Our Purpose

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

Title and Summary

Lead Technical Program Manager:

Job Description – Lead TPM (L6)
Who is Mastercard?
We work to connect and power an inclusive, digital economy that benefits everyone, everywhere, by making transactions safe, simple, smart, and accessible. Using secure data and networks, partnerships, and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that is respectful of individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation, and delivers better business results.

Technology at Mastercard:

What we create today will define tomorrow. Revolutionary technologies that reshape the digital economy to be more connected and inclusive than ever before. Safer, faster, and more sustainable. And we need the best people to do it. Technologists who are energized by the challenges of a truly global network. With the talent and vision to create the critical systems and products that power global commerce and connect people everywhere to the vital goods and services they need every day.
The Security TPM team leads highly visible, multiyear, enterprise security initiatives by translating strategy and prioritized road map capabilities into disciplined execution across platforms, domains, and global teams to deliver secure software, data protection, encryption, and risk reduction at scale.
We are hiring a Lead Technical Program Manager to own project execution, anticipate risk, and ensure predictable delivery of critical security outcomes at scale.

• About the role
• Drives complex security outcomes managing projects end-to-end, operating seamlessly at both strategic and execution levels to translate enterprise objectives into measurable delivery results across multiple teams, services, and integrations.
• Partners with cross functional delivery teams to establish effective operating models, proactively identify risks and dependencies, and intervene early to maintain alignment between plans, outcomes, and constraints.
• Drives strong, disciplined project plans and leads structured delivery reviews, applying root cause insights to improve execution rigor, risk management, and overall program outcomes.
• Connects the dots across initiatives to identify systemic risks, inefficiencies, and optimization opportunities, applying systems thinking to inform priorities and influence program level decisions.
• Clearly articulates scope, timelines, dependencies, owners, risks, and mitigations, delivering concise, audience appropriate communication and status reporting to delivery teams and senior leadership.
• Serves as the trusted first point of contact and single source of truth for assigned teams or business lines, providing accurate, data driven insights that enable timely and well-informed decisions.
• Demonstrates deep understanding of business strategy, product design, and domain execution to be credible and influential, balancing near term delivery needs with long term strategic intent.
  All about you

NICE Framework References:

Mastercard Corporate Security Roles have been aligned with the NICE framework (National Initiative for Cybersecurity Education). For this role the NICE Work Roles most closely aligned are:

• Program Manager (OG-WRL-010)

• Secure Project Management (OG-WRL-011)

• Security Control Assessment (OG-WRL-012)

• Cybersecurity Instruction (OG-WRL-005)

• 7+ years of experience leading complex technical programs and projects, including security or risk-focused initiatives, across multiple teams and enterprise integrations.

• Proven ability to operate autonomously in ambiguous environments, demonstrating strong critical thinking, ownership, and proactive execution (hindsight + foresight).

• Strong project planning and delivery discipline: break down complex problems, build integrated plans (milestones, dependencies, critical path), and drive predictable outcomes.

• Demonstrated experience in hybrid delivery models (Agile, SAFe, Waterfall), adapting the approach based on program context, risk posture, and regulatory requirements.

• Working knowledge of cybersecurity concepts and domains such as secure SDLC, encryption/data protection, identity and access management, vulnerability management, and risk management.

• Ability to translate business strategy, control requirements, and risk objectives into clear technical requirements, execution plans, and measurable delivery outcomes.

• Data-driven decision makers with experience defining success metrics, reporting progress, and communicating impact (risk reduction, control coverage, delivery performance).

• Skilled at driving cross-functional alignment and trade-off decisions by balancing business goals, security risk, platform strategy, customer experience, and maintainability.

• Track record of proactively identifying blockers, risks, and dependencies; driving resolution through influence, escalation, and structured problem solving.

• Strong stakeholder management and executive communication skills, able to represent program status, risks, and decisions with clarity and credibility.

• Proficiency with Microsoft productivity and project management tools, including Microsoft Project (MPP), Excel, PowerPoint, Teams, Share Point, JIRA and AI tooling.

• Familiarity with emerging technologies (including AI) and the associated security, governance, and risk considerations in an enterprise environment.

• Demonstrated ability to build trusted relationships and influence dependent teams while earning respect through credibility, consistency, and delivery excellence.

Preferred Qualifications:

• Experience delivering security programs in regulated environments (financial services, payments, healthcare, or similar).
• Experience with security governance, control frameworks, or audit/assessment of readiness (e.g., policy-to-implementation traceability).
• Familiarity with security tooling and operational metrics (e.g., vulnerability of SLAs, encryption coverage, SDLC control adoption).
• Relevant certifications (preferred, not required): PMP, PMI-ACP, SAFe, CISSP/CCSP, CISM, or equivalent.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard’s security policies and practices;

• Ensure the confidentiality and integrity of the information being accessed;

• Report any suspected information security violation or breach, and

• Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.