Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
Senior Information Security Operations Analyst
Who is Mastercard?
Mastercard is a global technology company in the payments industry. Our mission is to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart, and accessible.
Using secure data and networks, partnerships, and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realise their greatest potential.
Our Decency Quotient (DQ) drives our culture and everything we do, inside and outside the company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all.
Mission First, People Always
Within Corporate Security, our mission is to keep Mastercard safe and secure from cyber and physical threats. This is made possible by our people on the front lines every day.
By investing in wellbeing, growth, and career development, we create an environment where our teams have the tools, trust, and support needed to deliver secure, resilient, and customer‑centric outcomes.
Overview
The Access Services team is seeking a Senior Information Security Operations Analyst with a strong focus on UAT and Quality Assurance from a customer and BAU perspective, supporting the continued modernisation of Identity and Access Management (IAM).
This role is ideal for someone who is deeply passionate about the customer experience journey, quality, and operational excellence. You will ensure that IAM solutions—particularly SaaS‑based services—are not only secure and compliant, but also usable, supportable, and operationally ready for BAU customer‑facing teams.
You are intellectually curious, highly motivated, and bring a customer‑first, quality‑driven mindset, combined with strong collaboration skills and a positive, future‑focused outlook.
In This Role, You Will:
Customer‑Focused UAT & QA
Lead UAT and QA activities for IAM and Access Services solutions, validating functionality from a customer, operational, and BAU support perspective.
Act as a champion for customer‑facing teams, ensuring solutions are intuitive, supportable, and fit for real‑world use.
Validate end‑to‑end user journeys, including Joiner, Mover, Leaver (JML) lifecycle events and exception handling.
Test Strategy, Design & Execution
Design, maintain, and execute UAT, regression, and release‑readiness test cases aligned to business requirements and customer outcomes.
Review project documentation and business requirements, translating them into customer‑centric, risk‑aware test scenarios.
Partner with engineering and product teams to provide clear, actionable quality feedback ahead of releases.
Automation & Testing Frameworks
Build and maintain automated test cases to improve consistency, coverage, and speed of validation across IAM services.
Work within established testing frameworks, contributing to test strategy evolution and continuous improvement.
Identify opportunities to improve QA efficiency and effectiveness through automation and tooling.
IAM, SaaS & Cloud Services
Perform UAT and QA for cloud‑based and SaaS IAM solutions, including human and non‑human identities.
Validate implementation and behaviour of IAM security controls, integrations, and governance features.
Support IAM modernisation initiatives, including M&A identity service expansion where applicable.
Security, Risk & Standards Alignment
Ensure QA activities align with NIST frameworks (e.g. NIST Cybersecurity Framework) and relevant ISO standards.
Validate security and control requirements as part of UAT, ensuring risk and compliance needs are embedded—not bolted on.
Support auditing and assurance efforts by providing clear evidence of test execution, outcomes, and control validation.
BAU Support & Continuous Improvement
Advocate Access Services and IAM capabilities across the enterprise, fostering understanding and trust in modern identity governance.
Use metrics, feedback, and customer insights to drive continuous improvement in IAM processes and cloud services.
Provide technical guidance and knowledge sharing to junior resources and broader operational teams.
All About You
The ideal candidate will demonstrate:
Intermediate to advanced knowledge of IAM concepts, with a strong understanding of identity lifecycles.
Proven experience in UAT and QA, ideally within SaaS and IAM platforms.
Hands‑on experience with test automation and familiarity with testing frameworks.
Background in Information Security, including governance, customer support, and operational collaboration.
Experience working in environments guided by NIST and ISO standards.
Ability to develop and manage plans for complex initiatives, prioritising work streams effectively.
Experience leading or contributing to medium‑scale initiatives involving cross‑functional teams.
Strong analytical thinking, communication skills, and a customer‑focused mindset.
Auditing experience for security controls and governance is an advantage.
NICE Framework Alignment
This role aligns with the NICE (National Initiative for Cybersecurity Education) Framework, with proficiency expected at advanced to expert levels in relevant areas, including:
Identity Management
Intelligence Analysis
Threat Analysis
Encryption
Data Analysis
Software Development
Corporate Security Responsibility
Every person working for, or on behalf of, Mastercard is responsible for information security.
The successful candidate must:
Adhere to Mastercard security policies and practices.
Ensure confidentiality and integrity of accessed information.
Report suspected security violations or breaches.
Complete all mandatory security training per Mastercard guidelines.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard’s security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.