Home
Jobs
Mastercard
Business Security Officer, Vocalink Limited-R-242290

Business Security Officer, Vocalink Limited-R-242290

Hybrid

London, United Kingdom

Full Time

01-04-2025

Share this job:

Score my CV Apply

Job Specifications

Our Purpose

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

Title And Summary

Business Security Officer, Vocalink Limited

Overview

Vocalink Limited, a Mastercard Company, is looking for a Business Security Officer to oversee Vocalink’s information, cyber and technology security. This is an exciting opportunity to lead a team that delivers security for Critical National Infrastructure to key customers in the United Kingdom.

The services we offer to our customers in the United Kingdom account for 90% of salaries paid, nearly all benefit payments, all cheques cleared and the majority of ATM transactions. These roles do not come around very often, and you would be joining a high functioning team dedicated to ensuring that this service remains robust, secure, and seamless for 60+million citizens every day – in numbers, that is 11 billion transactions every year with a value of over £10 trillion.

The Vocalink Business Security Officer (BSO) is a senior management role, with dual reporting lines to the Vocalink Limited Chief Executive Officer, as well as to the Mastercard Chief Security Officer.

Vocalink has confidence that its security work streams are executed in a timely and effective manner with appropriate governance and communication updates. This ensures that security initiatives are focused on balancing business needs and security controls that align with Vocalink’s position as a supplier of Critical National Infrastructure services. The communications and outcomes managed by the role will also form evidential artefacts for audit purposes and articulate effective Cyber resilience capabilities as defined by regulators.

All candidates will need to go through the non-objection process with the Bank of England before they are able to take up the role.

The role holder will:

Develop, implement and enforce security policies to protect critical data and infrastructure
Provide guidance on Vocalink’s Cybersecurity programme on a strategic level and ensure Vocalink remains compliant with Security standards, policies, regulations and legislation.
Oversee the day-to-day technical activities of the Security team such as Security Operations and Incident Response, Governance, Risk, and Compliance, Vulnerability Management, Physical Security and Business Continuity Planning
Convey security risks and potential threats to senior executives, the Vocalink Board, the Mastercard Group, Regulators and Government, including inward-facing committees as well as outward-facing customer and client committees, in business terms, present solutions, and provide actionable insights backed by data
Ensure UK Core Services meet or exceed contracted and regulated obligations for Vocalink’s customers as well as the Bank of England
Promote a culture of strong security and facilitate security cultural change across the organisation
Oversee Vocalink’s cyber controls framework
Use the allocated budget for Vocalink security programs efficiently and effectively and help Vocalink make smart decisions when it comes to investing in Cybersecurity
Lead, manage and deliver outcomes whilst working as part of a larger matrixed organisation.
Take the lead in championing the corporate values, through the implementation of robust processes, standard procedures, and quality working practices.
Maintain Vocalink’s and Mastercard's security profile across the industry through relationships with relevant external parties together with presentations and media coverage where appropriate.
3LoD role in line within the Risk Management Framework with accountability for the identification, mitigation and management of 1st line risks and operation of key controls
Strong leadership and management of the Vocalink security team of approximately 60 FTE

Knowledge Skills And Experience

Extensive experience working and operating effectively at executive level in global financial service organisations including working with a Board of Directors
Relevant experience of working in a complex (preferably multi-national) stakeholder environment that includes complex customers and experience of working with regulators
Experience engaging with and reporting into a Board of Directors
Deep expertise in cybersecurity and reporting standards
Experience collaborating cross-functionally to identify and implement best practice security, logging, and monitoring processes.
Understanding of CPMI-IOSCO Annex F and its impact on Financial Market Infrastructure provision.
Strong influencing skills; organizationally savvy
Ethics – strong personal and professional ethics
Highly motivated and conscientious individual
Strategic thinker – able to develop and communicate direction
Ability to motivate, inspire and lead people effectively

Corporate Security Responsibility

All Activities Involving Access To Mastercard Assets, Information, And Networks Comes With An Inherent Risk To The Organization And, Therefore, It Is Expected That Every Person Working For, Or On Behalf Of, Mastercard Is Responsible For Information Security And Must:

Abide by Mastercard’s security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.

