Information Security Engineer II
Explicitly mentions Vibe coding as a required scripting skill and also calls out using AI to automate and improve security processes.
About the Role
Mastercard seeks an Information Security Engineer II to perform third‑party software security evaluations, apply security engineering principles across the software development lifecycle, and improve security processes through scripting and AI. The role focuses on web and network security, cryptography, secure architecture, and translating security risk for business stakeholders.
Job Description
Role
Information Security Engineer II responsible for enabling secure business outcomes by performing third‑party software security evaluations, applying security engineering principles to technology reviews, and improving security processes through scripting and AI-driven solutions. The role partners with product and engineering teams to ensure secure design and communications for internet‑facing and mobile applications.
Key Responsibilities
- Perform Third Party Software Security Evaluations and assess security posture against business requirements.
- Apply security principles, theories, and concepts to technology and architecture reviews across the SDLC.
- Use Artificial Intelligence to solve business problems and increase operational efficiency.
- Understand, own, and improve existing business processes related to security enablement.
- Participate in team meetings, represent the team externally where required, and independently drive initiatives.
Requirements
- Intermediate knowledge of information security, risk management, and data privacy in digital commerce.
- Good understanding of identity management, user authentication, and authorization principles.
- Broad awareness of security engineering concepts and practices across all phases of the software development lifecycle.
- Demonstrated experience designing secure multi‑domain, internet‑facing applications and advising on security architecture for web services, web applications, and mobile applications.
- Strong communication skills with the ability to translate security and risk concepts into business terms and recommend alternatives.
- Intermediate hands‑on experience in scripting or Vibe coding.
- Intermediate knowledge and experience in cryptography (e.g., encryption, hashing, key management, digital certificates, TLS).
- Technical experience with Java or a similar enterprise programming language is a plus.
- Mobile security architecture experience (Android and iOS) is a plus.
- Working knowledge and technical security experience with Linux is a plus.
NICE Framework Alignment
Roles aligned with NICE work roles: Cybersecurity Architecture; Insider Threat Analysis; Secure Systems Development; Security Control Assessment; Technology Research and Development.
Corporate Security Responsibilities
- Abide by Mastercard security policies and practices.
- Ensure confidentiality and integrity of accessed information.
- Report suspected security violations or breaches.
- Complete periodic mandatory security trainings.