, CISM are preferred.

• Abide by Mastercard’s security policies and practices.
• Ensure the confidentiality and integrity of accessed information.
• Report any suspected security violations or breaches.
• Complete all periodic mandatory security trainings.

Toronto, Canada: $111,000 - $160,000 CAD

Mastercard is a merit‑based, inclusive, equal‑opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disability or veteran status, or any other characteristic protected by law.

In the U.S. or Canada, if you require accommodations or assistance to complete the online application process or during the recruitment process, please email