CrawlJobs Logo
Mastercard Logo Mastercard · IT - Administration

Lead Information Security Consultant

United Kingdom, London · Job Posted March 22, 2026
Apply Position
Job Link Share

Job Description

Mastercard are looking for a Lead Information Security Consultant based in either London, Dunstable or Harrogate. This is an exciting position within Vocalink which is building strategic products that are used across the organization. The successful candidate will strongly influence the security of products within Mastercard and work with many stakeholders to ensure security is built-in to our services.

Job Responsibility

  • Deliver a quality service within the enterprise
  • Contribute to maturing the Security Consultancy team
  • building skills, improving consistency and allowing scalability
  • Guide product and business teams on security best practices, and Corporate Security policies and procedures to ensure secure products are developed
  • Provide assurance that products are developed and deployed with the right balance of security to protect against threats to the business, built upon reliable processes and procedures
  • Develop and improve security standards and frameworks to meet the future needs of Mastercard

Requirements

  • Strong security mindset and knowledge of current best practices, common exploits and threat landscape
  • Broad security experience across a range of disciplines with demonstrable experience of implementing technology or business process solutions across software development, architecture, network security, assurance testing
  • Natural ability to negotiate with business to balance risk and security requirements with business opportunity, while ensuring ongoing compliance and regulatory needs
  • The ability to work with teams and manage expectations while building strong business relationships
  • Confident in providing technical guidance to team members for complex decisions including cryptography, network design, application security, data protection, identity and access management etc
  • Experience of security governance frameworks as well as producing required security outputs, including documentation and threat models over the course of projects to meet deadlines
  • Experience working with a range of security standards, such as ISO27001, NIST SP800-53, PCI-DSS etc
  • Motivated self-starter with agility, ability to manage ambiguity, deal with and anticipate change, while still meeting business objectives
  • Organisation of security assurance testing, using third party vendors
  • Natural ability to negotiate with business to balance risk with business opportunity, while ensuring ongoing compliance and regulatory needs
  • Proactive approach to helping develop the maturity of the security team’s capabilities

Nice to have

  • Relevant security certifications (CISSP, CISM, CSSLP, CISA)
  • Experience of threat modelling and security risk assessment
  • Experience of Privileged Access Management, Secrets Management, PKI, Cryptography or Security Logging
  • Experienced in the use of JIRA/Confluence
Mastercard - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Lead Information Security Consultant

8 matching positions

Senior Lead Information Security Office Consultant

As a Senior Lead Consultant in Capital One’s Cyber Information Security Office (...
Location
Location
United States , McLean
Salary
Salary:
229900.00 - 262400.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cyber security or information technology
  • At least 5 years of experience providing guidance and oversight of cyber security concepts
  • At least 4 years of experience performing cyber security risk assessments and cyber security architecture reviews
  • At least 4 years of experience with architecture, software design, networking or cloud infrastructure
Job Responsibility
Job Responsibility
  • Act as a central Information Security point of contact for a portfolio of customer servicing technology assets
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
What we offer
What we offer
  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits
  • Fulltime
Read More
Arrow Right

Senior Lead Information Security Office Consultant

At Capital One, you will help consult on initiatives, programs, and projects to ...
Location
Location
United States , Plano, Texas; McLean, Virginia
Salary
Salary:
Not provided
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 5 years of experience providing guidance and oversight of cybersecurity concepts
  • At least 5 years of experience performing security risk assessments or security architecture reviews
  • At least 5 years of experience with architecture, software design, networking, or cloud infrastructure
  • At least 4 years of experience with cloud security engineering
  • At least 4 years of experience in securing a public cloud environment
Job Responsibility
Job Responsibility
  • Act as a central Information Security point of contact for the Data Protection Service, Endpoint Security and Cyber Intelligence services
  • Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
  • Serve as an expert in Capital One’s Information Security capabilities, solutions, policies, procedures and standards
  • Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
  • Escalate and manage cyber security risk
  • Provide ad hoc support on special Information Security hot topics for the business
  • Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
  • Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
What we offer
What we offer
  • Performance based incentive compensation which may include cash bonus(es) and/or long term incentives (LTI)
  • Health, financial and other benefits that support your total well-being
  • Fulltime
Read More
Arrow Right

