Dynamic Yield, a Mastercard company, is a global technology company in the payments industry, committed to connecting and powering an inclusive, digital economy. Our Technology Risk Management (TRM) organization is a critical business enabler and an industry leader in technology and security risk management. The Security Assurance team within TRM works directly with stakeholders, including regulators, customers, and Mastercard businesses, to demonstrate our unwavering compliance with security and technology promises and obligations. Given the highly regulated environment in India, a robust risk management program is essential. This includes navigating new and existing obligations such as audits of security processes and controls, tokenization practices, and data localization compliance. As a Risk Analyst, Regulatory and Customer Assurance , you will play a key role in supporting these crucial efforts, ensuring strong security and a sound operational environment. Responsibilities As a Risk Analyst, Regulatory and Customer Assurance, you will: Risk Management Framework/Governance: Assist in the preparation and maintenance of a consolidated control framework. Support the preparation of a centralized inventory of security and technology risk management requirements and assurance expectations. Risk Management Guidance/Direction: Support business owners in analyzing business and functional requirements stemming from regulations and customer contracts. Help identify relevant technology and security risk controls. Assist in assessing the impact of business, market, and regulatory landscape changes on existing controls and practices. Audit Support: Support customer and regulatory examinations by providing comprehensive documentation and evidence to demonstrate how Mastercard satisfies its obligations and commitments. Assist in completing customer and regulatory inquiries and requests for information. Prepare for periodic customer and regulator meetings and facilitate necessary reporting. Perform compliance monitoring and pre-audit readiness reviews to ensure preparedness. Manage the collection, sorting, and maintenance of the audit evidence repository and track all open items to closure. Assist with certification efforts (e.g., SOC, ISO, PCI) to maintain compliance. Assist in reviewing reports of related parties and review System Audit Reports (SARs) and System Audit Questionnaires (SAQs) to track ecosystem compliance. Experience & Qualifications Regulatory Knowledge (India Focus): Possess knowledge of relevant regulations (e.g., payment and settlement systems, tokenization, Data localization) specifically applicable to the India business environment. Risk Management Expertise: Have a strong understanding of technology and information security risk management practices. Audit Handling: Experience in handling regulatory and customer audits, conducting assessments, and a good understanding of governance, risk, and compliance practices. Advisory Skills: Be seen as a trusted advisor who understands business processes and can provide effective security consultation and advisory. Communication & Collaboration: Possess excellent communication and people management skills, along with proven stakeholder management experience. Team Player: Be a team player with a strong business and operations focus. Cultural Awareness: Be culturally aware, sensitive, and able to collaborate effectively with cross-regional teams. Framework Knowledge: Knowledge of Risk and Control Framework standards such as NIST, ISO, PCI-DSS, SOC . Legal & Policy Knowledge: Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and IT management (e.g., GDPR, FBA, CBA, PFMI, etc.). Mastercard Knowledge (Plus): Knowledge of Mastercard products and technology, security, and other risk management programs and practices is desired but not required.
