Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
Senior Software Engineer
Overview
• The Cryptographic Security Program consists of a global Mastercard team that designs, builds, and supports service platforms that provide cryptographic, key management and EMV certificate management functions utilized by global Mastercard application teams.
• Cryptographic Security has roadmap plans to re-architect legacy platforms and build new service-oriented platforms that are scalable, highly available, and built with continuous delivery implementations.
• The Engineer will work with the Key Management Portal team. This is a new strategic application which we have designed, built and own end-to-end, which delivers a modern, secure, and usable web-based service for external and internal users to exchange and manage certificates and keys through guided workflows.
Role
All staff at Mastercard are expected to demonstrate 'Mastercard Way' cultural values every day - own it, simplify it, sense of urgency, thoughtful risk-taking, unlock potential, and be inclusive – with a relentless focus on our customers.
As an Engineer at Mastercard, you are expected to carry out the following general duties:
• Own software delivery tasks (design, dev, test, deployment, configuration, documentation) to meet the business requirements
• Participate in team prioritization discussions with Product/Business stakeholders
• Develop a complete understanding of end-to-end technical architecture and dependency systems
• Able to troubleshoot and refactor existing code
• Adopt new languages and architecture patterns needed for the work
• Assist peers and less experienced members
• Influence the decisions made by the team
• Demonstrate active learning and sharing of software practices via Guild/Engineering community initiatives
• Assist in technical documentation of APIs and services being delivered
Within the Application Security Program, you are also responsible for:
• Working at all layers in the technology stack and contributing to architectural discussions
• Troubleshooting development and production problems
• Participating in rotational on-call support for escalated issues
All About You
• Solid understanding of software engineering concepts and methodologies in Java
• Experience developing secure, web-based applications in Java with Spring, and frontend with React or other modern frameworks
• Experience developing with relational and NoSQL databases (e.g. MongoDB, Redis)
• Knowledge of CI/CD concepts and tools, in the context of cloud deployment (e.g. Cloud Foundry)
• Understands and builds test code at unit level, service level, and integration level to ensure code and functional coverage
• Understands the use of basic design patterns (e.g., factory, adaptor, singleton, composite, observer, strategy, inversion of control)
• Open to learning about secure coding best practices, and security technologies and infrastructures (PKI, certificates, encryption key algorithms, credit card authorisation flows)
• Great critical thinking and problem-solving skills
• High-energy, detail-oriented, proactive, and able to handle multiple high-priority demands while driving consistent results
• Collaborative, communicative and engaged with team discussions, asking questions, mentoring juniors, and raising standards.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard’s security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.