This role involves executing control testing, identifying control gaps, supporting remediation, collaborating with stakeholders, and improving risk management practices.
Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
1st Line Security - Controls Testing Senior Analyst-1
Main Purpose of role:
The newly created Vocalink Control Office function is seeking a Senior Analyst within the 1st Line Control Testing team to support the delivery of control testing activities across Security control domains, within Vocalink Limited (VLL). VLL is a Bank of England regulated, Critical National Infrastructure (CNI) company that enables the payments of 90% of salaries, 70% of utility bills, most ATM transactions and every cheque cleared in the UK.
This role plays a key part in embedding a strong control environment by executing control testing, identifying control gaps, and supporting continuous improvement in risk management practices.
Key Responsibilities:• Control Testing Execution• Support periodic testing of key and non-key controls in accordance with the Control Testing Methodology.• Assess control design and operating effectiveness against internal policies, standards, regulatory requirements, and customer obligations.• Timely collection of control testing evidence from relevant Control Owners to support scheduled testing activities.• Prepare clear and accurate test documentation, including test procedures, execution results, and supporting evidence.• Identify and document control deficiencies, ensuring timely escalation to the Manager and supporting remediation follow-up activities.• Monitoring the control testing mailbox to ensure timely review and response to incoming queries and submissions.• Team Leadership, Collaboration & Stakeholder Engagement• Work closely with 1st Line teams to obtain evidence, clarify control processes, and support accurate testing outcomes.• Liaise with 2nd Line Security partners and Internal Audit as directed, ensuring transparency and alignment with control testing activities.• Contribute to the preparation of management information, dashboards, and thematic analysis for governance forums.• Support control owners by providing observations on control effectiveness and contributing to discussions on remediation approaches.• Governance & Continuous Improvement• Adhere to established control testing standards, procedures, and documentation requirements.• Provide input on opportunities to streamline testing activities, improve efficiency, and enhance the consistency of outcomes.• Maintain awareness of relevant regulatory requirements, emerging risks, and industry practices, particularly within the security domains.• Contribute to strengthening the 3 Lines of Defence model by embedding robust and transparent testing practices.
Experience & Qualifications:• Experience in control testing, or assurance, and risk management within security in a regulated environment.• Good investigative and analytical experience (e.g. enquiry, scanning, analysis, interviewing, testing), problem-solving, and decision-making skills.• Good understanding of control frameworks and standards (e.g., NIST, CRI, ISO and PCI-DSS).• Ability to assess control design and operating effectiveness in complex environments and to identify control gaps and improvement opportunities.• Good communication and stakeholder engagement skills.• Professional certifications such as CISA, CRISC, ISO 27001 or equivalent is desirable.
Preferred Skills & Attributes:• Bachelor's degree in Information Technology, Computer Science, Cyber Security, or related field.• Good Knowledge of security controls and IT general controls across platforms such as UNIX, HP Nonstop, and Windows.• Proficiency in Microsoft Office Suite (MS Word, MS Excel, MS Access and MS PowerPoint)• Strong organisational skills with the ability to prioritise and manage multiple tasks.• Self-starter with a continuous improvement mindset and a collaborative approach.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
1st Line Security - Controls Testing Senior Analyst-1
Main Purpose of role:
The newly created Vocalink Control Office function is seeking a Senior Analyst within the 1st Line Control Testing team to support the delivery of control testing activities across Security control domains, within Vocalink Limited (VLL). VLL is a Bank of England regulated, Critical National Infrastructure (CNI) company that enables the payments of 90% of salaries, 70% of utility bills, most ATM transactions and every cheque cleared in the UK.
This role plays a key part in embedding a strong control environment by executing control testing, identifying control gaps, and supporting continuous improvement in risk management practices.
