Remote Staff Security Engineer - Platform Engineer

Description:

• We are seeking a Senior Security Platform Engineer to join our team.
• This role is responsible for the creation and management of a platform to report on security weaknesses, threats, and posture, as well as developing a broad and holistic inventory capability across the company.
• You will help build a sophisticated automated vulnerability and compliance program from the ground up.
• You will build integrations and provide deep insight through metrics and dashboards across the entirety of the Marqeta security tool stack.
• You will drive the creation of an automated asset and service security posture management program.
• This role is remote-first and can be performed from anywhere in the U.S. or from our Oakland office.
• You will have the chance to work on security remediation, application security, security compliance, and vulnerability management programs.
• You will develop services and automations to enable data integrations and organizational security dashboards.
• You will orchestrate ticketing of vulnerabilities across Marqeta and automate the assessment of service and asset security aligned to our common control framework.
• You will contribute to the general operations of the Infrastructure Security Team.

Requirements:

• A minimum of 5 years related experience with a Bachelor’s degree; or 3 years and a Master’s degree; or a PhD with 2 years’ experience; or equivalent combination of related education and work experience is required.
• Experience with security remediation, application security, security compliance, and vulnerability management programs is necessary.
• You must have experience developing services and automations to enable data integrations, such as creating API shims and managing data normalization.
• Significant experience with a programming language such as Go, Python, or Java is required.
• Experience managing significant vulnerability data sources in a cloud-native environment is essential.
• You should have experience creating a security data model for the enterprise and developing organizational security dashboards.
• Familiarity with compliance and control frameworks such as PCI DSS 4.0, SOC2, ISO27K1, GDPR, NIST CSF, NIST SSDF is required.
• Experience with AWS development and cloud-native operations is necessary.
• Nice to have: Experience with Kubernetes, IaC tools such as Terraform, and certifications like CISSP, CCSP, CISA are a plus.
• Experience with AWS cloud services security design, strategies, and protocols is also beneficial.

Benefits:

• Marqeta is a Flex First company, allowing you to choose your best working environment, whether from home or at a company office.
• Compensation is aligned according to three tiers within the United States, with a base salary range of $121,000 - $203,000 depending on location.
• Eligible employees receive annual bonuses based on individual performance and the success of the company.
• Multiple health insurance options are available.
• Flexible time off is offered, allowing you to take what you need.
• A retirement savings program with company contribution is provided.
• Employees receive equity in a publicly-traded company and can participate in an Employee Stock Purchase Program.
• Family-forming benefits, fertility support, and up to 20 weeks of Parental Leave are included.
• Free therapy sessions, financial and professional coaching, and legal advice are available.
• A monthly stipend to support the remote work model is provided.
• Annual “development dollars” are allocated to support employee growth and development.