We use essential cookies

Please Accept our Privacy Policy

Lead DevOps Engineer - AWS

Mastercard

Toronto, ON M4W3E2 • 9/22/2025

Engineering , Information Technology , Professional

Our Purpose

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re helping build asustainableeconomy where everyone can prosper. We support a wide range of digital payments choices, making transactionssecure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

Title and Summary

Lead DevOps Engineer - AWSOverview:
Mastercard is seeking a Lead DevOps Engineer to join our dedicated team focused on security services. Operating 100% in AWS, you will manage dozens of accounts that provide infrastructure and security services for the RiskRecon product.
The ideal candidate will bring deep AWS expertise, particularly in infrastructure, security, automation, deployment maturity, monitoring/alerting, and self-healing environments. In this role, you will collaborate closely with development teams and product management to deliver secure, scalable, and highly available solutions that support rapid product growth.
This is a hybrid position based in Toronto, Canada, requiring three days per week onsite.

Role:
• Design and manage AWS Networking, including VPCs, Subnetting, NAT, NACLs, Security Groups, VPC Endpoints, Transit Gateways, Routing Tables, and Network Interfaces.
• Implement and optimize Application and Network Load Balancers, Target Groups, Network Bridging, and Listener Routing.
• Configure and monitor WAF rules, Shield services, DDoS protection, and CloudFront distributions.
• Administer DNS services with Route 53.
• Deploy and maintain AWS EC2 instances, including Linux instances, spot, AMIs, volumes, snapshots, Auto Scaling Groups, and Launch Templates.
• Manage AWS ECS for containerized workloads, including Docker tasks and clusters.
• Oversee AWS EKS clusters, resources, and workloads.
• Configure and monitor CloudTrail and CloudWatch for infrastructure and security logging, monitoring, and alerting.
• Administer and secure AWS IAM roles, policies, resource policies, and SCPs.
• Automate and optimize Linux system administration through shell scripting, monitoring, and tuning.
• Leverage AWS CLI and Systems Manager to drive automation and administration tasks.
• Maintain compliance with AWS Config through auditing, reporting, and governance.
• Utilize Git, AWS CodeCommit, Terraform, RDS, KMS, HSM, and Workspaces to support infrastructure as code, data management, and security.

All About You:
• Enterprise-level IT experience, with a proven track record in designing, deploying, and securing large-scale infrastructure solutions.
• Hands-on AWS experience across multi-account environments, with expertise in automation, monitoring, security hardening, and performance optimization.
• Skilled in AWS networking, compute, and security, including VPCs, Subnetting, NAT, Security Groups, Load Balancers, WAF/Shield, CloudFront, Route 53, EC2, ECS, EKS, IAM, and Config.
• Experienced with Linux administration, shell scripting, system tuning, and security hardening.
• Proficient in automation and infrastructure as code using Terraform, AWS CLI, Systems Manager, and Git.
• Experienced in monitoring and observability with CloudWatch, CloudTrail, and third-party tools.
• Skilled in managing databases and security services (RDS, KMS, HSM, Workspaces)
• Proven ability to drive automation across infrastructure and deployment pipelines.
• Excellent communication and collaboration skills, with experience working closely with development teams, product managers, and security stakeholders.
• Ability to produce and maintain technical documentation, runbooks, and compliance reports for enterprise environments.
• Bachelor’s degree in Computer Science, Information Technology, Engineering, or related field, or equivalent professional experience.

#LI-NF1
#SecuritySolutionsMastercard is a merit-based, inclusive, equal opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. We hire the most qualified candidate for the role. In the US or Canada, if you require accommodations or assistance to complete the online application process or during the recruitment process, please contact and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly.

Corporate Security Responsibility


All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

  • Abide by Mastercard’s security policies and practices;

  • Ensure the confidentiality and integrity of the information being accessed;

  • Report any suspected information security violation or breach, and

  • Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.