R-242290

About the Company

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re building a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential. Know more

Related Jobs

Company Name: Microsoft Innovation Center
Job Title: Security Operations Engineer - SOC Tier 2 Analyst
Job Description: Overview Our team sits at the heart of Microsoft’s AI & High Performance Computing business – shaping and delivering the next generation of supercomputing. As a Security Operations Engineer - SOC Analyst, you will help develop, operate, and maintain security services supporting the evolving needs of one of our largest and most significant customers. As a Security Operations Engineer - SOC Tier 2 Analyst you support a managed security service for Microsoft working on a long-term cloud integration program. The Security Operations Engineer is responsible for executing a managed cyber security service and will make sure this meets customer contractual requirements and is targeting “goal” zero for all cybersecurity incidents. As a Tier 2 Analyst you will play a critical role in identifying, analysing, and mitigating complex security incidents and breaches within the organizations network and systems. You will work with a wide range of teams to ensure the overall safety and security of the environment and work closely with key stakeholders. This role will allow you to develop your security and technical skills. You will have the opportunity to impact both Microsoft’s strategy and the world-wide mission of one of the largest and most forward-leaning customers. The customer’s scenarios will be lighthouses for their markets and present an opportunity for Azure and Microsoft to learn and grow, create transformative technology offerings, and advance competitive advantages. Our team values collaboration, craftsmanship, and continuous learning. As a member of the team, you will be able to shape and grow a positive and productive engineering culture. Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. Responsibilities Incident Triage: Investigate and triage security alerts escalated from Tier 1 SOC analysts, determine severity and potential impact of the incident, and follow the triage process until closure. Threat Analysis: Conduct in-depth analysis of security events to identify malicious activities, tactics, techniques, and procedures used by threat actors. Security Incident Handling: Assisting with the containment, eradication, and recovery process in response to security incidents. Vulnerability Assessment: Participating in vulnerability assessment and management activities to identify and remediate security weaknesses. Security Tool Management: Managing and configuring security tools, specifically Microsoft Sentinel and the Microsoft Defender suite including Defender for Cloud and Microsoft 365 Defender. Threat Intelligence: Utilizing threat intelligence feeds and sources to stay up-to-date with the latest threats and vulnerabilities. Collaboration: Collaborating with other members of the SOC team, as well as external and internal stakeholders. Continuous Improvement: Contributing to the improvement of SOC processes, procedures, and documentation, including the creation and upkeep of Analytics Rules, Playbooks/Notebooks/Workbooks within Microsoft Sentinel. Leadership: Mentor SOC Tier 1 Analysts to improve detection/analytical capabilities within the SOC and monitor SOC Tier 1 Analyst performance. Qualifications Required Qualifications: Bachelor's Degree in Statistics, Mathematics, Computer Science or related field OR Experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology. Relevant certifications such as Certified Incident Handler (GCIH), Certified SOC Analyst (CSA), Certified Threat Intelligence Analyst (CTIA) Relevant Microsoft certifications such as Azure Security Engineer Associate (AZ-500), Security Administrator Associate (MS-500), Identity and Access Administrator Associate (SC-300). Proven experience in a SOC environment, preferably with a focus on Microsoft Defender suite and Microsoft Sentinel. Other Qualifications Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter. Preferred Qualifications Master's Degree in Statistics, Mathematics, Computer Science OR related field OR Experience in software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection. CISSP CISA CISM SANS GCIA GCIH OSCP Security+ Experience reading and/or writing code (e.g., sample documentation, product demos). In-depth knowledge of security operations center concepts, processes, technologies, tools (technical skills and hands-on experience with various security solutions such as SIEMs (e.g., IBM QRadar), SOARs (e.g., Microsoft Sentinel, Defender suite), XDRs (e.g., CrowdStrike Falcon), threat intelligence platforms (e.g., Recorded Future), vulnerability scanners (e.g., Qualys)), frameworks, standards, and regulations AND OR proficiency in Kusto Query Language (KQL). Understanding of advanced cybersecurity concepts, threat landscape, and attack methodologies AND OR experience with the creation, configuration and use of Playbooks, Notebooks and Workbooks. Demonstrated experience in conducting in-depth incident analysis, threat hunting, and forensic investigations. Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form . Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work. #MSFTNSBE25 #azurecorejobs

