Lead Platform Engineer

cure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments, and businesses realize their greatest potential.
Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. With connections across more than 210 countries and territories, we are building a sustainable world that unlocks priceless possibilities for all.

Overview
The Operations Automation Program seeks a Lead Platform Engineer to advance our infrastructure and platform automation strategy through innovation and effective problem-solving. This role focuses on analyzing, coding, and delivering software and platform solutions.
The program supports Mastercard by automating infrastructure, services, and application delivery with efficient tools and processes.

Role Summary
The Lead Platform Engineer is a hands on technical expert responsible for designing, building, and maintaining automation frameworks, platform services, and Infrastructure as Code (IaC) capabilities that power large scale, hybrid infrastructure environments. This role focuses on engineering reusable automation patterns, enabling self service infrastructure delivery, and improving reliability, consistency, and velocity across cloud and on prem platforms. The ideal candidate brings deep experience with Terraform or Ansible, strong DevOps engineering skills, and a passion for building scalable automation systems-not performing manual operations.

Key Responsibilities
• Design, build, and maintain Infrastructure as as Code solutions using Terraform or Ansible to automate provisioning across cloud and on prem environments.
• Develop reusable modules, playbooks, and automation libraries that standardize infrastructure deployment patterns.
• Engineer and enhance platform services, including CI/CD pipelines, secrets management, artifact repositories, and configuration management systems.
• Implement automated testing, validation, and security scanning for IaC and platform components.
• Build and maintain self service automation workflows, enabling application and infrastructure teams to consume services through APIs, catalogs, or pipelines.
• Integrate automation with cloud platforms, virtualization systems, network/security appliances, and enterprise tooling.
• Implement drift detection, compliance checks, and automated remediation workflows.
• Collaborate with cloud, network, security, and SRE teams to define automation standards and best practices.
• Troubleshoot complex infrastructure, automation, and CI/CD issues across hybrid environments.
• Contribute to documentation, architectural diagrams, and engineering design reviews.
Required Qualifications
• 5-8+ years of experience in DevOps, platform engineering, cloud engineering, or infrastructure automation roles.
• Strong hands on experience with Terraform or Ansible (preferably both).
• Solid understanding of cloud platforms (AWS, Azure, or GCP) and on prem infrastructure (VMware, Linux, networking fundamentals).
• Experience building and maintaining CI/CD pipelines using GitHub Actions, GitLab, Jenkins, or Azure DevOps.
• Strong scripting or programming skills (Python, Bash, Go, or similar).
• Experience with configuration management, secrets management, and artifact repositories.
• Familiarity with GitOps workflows and declarative infrastructure patterns.
• Strong troubleshooting skills across infrastructure, automation, and platform layers.
Preferred Qualifications
• Experience developing or extending Terraform modules or custom providers.
• Experience with Ansible Collections, dynamic inventories, or Ansible Tower/Ansible Automation Platform.
• Experience with policy as code tools (OPA, Conftest, Sentinel).
• Experience with monitoring, observability, and logging platforms.
• Exposure to SRE practices and reliability engineering.
Core Technical Skills (Competency Areas)
Infrastructure as Code
• Terraform (modules, workspaces, state management)
• Ansible (playbooks, roles, collections, automation controller)
Cloud & Hybrid Infrastructure
• VMware, Linux, virtualization, hybrid networking
DevOps & CI/CD
• Pipeline design and automation
• Automated testing, linting, and security scanning
• Git workflows and branching strategies
Automation & Scripting
• Python, Bash, Go, or PowerShell
• API integration and automation tooling
Platform Engineering
• Self service automation
• Secrets management
• Configuration management
• Observability and operational tooling
Role Scope & Collaboration
• Works within a platform engineering or DevOps organization to build automation capabilities used across the enterprise.
• Collaborates closely with:
oCloud engineering
oNetwork and security teams
oSRE and operations
oApplication development teams
oArchitecture and governance groups
• Acts as a subject matter expert for IaC, automation patterns, and DevOps tooling.
• Contributes to engineering standards, reusable patterns, and platform roadmaps.

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

• Abide by Mastercard's security policies and practices;
• Ensure the confidentiality and integrity of the information being accessed;
• Report any suspected information security violation or breach, and
• Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.