Lead, Platform Engineering in Warsaw, Masovian Voivodeship

Description

Our Purpose

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

Title and Summary

Lead, Platform Engineering Overview:

Mastercard is seeking a highly skilled Lead Architect to spearhead the design, architecture, and implementation of Content Delivery Network (CDN) solutions across global Mastercard applications. This role demands deep expertise in CDN technologies, particularly Akamai and Cloudflare, with a strong emphasis on security configuration, threat mitigation, and performance optimization. The ideal candidate will be a strategic thinker with hands-on experience in designing and securing web applications at the edge and driving innovation in content delivery.

Key Responsibilities:
• Lead the architecture, design, and deployment of CDN solutions using Akamai and Cloudflare, ensuring scalability, performance, and security.
• Define and implement CDN security policies, including WAF rulesets, bot mitigation strategies, rate limiting, token authentication, and TLS configurations.
• Develop and maintain a comprehensive CDN and edge security strategy to protect Mastercard's web assets from evolving threats.
• Collaborate with security teams to integrate CDN-based protections with broader enterprise security frameworks and incident response processes.
• Conduct risk assessments and threat modeling for CDN configurations and edge services.
• Monitor and tune CDN configurations for performance, availability, and security, including real-time traffic analysis and anomaly detection.
• Provide technical leadership and mentorship, fostering a culture of security-first design and continuous improvement.
• Stay current with industry trends, zero-day threats, and CDN vendor updates, and proactively recommend enhancements.
• Troubleshoot and resolve complex issues related to CDN performance, security breaches, and misconfigurations.
• Communicate effectively with stakeholders, including developers, security teams, and business leaders, to align CDN strategies with organizational goals.
________________________________________
Qualifications:
• Bachelor's or Master's degree in Computer Science, Information Technology, or a related field.
• 5+ years of experience in CDN Architecture and Security, with a strong focus on Akamai and/or Cloudflare.
• Proven expertise in edge security controls, including WAF, bot protection, DDoS mitigation, client-side security, and secure token services.
• Deep understanding of Layer 7 traffic management, DNSSEC, SSL/TLS, OWASP Top 10, and zero trust principles.
• Experience with web performance optimization, including caching strategies, image optimization, and adaptive delivery.
• Familiar with use of AI/ML tooling in optimizing and improving the service delivery and performance.
• Strong grasp of OSI layers, Metwork protocols, HTTP/HTTPS, TLS handshakes, and secure content delivery best practices.
• Familiarity with DevSecOps practices, CI/CD pipelines, and infrastructure-as-code for CDN configurations is a plus.
• Excellent communication and leadership skills, with the ability to influence and drive change across technical and non-technical teams.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard's security policies and practices;

• Ensure the confidentiality and integrity of the information being accessed;

• Report any suspected information security violation or breach, and

• Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

 Apply on company website