Marqeta is on a mission to change the way money moves. Were one of the earliest enablers of embedded finance, a market opportunity sized up in the trillions. Our card issuing platform provides unprecedented flexibility and control for companies to issue cards, authorize transactions, and manage payment operations in real time. Marqeta is powering the most well known brands in the new economy (Block, Cash App, Affirm, Instacart, Doordash, Uber, Walmart, etc). Today nearly 8 out of 10 Americans use a product powered by Marqeta every week. This is the opportunity of a lifetime to work with innovators around the world and unlock equitable financial access for all.
We are looking for a Staff Security Engineer with a passion for Network Security and a deep expertise in Cloud Security. The ideal candidate will be excited about an opportunity to heavily contribute to the design of architectural strategies and engineer solutions that enable Cloud and network security, Web Application Firewalls as well as DevSecOps integrations
We work Flexible First. This role can be performed remotely anywhere within the United States or from our Oakland office. Wed love for you to join us!
What Youll Do
Develop and implement security best practices for the entire infrastructure stack, including network, storage, and compute resources
Set up and support CI/CD process to automate micro services
Design, implement, and maintain secure network and VPN connections between Kubernetes clusters and other resources
Work closely with development teams to ensure that security and infrastructure requirements are included in the design and implementation of applications
Provide an end to end automated deployment of applications into different environments using aws resources like (code build, code pipeline, cloud watch events, docker, jenkins cloud formation/terraform templates, python scripting, sns appium, device farm, Sonarqube)
Take a role in the definition of relevant enterprise security architecture strategies, roadmaps, policies, and standards
Maintain and update relevant solutions and tooling to support new business requirements while ensuring a consistent, compliant, and central service delivery
Provide on-call rotation support to relevant services and tooling
Document operational procedures (such as those for deployments, breakglass plans etc.) as well as current state architecture and configurations
Provide subject matter expertise to project teams, and other audiences as needed
What Were Looking For
You have at least 3+ years of experience as an engineer with a Bachelors degree; or 2 years of experience with an advanced degree. Instead of a degree, 5+ years of relevant experience may suffice
Experience or knowledge about Payments or Financial Services
Experience with Payment Card Industry Data Security Standard (PCI DSS), Federal Information Processing Standard 140-3 (FIPS 140-3), Cryptographic Module Validation Program (CMVP), Common Criteria (ISO/IEC 15408) compliance requirements and implementation
Understanding of cloud computing architecture
Knowledge of AWS cloud security best practices and industry standards for web application security, including OWASP Top 10 vulnerabilities
Demonstrated experience creating positive team and cross-team dynamics
Strong analytical and problem-solving skills that enable navigation of complexity, uncertainty, risks and issues
Ability to work independently or with a team, under minimum supervision
Proven ability to apply technical concepts to solve complex business challenges
Ability to network with key stakeholders across multiple teams to influence outcomes through well-articulated thoughts, strong presentation skills, and pragmatic solutions
Understand ownership and support positive outcomes
Remain constructive under pressure, with a flexible working style
Nice-To-Haves
Security related certifications (e.g. CCSP/CCSK, GIAC, CISM, vendor specific security certifications by AWS/GCP/Azure)
Scripting and automation skills in Infrastructure-as-Code (IaC), development languages like Java, Go, Rust, Python, C, C++, or Ruby
Experience with AWS cloud services, containerization technologies such as Kubernetes, and IaaC tooling such as Terraform or Helm
Hands-on experience with monitoring, configuring rules, and enforcement using cloud security platforms such as CNAPP, CSPM, CWPP, CASB and CIEM
Your Manager
Krantikishor Bora Senior Manager, Product Security
Recruiter For This Role
Steve Pestorich, Senior Staff Recruiter
Typical Process
Application submission
Recruiter phone call
Hiring manager video call
Virtual Onsite consisting of 4-5, 45 min calls
Offer!
Compensation and Benefits
Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. Compensation is aligned according to three tiers within the United States:
National: A baseline tier that applies to most of the geographic territory of the United States.
Premium: Slightly elevated from the National tier, and oriented toward a narrower set of higher cost-of-living areas, such as Los Angeles CA and Seattle WA
Premium Plus: A tier for the most expensive working areas, like the San Francisco Bay area and New York City.
Visit this page or consult with a Recruiter to determine which tier would be applicable to you.
When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position is:
National: $88,125 $117,500
Premium: $99,150 $132,200
Premium Plus: $110,000 $146,850
We also believe in recognizing the contributions of our people. Thats why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.
Along with monetary compensation, Marqeta offers
Multiple health insurance options
Flexible time off take what you need
Retirement savings program with company contribution
Equity in a publicly-traded company and an Employee Stock Purchase Program
Family-forming benefits, fertility support, and up to 20 weeks of Parental Leave
Free therapy sessions, financial and professional coaching, and legal advice
Monthly stipend to support our remote work model
Annual development dollars to support our people growth and development