Description
Our Purpose
Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.
Title and Summary
Lead Network Engineer (Tier 3 Network support) Role OverviewThe Global Network Engineering team is responsible for: supporting and assisting in the design, architecture, implementation, security, and ongoing support of large-scale, multi-site, multi-vendor MPLS network environments.
As a Lead Network Engineer on the Tier 3 Network support team, you will be responsible for preparing high‑level (HLD) and low‑level (LLD) network designs to support both the expansion of existing Mastercard network environments and the build‑out of new greenfield sites.
This includes coordinating with internal stakeholders, engineering teams, and external vendors/service providers to ensure the network is designed, implemented, validated, and fully ready for go‑live.
The role involves end‑to‑end ownership across solution design, implementation guidance, testing, and operational readiness.
Work Arrangements:
• Hybrid work arrangements with minimally 3 days onsite.
• Regular hours with occasional need for standby support will be required especially during critical project implementation phases.
• Occasional travel might be required depending on business needs.
All about You
The ideal candidate should possess the following skills/competencies:
1. Core Networking (Routing & Switching)
• Strong experience with BGP, MP‑BGP, OSPF, EIGRP, IS-IS, etc. and advanced routing scenarios
• Expertise in Spine‑Leaf architectures
• Hands‑on SD‑WAN (Cisco, Viptela, Fortinet, etc.)
• MPLS, Traffic Engineering, and Segment Routing
• IPSec VPN, DMVPN, GRE, and secure overlay design
2. Security & Firewall Technologies
Expert‑level proficiency with major security platforms:
• Cisco (ASA / Firepower)
• Check Point
• Palo Alto Networks
• Fortinet / FortiGate
Including:
• Firewall policy design
• NAT, VPNs, segmentation
• Zero‑Trust and secure perimeter controls
3. Troubleshooting & Operations
• Strong ability to troubleshoot complex Layer‑2 / Layer‑3 network issues
• Packet traces, flow analysis, routing convergence, failover analysis
• Ability to triage multi‑vendor and multi‑domain issues
4. Communication & Coordination
• Clear communication with engineering teams, architects, vendors, and service providers
• Ability to translate complex designs into implementable steps
• Documentation of HLD/LLD, migration plans, test plans, and operational processes
• Strong stakeholder management across multiple regions and time zones
5. Network Automation & Scripting (Good to Have)
• Ansible experience for network automation, playbooks, config templating
• Python scripting for automation, device interaction, data parsing, and network state validation
• Familiarity with:
o YAML / Jinja2 templates
o REST APIs (e.g., Cisco DNA Center, Palo Alto, Checkpoint APIs)
o Git/GitHub for version control
6. Industry Certifications (Good to Have)
Relevant professional certifications that strengthen the candidate's credibility and technical depth:
• Cisco: CCNP, CCIE (Routing & Switching / Enterprise / Security)
• Checkpoint: CCSE, CCSA
• Palo Alto: PCNSE
• Fortinet: NSE4, NSE5, NSE7
Corporate Security Responsibility
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
Abide by Mastercard's security policies and practices;
Ensure the confidentiality and integrity of the information being accessed;
Report any suspected information security violation or breach, and
Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.
Apply on company website
Find Connections via Linkedin