Information Security Lead

We’re hiring a Lead of Information Security, reporting to the VP of Technical Op...
Location
Location
United States , Philadelphia
Salary
Salary:
Not provided
Proscia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in information security, including direct experience improving, and contributing to GRC programs
  • Proven expertise in regulatory frameworks such as ISO 27001, SOC 2, GDPR, HIPAA, FedRAMP, TX-RAMP, StateRAMP or similar
  • Hands-on experience with vulnerability management tools, incident response, and security audits
  • Experience embedding security into software development lifecycles—DevSecOps principles applied in practice
  • Experience selecting, implementing, and managing security tooling (e.g., XDR, SIEM, endpoint, code scanning, etc.)
  • Exceptional communication and influencing skills across technical and non-technical teams
  • A high degree of autonomy and ownership—comfortable leading cross-functional efforts and prioritizing in a dynamic environment
  • You already use AI tools in your security work—for policy drafting, threat analysis, log review, control validation, or however it fits your practice
  • Experience with cloud-native environments (AWS preferred)
  • Experience building with or on top of LLMs, AI agents, or agentic pipelines
Job Responsibility
Job Responsibility
  • Manage and evolve vulnerability management— tooling, reporting, and remediation governance
  • Serve as a consultative security leader for Engineering, Product, and Customer teams—governing system designs, architecture, and implementation through a security-first lens
  • Implement AI native tooling to improve detection and response capabilities without incurring an increased demand on resources
  • Partner with Engineering to implement developer-friendly security tools that improve security posture and reduce compliance burdens without slowing velocity
  • Oversee incident response preparation, processes, and execution—ensuring coordinated action, effective communication, and the kind of thorough post-incident analysis that prevents the same problem twice
  • Under the direction VP, TechOps, improve the Proscia Information Security Program, with a focus on governance, risk, and compliance (GRC) across the Concentriq suite of applications and Proscia’s business applications
  • Contribute to security policy development across regulated and non-regulated markets—implementing agentic workflows where it accelerates your research and stress-testing, iterating with stakeholders, and maintaining the rigor and compliance standards our customers expect
  • Influence and execute on the company’s regulatory roadmap—seeking new certifications and frameworks (e.g., ISO 27001, SOC 2, HITRUST) in response to customer and market demands
  • Enable other teams to answer security-related questions from customers, prospects, and partners providing expert information security guidance
  • Anticipate and adapt to industry and regulatory trends, including how AI is reshaping both the threat landscape and the defender’s toolkit—and surface emerging requirements before they become urgent
What we offer
What we offer
  • Competitive pay
  • Savings options
  • Schedule options
  • Insurance options that promote long-term health and personal growth
  • Office environment designed for creativity and agility with walls as notepads and couches for collaboration
  • Located in the heart of Philadelphia with views of the city
  • Fulltime
Read More
Arrow Right

Lead Information Security Engineer - Python Full Stack Developer

Wells Fargo is seeking a Lead Information Security Engineer.
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 29, 2026
Flip Icon
Requirements
Requirements
  • 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 5+years of experience in Software Engineering, Data Engineering, or a backend development python development and backend architecture
  • Expert level knowledge of Python internals, concurrency (Asyncic/Multiprocessing) and building high performance, memory efficient applications
  • Proven expertise in designing and governing enterprise grade CI/CD pipelines and must manage complex code promotions across multi-region environments using GIT hub actions, Git Lab, or Azure DevOps
  • Extensive hands-on experience with Apache Kafka (or Confluent), including cluster tuning, schema registry management and designing event driven architectures
  • Deep experience with Grafana and Prometheus for full stack observability – defining SLIs/SLOs, custom exporters and complex alerting logic
  • Strong understating of the end-to-end ML life cycle, specifically in the deployment and scaling of models using frameworks like BentoML, Ray, or KServe
  • Experience in SQL, data modelling, ETL/ELT pipelines, and large-scale data processing
  • Good to have knowledge in Terraform, Palumi and container orchestration – Kubernetes, EKS
Job Responsibility
Job Responsibility
  • Lead computer security incident response activities for highly complex events
  • Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
  • Provide security consulting on large projects for internal clients to ensure conformity with corporate information, security policy, and standards
  • Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
  • Review and correlate security logs
  • Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
  • Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
  • Collaborate and influence all levels of professionals including managers
  • Lead a team to achieve objectives
  • Lead the development of mission critical python services, ensuring high availability and low latency performance
  • Fulltime
Read More
Arrow Right

Lead Information Security Engineer - Purple Team

Wells Fargo is seeking a Lead Information Security Engineer.
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 25, 2026
Flip Icon
Requirements
Requirements
  • 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
Job Responsibility
Job Responsibility
  • Lead computer security incident response activities for highly complex events
  • Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
  • Provide security consulting on large projects for internal clients to ensure conformity with corporate information, security policy, and standards
  • Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
  • Review and correlate security logs
  • Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
  • Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
  • Collaborate and influence all levels of professionals including managers
  • Lead a team to achieve objectives
  • Lead or participate in offensive security testing in a purple team capacity, with the goal to aid security content development and/or verification by other teams
  • Fulltime
!
Read More
Arrow Right

