Our Purpose

We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion (https://www.mastercard.us/en-us/vision/who-we-are/diversity-inclusion.html) for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.

Title and Summary

Manager, PAM Support

Overview

This is an exciting opportunity to be part of the function overseeing Security for Vocalink Limited, a company that enables the payments of 90% of salaries, 70% of utility bills, most ATM transactions and every cheque cleared in the UK.

The successful candidate will become part of a high functioning team, dedicated to delivering a robust, secure, and resilient service to 60+million citizens every day with transactional volume of 11 billion/year and total annual transactional value in excess of GBP6 Trillion.

The IAM (Identity and Access Management) Manager is part of a team playing a crucial role in designing, implementing, and overseeing the company's identity and access management solutions. The ideal candidate will help define, enhance, and implement Vocalink's information security processes, while ensuring consistent administration of information security assets and controls to effectively improve security posture.

Role

In this role, you will:

• Lead and manage Privileged Access Management (PAM) BAU operations, ensuring they are delivered on time and meet the set specifications.

• Work closely with the IAM VP and Director to drive changes throughout the PAM team to improve Vocalink’s identity security posture.

• Regularly review and refine PAM policies to ensure they align with industry best practices and regulatory standards.

• Monitor and respond to any security breaches or irregularities within the PAM systems.

• Provide guidance and mentorship to junior team members, fostering a culture of continuous learning and improvement.

• Review the configuration of existing systems or solutions and identify security issues which require a change to its configuration, provide improvement recommendations and escalate any potential risks helping ensure security risks are pro-actively managed.

• Oversee vendors responsible for providing PAM tools and services and escalate any process deficiencies and remediation actions required to the IAM VP to help ensure providers meet contractually defined Service Level Agreements (SLAs) required to manage Vocalink risk.

Experience

• Track record of managing PAM Support teams in regulated environments

• CyberArk Defender (CDE) certified, in current good standing

• CyberArk Sentry or Guardian certified, or willing to commit to achieving certification.

• Detailed exposure to the CyberArk product suite – EPV, PVWA, CPM, CP/CCP, PSM, PSMP, PTA, DNA, EPM, DPA, SWS etc.

• Good understanding of Active Directory, Wintel and Unix/Linux in a PAM/CyberArk context

• Ability to articulate themselves clearly and concisely to a broad range of senior and junior stakeholders, acting as a bridge as well as guide for the implementation of new capabilities.

• Problem solving – excellent analysis and deductive skills.

• Customer focus – passion for excellence

• Ethics – strong personal and professional ethics

• Highly motivated and conscientious individual

• Embodies and demonstrates all the brand values required by Vocalink and Mastercard

• Line manager and a team player – leads by example

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard’s security policies and practices;

• Ensure the confidentiality and integrity of the information being accessed;

• Report any suspected information security violation or breach, and

• Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.