Key Responsibilities:• Control Testing Execution• Support periodic testing of key and non-key controls in accordance with the Control Testing Methodology.• Assess control design and operating effectiveness against internal policies, standards, regulatory requirements, and customer obligations.• Timely collection of control testing evidence from relevant Control Owners to support scheduled testing activities.• Prepare clear and accurate test documentation, including test procedures, execution results, and supporting evidence.• Identify and document control deficiencies, ensuring timely escalation to the Manager and supporting remediation follow-up activities.• Monitoring the control testing mailbox to ensure timely review and response to incoming queries and submissions.• Team Leadership, Collaboration & Stakeholder Engagement• Work closely with 1st Line teams to obtain evidence, clarify control processes, and support accurate testing outcomes.• Liaise with 2nd Line Security partners and Internal Audit as directed, ensuring transparency and alignment with control testing activities.• Contribute to the preparation of management information, dashboards, and thematic analysis for governance forums.• Support control owners by providing observations on control effectiveness and contributing to discussions on remediation approaches.• Governance & Continuous Improvement• Adhere to established control testing standards, procedures, and documentation requirements.• Provide input on opportunities to streamline testing activities, improve efficiency, and enhance the consistency of outcomes.• Maintain awareness of relevant regulatory requirements, emerging risks, and industry practices, particularly within the security domains.• Contribute to strengthening the 3 Lines of Defence model by embedding robust and transparent testing practices.
Experience & Qualifications:• Experience in control testing, or assurance, and risk management within security in a regulated environment.• Good investigative and analytical experience (e.g. enquiry, scanning, analysis, interviewing, testing), problem-solving, and decision-making skills.• Good understanding of control frameworks and standards (e.g., NIST, CRI, ISO and PCI-DSS).• Ability to assess control design and operating effectiveness in complex environments and to identify control gaps and improvement opportunities.• Good communication and stakeholder engagement skills.• Professional certifications such as CISA, CRISC, ISO 27001 or equivalent is desirable.
Preferred Skills & Attributes:• Bachelor's degree in Information Technology, Computer Science, Cyber Security, or related field.• Good Knowledge of security controls and IT general controls across platforms such as UNIX, HP Nonstop, and Windows.• Proficiency in Microsoft Office Suite (MS Word, MS Excel, MS Access and MS PowerPoint)• Strong organisational skills with the ability to prioritise and manage multiple tasks.• Self-starter with a continuous improvement mindset and a collaborative approach.
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
- Abide by Mastercard's security policies and practices;
- Ensure the confidentiality and integrity of the information being accessed;
- Report any suspected information security violation or breach, and
- Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Top Skills
Cri
Iso
Microsoft Office Suite
Nist
Pci-Dss
Similar Jobs at Mastercard
Blockchain • Fintech • Payments • Consulting • Cryptocurrency • Cybersecurity • Quantum Computing
Apprentice Cabling Engineer installing, testing, documenting and decommissioning Cat6 and multimode fibre cabling, racks and data-centre equipment. Assist with server/switch installs, troubleshoot connectivity, monitor environment, follow safety procedures, and collaborate with engineering teams. Training provided; must be physically capable and proficient with MS Office.
Top Skills:
Cat 6Data Centre InfrastructureExcelMicrosoft OutlookMicrosoft WordMultimode Fibre OpticNetwork SwitchesServersStructured Cabling
Blockchain • Fintech • Payments • Consulting • Cryptocurrency • Cybersecurity • Quantum Computing
Manage employee relations by overseeing performance management processes, resolving conflicts, advising stakeholders, and ensuring adherence to employment laws and company policies.
Top Skills:
Microsoft Office Suite
Blockchain • Fintech • Payments • Consulting • Cryptocurrency • Cybersecurity • Quantum Computing
The Senior Analyst, Product Delivery manages onboarding documentation, conducts client sessions, and coordinates testing while improving project processes and stakeholder communication.
Top Skills:
Financial SystemsProject Management Software
What you need to know about the Charlotte Tech Scene
Ranked among the hottest tech cities in 2024 by CompTIA, Charlotte is quickly cementing its place as a major U.S. tech hub. Home to more than 90,000 tech workers, the city’s ecosystem is primed for continued growth, fueled by billions in annual funding from heavyweights like Microsoft and RevTech Labs, which has created thousands of fintech jobs and made the city a go-to for tech pros looking for their next big opportunity.
Key Facts About Charlotte Tech
- Number of Tech Workers: 90,859; 6.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lowe’s, Bank of America, TIAA, Microsoft, Honeywell
- Key Industries: Fintech, artificial intelligence, cybersecurity, cloud computing, e-commerce
- Funding Landscape: $3.1 billion in venture capital funding in 2024 (CED)
- Notable Investors: Microsoft, Google, Falfurrias Management Partners, RevTech Labs Foundation
- Research Centers and Universities: University of North Carolina at Charlotte, Northeastern University, North Carolina Research Campus