Information Security Consultant

North is looking to appoint a customer facing Information Security Consultant. T...
Location
Location
United Kingdom , Camberley
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field
  • Professional certifications such as CISSP, CISM, NCSC CCP or CCISO are highly desirable
  • Extensive experience in information & cyber security with demonstrable experience working with Operational Technology + Information Technology
  • Strong knowledge of cybersecurity frameworks, standards, and best practices: experience applying Secure by Design &/or Cyber Assessment Framework is highly desirable
  • A strong & demonstrable understanding of how to combine technology, policy & process, risk management and user education in order to minimise cyber-security risks
  • Excellent problem-solving, analytical, and process focused skills set
  • Strong communication, interpersonal and senior stakeholder management skills
Job Responsibility
Job Responsibility
  • Develop, and continually enhance, North’s customer-facing cyber security framework which will be compatible with “Secure by Design” and CAF (Cyber Assessment Framework) principles, and any other relevant regulations and industry standards
  • Ensure and assure that North’s customer deployments comply with North’s cyber security framework, with industry regulations and with any customer security accreditations & requirements – including GDPR, ISO27001 and Cyber Essentials plus
  • Lead customer-facing cyber-security audit &/or assurance exercises together with any follow-up programmes
  • Work as a core pre-sales member of selective large &/or strategic bids ensuring that customers’ tender requirements relating to cyber-security are fully understood and addressed, and that customers’ fully appreciate the focus and importance that North places on cyber-security
What we offer
What we offer
  • Generous holiday entitlement
  • Contributory pension scheme
  • Healthcare and wellbeing programmes
  • Professional development and training opportunities
  • Flexible working arrangements subject to business needs
  • Employee assistance programmes
  • Fulltime
Read More
Arrow Right

Principal Information Security Consultant

Mastercard is looking for a Principal Information Security Consultant based in L...
Location
Location
United Kingdom , London; Dunstable; Harrogate
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong security mindset and deep knowledge of best practices and threats
  • Broad and mature experience across software, architecture, network, cloud, and assurance
  • Ability to negotiate with senior stakeholders
  • Strong interpersonal and relationship‑building skills
  • Authority in complex technical decision‑making
  • Confidence in providing technical guidance on complex decisions (cryptography, network design, application security, data protection, IAM, etc.)
  • Experience producing high‑quality documentation and threat models
  • Familiarity with ISO 27001, NIST SP 800‑53, PCI DSS, etc.
  • Self‑starter comfortable with ambiguity
  • Experience with third‑party assurance and vendor interaction
Job Responsibility
Job Responsibility
  • Lead high‑impact security consultancy engagements across the enterprise
  • Shape and mature the Security Consultancy function
  • Act as a senior delegate for the Director of Information Security Engineering
  • Provide authoritative guidance to engineering, product, and architecture teams
  • Lead assurance for high‑risk or complex systems
  • Develop, refine, and promote security standards and frameworks
  • Mentor Lead‑level consultants
  • Provide strategic direction on complex technical domains such as cryptography, IAM, network, data and application security
  • Fulltime
Read More
Arrow Right

Information Security Consultant

PGI is seeking experienced Information Security Consultants to join our contract...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
pgitl.com Logo
Protection Group International
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven people and relationship management skills
  • Demonstrable experience providing Information Assurance consultancy
  • Experience in or knowledge of the PCI DSS standard, NIST CSF, DORA, GDPR/DPA
  • ISO 27001 Lead Auditor, ISO 27001 Lead Implementer, Business Continuity or Cloud Security accreditations are highly desirable
  • Experience in conducting risk assessments and forming risk management policies
  • Excellent verbal and written communication skills, with the ability to present to clients and business stakeholders
  • A positive approach to problem-solving and possesses the ability to work smart and collaboratively to prioritise and set deadlines
Job Responsibility
Job Responsibility
  • Engaging confidently with clients relating to solving Information Security Governance, Risk, and Compliance problems
  • Providing hands-on compliance and consultancy services across a range of requirements for clients, such as ISO 27001, business continuity, data protection, DORA, or other regulatory compliance needs, including IASME Cyber Essentials
  • Support colleagues in delivery by also assisting with: Information Security Management System (ISMS) design and implementation
  • GDPR gap assessments and implementation support
  • PCI DSS scoping, gap assessments, implementation guidance, and compliance reporting
  • Maturity Assessments
  • Third-party / supplier assurance reviews
  • Providing expertise to enhance our international capacity-building offer and value
  • Contribute towards the maintenance of PGI’s own accreditations, including ISO 27001, ISO 9001 and business continuity as well as compliance with data protection regulations
  • Maintaining your own continuing professional development, keeping up to date with security industry trends and best practices
Read More
Arrow Right