Reading, United Kingdom

On site

Full Time

03-04-2025

Company Name: CACI Healthcare Insights Group
Job Title: Network Security Engineer
Job Description: Kensington, London, UK Req #1058 03 April 2025 Headquartered in London, CACI Ltd is a wholly owned subsidiary of CACI International Inc., a publicly listed company on the NYSE with annual revenue in excess of US $6.2bn and employing approx. 22,000 people worldwide. CACI Ltd is an international data and technology consultancy with £154m turnover and 1200 employees. We are passionate, progressive and unafraid of challenge; our mission is to use technology and data-driven insight to make a commercial difference. We provide expert advice and hands-on system management to help our national and global clients get the most from technology and data. We use innovation wisely to deliver well thought-out digital solutions and software. CACI's Information Intelligence Group provides a range of software, Consultancy and managed services to clients. With experience and understanding of systems integration, analytics and secure cloud and managed services, we help clients improve operational processes, gain greater insight into their business and reduce costs. From data integration, web reporting and activity-based costing to mobile working, telecom operational support systems and online transactional solutions, we help our clients to understand their business, manage performance and deliver value for money services to their customers. Founded in 2006, the CACI IIG is an agile, exciting, growing and progressive business unit within CACI UK. We currently have over 400 intelligent, professional and engaging staff. Through a rigorous emphasis on quality, the company has grown considerably to become one of the UK’s most well-respected Software Engineering Companies. IIG’s company mission statement is to delight our customers and employees by delivering core mission solutions that keep the UK safe, secure and sustainably moving forward. Our Strategy Is To Do Great Things For Our Customers On Work That Is At The Heart Of Their Core Mission. We Bring Together Highly Capable, Creative, Curious And Passionate Problem Solvers To Seek excellence, delivering real customer value in an open, honest and friendly way Run and grow a sustainable and profitable business Work alongside our customers to exceed their expectations and set the standard for our competitors- Be the trusted technical partner of choice in our chosen markets Provide employees with a great working environment focussed on support, growth and empowerment Our mission is to support government departments to use information intelligently to make mission critical decisions and advance the security, sustainability and prosperity for the UK. CACI Network Services is a rapidly expanding specialist IT and Networks consultancy offering a wide variety of opportunities to work within challenging and exciting environments with our major clients in Global Media, Banking, Government, Telecoms & Utilities. A Network Security Engineer is required to join the UK Deployment Team, responsible for the deployment and planning of the Bank’s network infrastructure in the UK, Middle-East, Africa and India. The team is responsible for the delivery and deployment of network/security projects and requests to enhance the client’s infrastructure to meet current and future business demands:- The role may have, but is not limited to the following functions: Plan, manage and deploy technology changes to support DC services Deploy LAN infrastructure to support end user services requirements Includes patching schedules for facilities to cable network equipment Diagrams for Network Operations Inventory management Create implementation plans for RFC’s to a high level of detail. Correctly document pre and post checks for change verification purposes Understand and document back out plans, clearly identifying back out points. Identify points of no return Support the stability and uptime of essential services by planning changes with a documented best approach mind set. Identify where changes can be complete with zero downtime to hosted services. Plan and implement changes with a cost effective resource strategy. Identify, understand and document change risks and mitigation tactics. Identify, understand and document impact of planned technology changes, including documentation expected output from verification. Document network estate for Operation Support and to support change planning Maintain infrastructure database Complete network diagrams to a high standard. Peer review and validation of technical deployment plans Provide constructive feedback to peers to support change control requirement and maintain high standards of detail and quality offered by CACI. Required Skills In-depth experience working on Fortinet and Checkpoint firewalls. Good level of Cisco Routing & Switching Strong CCNP certification or equivalent experience Certified in Network Security. Hands on experience working on firewall migrations projects. Ability to handle numerous separate projects concurrently A very organised individual. Ability to work under pressure and to tight deadlines whilst maintaining attention to detail. Analyse, review and understand network topologies. Coordinate multiple projects, change management and governance efficiently working both independently and as a member of a team. Good understanding of networking principles, Good documentation skills using MS Office suite and Visio Good customer facing skills with the ability to keep the customer informed at all times and understand their requirements This role is suitable for a Network Engineer who has at least 5 years as a Senior Project Engineer in a professional environment. Desired Skills CheckPoint certification or equivalent experience Fortinet certification or equivalent experience Firewall Migration experience Proxy Experience (Mcafee) Training CACI Network Services develops individuals through a portfolio of training and development options such as certified training courses, workshops, technical conferences, boot camps, on-line training and much more. You will have the opportunity to work on some of the most advanced networking hardware in the industry as well as development of your abilities and talents to become one of the best in the field. Rewards And Benefits In return you will be awarded with a competitive salary, excellent benefits and the opportunity to develop your career and skills within a growing company. Equal Opportunities CACI is proud to be an equal opportunities employer. Embracing the diversity of our people, we are on a journey to build a truly inclusive work environment where no one is treated less favourably due to ethnic origin, age, gender, veteran status, religion or belief, sexual orientation, marital status, and disability or health condition, actively working to prevent discrimination. As a Disability Confident employer, we will; Provide reasonable adjustments in the recruitment process where requested (contact a member of the recruitme...

