Marqeta

Marqeta

Marqeta is a pioneer in modern card issuing and payment solutions, offering businesses instant card issuance and payment processing through their innovative open API platform.

Diversified Financial Services
251-1K
Founded 2010

Description

  • Lead product security engineering for the payment platform, including threat modeling, security architecture reviews, secure SDLC practices, and API security.
  • Build and mature the AI security program by developing genAI controls, securing ML pipelines, and supporting model evaluations with the Model Risk Office.
  • Provide technical oversight for infrastructure and enterprise security, including endpoint protection, network security, VPN, and corporate security controls.
  • Establish coherent security architecture standards across product, cloud infrastructure, and corporate environments.
  • Develop self-service security tooling and developer guardrails that improve security without adding unnecessary friction.
  • Lead security strategy and risk assessments for AI/ML systems, including customer-facing AI products, fraud detection models, LLM integrations, and recommendation systems.
  • Assess AI/ML model architectures, training pipelines, inference endpoints, and deployment infrastructure for security risks.
  • Evaluate and operationalize AI-powered security tools to improve security operations.
  • Partner with Product Security, Infrastructure Security, Security Operations, engineering, data science, compliance, and the Model Risk Office.
  • Mentor security engineers and cross-functional teams while communicating risks and strategy to executive and board-level audiences.

Requirements

  • 10+ years of security engineering experience with demonstrated technical leadership across multiple security domains, or an equivalent combination of education and experience.
  • Deep product security expertise in threat modeling, security architecture review, secure code review, API security, authentication/authorization design, and secure SDLC practices.
  • Experience with or strong interest in AI/ML security, including adversarial attacks, model poisoning, prompt injection, data privacy, and AI supply chain threats.
  • Broad security fluency across infrastructure and enterprise security, including endpoint protection, network security, identity, and cloud security.
  • Experience working in cloud-native environments, with AWS preferred, and familiarity with AI/ML services such as Bedrock and SageMaker.
  • Proven ability to build security frameworks, tools, and programs from the ground up.
  • Strong programming skills in at least one language such as Python, Java, or Go, plus the ability to read and review code across multiple languages.
  • Experience with security assessment methodologies and risk management frameworks.
  • Working knowledge of compliance and control frameworks relevant to financial services, including PCI DSS, SOX, SOC2, and NIST CSF.
  • Ability to communicate complex security risks to both technical and executive audiences.
  • Financial services or fintech experience strongly preferred.
  • Experience securing payment processing systems, card issuing platforms, fraud detection models, or transaction monitoring infrastructure.
  • Hands-on experience with LLM security, including prompt injection mitigation, output filtering, RAG security, and agent security patterns.
  • Experience with enterprise security platforms such as EDR, SIEM, identity providers, and network security tools.
  • Experience with ML frameworks such as PyTorch or TensorFlow, or a background in data science or machine learning engineering.
  • Knowledge of AI governance, model risk management practices, and emerging AI regulatory frameworks such as the EU AI Act and NIST AI RMF.
  • Background in supply chain security, CI/CD pipeline security, or secure software composition analysis.
  • Experience with privacy-preserving ML techniques such as differential privacy, federated learning, or secure multi-party computation.
  • Experience with Kubernetes, containerized workloads, and Infrastructure as Code such as Terraform.
  • CISSP, CCSP, CISA, or another relevant security certification is preferred.
  • Experience building and scaling security programs in high-growth environments is preferred.

Benefits

  • Base salary range of $218,300–$272,900 for National, $236,200–$295,300 for Premium, and $256,800–$321,000 for Premium Plus work locations.
  • Annual bonuses for eligible employees.
  • Multiple health insurance options.
  • Flexible time off with a take-what-you-need policy.
  • Retirement savings program with company contribution and after-tax contributions.
  • Equity in a publicly traded company plus an Employee Stock Purchase Program.
  • Family-forming benefits, fertility support, and up to 20 weeks of parental leave.
  • Free therapy sessions, financial and professional coaching, legal advice, a monthly remote-work stipend, and annual development dollars.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Senior Go Security

Coforge 10K-50K IT Services

Coforge is hiring a Senior Go Security engineer in Costa Rica to build and improve a cybersecurity platform’s backend and cloud-native services.

BDD CI/CD Cybersecurity Docker GCP Generative AI GitOps Go gRPC Kafka Kubernetes LLM Microservices Penetration Testing REST API
17 hours, 11 minutes ago

Senior Infrastructure & Security Engineer

nuview.space 1-10 Wireless Telecommunication Services

NuView IT is seeking a Senior Network/Cloud/Systems Engineer to provide Tier 3 technical delivery, escalation support, and security-focused infrastructure services across client environments.

Active Directory Azure CrowdStrike HIPAA Windows Server
17 hours, 11 minutes ago

Senior Go Security

Coforge 10K-50K IT Services

Coforge is hiring a Senior Go Security engineer in Peru for a remote role focused on building and delivering backend systems for a cybersecurity platform.

BDD CI/CD Cybersecurity Docker GCP Generative AI GitOps Go gRPC Kafka Kubernetes LLM Microservices Penetration Testing REST API
17 hours, 26 minutes ago

Network Security Operations Engineer

Coforge 10K-50K IT Services

Hands-on Network Security Engineer role at a company operating enterprise firewall, proxy, and VPN infrastructure to keep security controls reliable, compliant, and continuously optimized.

Active Directory Ansible Cisco Fortinet IDS IPS Palo Alto SIEM Terraform TLS
17 hours, 26 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers