Position Summary

At Marqeta, a Senior Security Engineer on the Detection and Response Engineering Team is an expert in Security Operations (SOC) and Incident Response practices. They possess a combination of troubleshooting, technical, and communication skills while exhibiting autonomy in prioritization and time management for their work.

Joining Marqeta’s Security Engineering means becoming part of a team who builds  technology that will be a force for good. A team committed to diversity, equality, and inclusion because of a conviction that every voice holds value.If you're excited to be part of a winning team, Marqeta is a great place to grow your career. We will ensure you are equipped with opportunities that align with your skills to do the best work of your career. You'll be glad you applied to Marqeta.

What You'll Do

• Respond to, investigate, and triage outages, security and privacy incidents
• Bring new ideas, designs, and tools to the table, and drive technical discussions
• Monitor and analyze the Security Incident and Event Management (SIEM) solution, triaging events and escalating as required
• Provide support to vulnerability management, security operations, intrusion detection/prevention (IDS/IPS), and cyber and physical threat analysis activities
• Assist in the evaluation, selection, and installation of security products
• Support internal security assessments
• Contribute to the automation of security operations activities
• Champion security across engineering

What We're Looking For

• Bachelor's degree with at least 5 years experience
• Minimum of 2-3 years of experience working in Tier 2 or Tier 3 SOC environments performing security incident investigation and security incident response
• Experience or knowledge of SIEM, security operations center(SOC), IDS/IPS, incident response activities required
• Hands-on experience with AWS cloud services, security tools, design, strategies and protocols
• Hands-on software development experience building automation and integration with Python or Golang
• Experience with XSOAR/Demisto
• Able to perform and prioritize a variety of tasks
• Good written and verbal communication skills are necessary

Nice-To-Haves

• Specialized degree in Security, Forensics, etc.
• Security Certifications a plus (ex: Security+ or GSEC)
• Experience with Infrastructure as Code (ex: Terraform, CloudFormation)
• Knowledge of ISO, NIST, PCI-DSS, SOC auditing principles.
• Experience with Kubernetes deployment and cluster management
• Experience with AWS Serverless application architectures and development (Lambda, Kinesis, API Gateway, SQS, SNS, S3)
• Experience with Backend DB architectures, Amazon RDS, DynamoDB, ElastiCache (Redis / Memcached)
• Experience in the FinTech / Payment industry