Kensington, United Kingdom

On site

Full Time

03-04-2025

Company Name: Dynamic Search Solutions
Job Title: Network Security Engineer – Cisco & Fortinet Specialist
Job Description: Job Title: Network Security Engineer – Cisco & Fortinet Specialist Location: Worcestershire Salary: £45,000 - £50,000 The Company A leading professional services team is seeking a Network Security Engineer to enhance and protect critical network infrastructure. This role offers the chance to work with cutting-edge Cisco and Fortinet technologies, supporting both internal security initiatives and customer environments. Working closely with the CISO and CTO, you will play a key role in managing, monitoring, and optimising network security systems, ensuring robust protection against evolving threats. If you have deep expertise in firewall technologies, network security operations, and threat management within Cisco and Fortinet environments, this is an exciting opportunity to take your career to the next level. Role & Responsibilities Network Security Operations – Configure, manage, and optimize Cisco (ASA, Firepower, ISE) and Fortinet (FortiGate, FortiAnalyzer, FortiManager) security appliances. Threat Monitoring & Incident Response – Investigate security events, fine-tune alerts, and respond to threats using SIEM, MDR, and XDR tools. Firewall & VPN Administration – Implement, maintain, and troubleshoot secure network infrastructure including Cisco AnyConnect and Fortinet VPN solutions. Incident Management – Detect, analyze, and remediate security incidents affecting IT and Operational Technology (OT) environments. Vulnerability Management – Conduct regular security assessments, apply patches, and ensure compliance with best practices. Security Compliance & Governance – Align security operations with regulations such as GDPR, NIS2, and ISO 27001. Security Policy Implementation – Collaborate with the CISO to develop and enforce internal security policies. Skills & Experience 3+ years’ experience in network security or cybersecurity roles. Strong expertise in Cisco and Fortinet security solutions – Cisco Firepower, ASA, ISE, AnyConnect, FortiGate, FortiAnalyzer, and FortiManager. Hands-on experience with SIEM, EDR/MDR, IDS/IPS, and firewall rule management. Incident response and triage skills – ability to assess and prioritize security incidents. Strong knowledge of network protocols, threat analysis, and access controls. Certifications such as CCNP Security, NSE 4+ (Fortinet), or equivalent. Excellent communication skills and ability to engage with both internal teams and customers. Additional Skills (Desirable but not essential): Experience with OT security (SCADA, ICS, industrial networking). Hands-on expertise in endpoint protection, WAF, content filtering, and SIEM tuning. Scripting/Automation (Python, PowerShell) for security operations. Penetration testing skills or OSCP, CEH certifications. Company Benefits Work with cutting-edge Cisco and Fortinet security technologies in IT and OT environments. Career growth opportunities in a fast-evolving security landscape. Collaborate with top cybersecurity professionals and industry experts. Competitive salary, training, and professional development support.

Worcester, United Kingdom

On site

Full Time

04-04-2025

Company Name: Red Bull Racing & Red Bull Technology
Job Title: Cyber Security Apprentice
Job Description: We have an exciting opportunity for an enthusiastic Cyber Security Apprentice to join us in September 2025. Our Cyber Security Apprentice will work within the IT Department to reduce risk and improve the company's security posture. They will conduct proactive analysis of security event data, whilst enhancing the team's detection and investigation capabilities. Day-to-Day you will: Identify and remediate potential incidents, escalating when necessary. Conduct cybersecurity risk assessments and provide recommendations to reduce risk and improve security posture. Assist in developing and enforcing information security policies, processes, and controls, following industry best practices. Collaborate with external parties to identify risks and vulnerabilities, while working with experts to ensure security infrastructure changes follow standard procedures and change control policies. Assist in designing and implementing security awareness campaigns. Promote a healthy cybersecurity culture and assess its effectiveness. Analyse security control outputs to improve the company's security stance. Stay aware of emerging cybersecurity trends, vulnerabilities, threats, technologies, legislation, regulations, standards, and best practices. What you’ll need: 5 GCSEs grade 9 – 4 (A*- C) including Maths, English and Science. A Level, BTEC or Level 3 apprenticeship in IT or related subject. A keen interest in cyber security and computing. A passion for winning, with a good work ethic and willingness to learn. Now from us - what you can expect to receive in return: We’re incredibly proud of all the talented people who work at Red Bull Technology Group, and we reward this talent and hard work with many benefits on top of a highly competitive salary. Benefits include a bonus scheme, private healthcare, life assurance scheme, workplace nursery scheme, company contributed pension, on site gym, padel court and fitness classes, daily food allowance and much more.

Milton Keynes, United Kingdom

On site

Full Time

04-04-2025