RemoteLeaf Logo
Log in Sign up

Principal Security Engineer, Product & AI

2 weeks, 6 days ago
United States
Full-time
Lead
Security Engineer
Cybersecurity
AWS CI/CD Generative AI Go Java Kubernetes Machine Learning Network Security Python PyTorch SIEM TensorFlow Terraform
Apply Now
Marqeta

Marqeta

Marqeta is a pioneer in modern card issuing and payment solutions, offering businesses instant card issuance and payment processing through their innovative open API platform.

Diversified Financial Services
251-1K
Founded 2010
View All Jobs 35

Description

  • Lead product security engineering for the payment platform, including threat modeling, security architecture reviews, secure SDLC practices, and API security.
  • Build and mature the AI security program by developing genAI controls, securing ML pipelines, and supporting model evaluations with the Model Risk Office.
  • Provide technical oversight for infrastructure and enterprise security, including endpoint protection, network security, VPN, and corporate security controls.
  • Establish coherent security architecture standards across product, cloud infrastructure, and corporate environments.
  • Develop self-service security tooling and developer guardrails that improve security without adding unnecessary friction.
  • Lead security strategy and risk assessments for AI/ML systems, including customer-facing AI products, fraud detection models, LLM integrations, and recommendation systems.
  • Assess AI/ML model architectures, training pipelines, inference endpoints, and deployment infrastructure for security risks.
  • Evaluate and operationalize AI-powered security tools to improve security operations.
  • Partner with Product Security, Infrastructure Security, Security Operations, engineering, data science, compliance, and the Model Risk Office.
  • Mentor security engineers and cross-functional teams while communicating risks and strategy to executive and board-level audiences.

Requirements

  • 10+ years of security engineering experience with demonstrated technical leadership across multiple security domains, or an equivalent combination of education and experience.
  • Deep product security expertise in threat modeling, security architecture review, secure code review, API security, authentication/authorization design, and secure SDLC practices.
  • Experience with or strong interest in AI/ML security, including adversarial attacks, model poisoning, prompt injection, data privacy, and AI supply chain threats.
  • Broad security fluency across infrastructure and enterprise security, including endpoint protection, network security, identity, and cloud security.
  • Experience working in cloud-native environments, with AWS preferred, and familiarity with AI/ML services such as Bedrock and SageMaker.
  • Proven ability to build security frameworks, tools, and programs from the ground up.
  • Strong programming skills in at least one language such as Python, Java, or Go, plus the ability to read and review code across multiple languages.
  • Experience with security assessment methodologies and risk management frameworks.
  • Working knowledge of compliance and control frameworks relevant to financial services, including PCI DSS, SOX, SOC2, and NIST CSF.
  • Ability to communicate complex security risks to both technical and executive audiences.
  • Financial services or fintech experience strongly preferred.
  • Experience securing payment processing systems, card issuing platforms, fraud detection models, or transaction monitoring infrastructure.
  • Hands-on experience with LLM security, including prompt injection mitigation, output filtering, RAG security, and agent security patterns.
  • Experience with enterprise security platforms such as EDR, SIEM, identity providers, and network security tools.
  • Experience with ML frameworks such as PyTorch or TensorFlow, or a background in data science or machine learning engineering.
  • Knowledge of AI governance, model risk management practices, and emerging AI regulatory frameworks such as the EU AI Act and NIST AI RMF.
  • Background in supply chain security, CI/CD pipeline security, or secure software composition analysis.
  • Experience with privacy-preserving ML techniques such as differential privacy, federated learning, or secure multi-party computation.
  • Experience with Kubernetes, containerized workloads, and Infrastructure as Code such as Terraform.
  • CISSP, CCSP, CISA, or another relevant security certification is preferred.
  • Experience building and scaling security programs in high-growth environments is preferred.

Benefits

  • Base salary range of $218,300–$272,900 for National, $236,200–$295,300 for Premium, and $256,800–$321,000 for Premium Plus work locations.
  • Annual bonuses for eligible employees.
  • Multiple health insurance options.
  • Flexible time off with a take-what-you-need policy.
  • Retirement savings program with company contribution and after-tax contributions.
  • Equity in a publicly traded company plus an Employee Stock Purchase Program.
  • Family-forming benefits, fertility support, and up to 20 weeks of parental leave.
  • Free therapy sessions, financial and professional coaching, legal advice, a monthly remote-work stipend, and annual development dollars.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Anduril Industries

Senior Cloud Security Engineer

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring a Security Engineer to build and operate defensive controls that protect the infrastructure supporting its advanced defense technology products.

United States Full-time Senior Security Engineer
$129k-$220k
AWS AWS CDK Azure CI/CD GCP Go Linux Network Security Python Rust Secrets Management Terraform
6 hours, 1 minute ago
Kyivstar

SOC Engineer

Kyivstar 1K-5K Wireless Telecommunication Services

Kyivstar.Tech is hiring a SOC Engineer to strengthen its Security Operations team by improving monitoring, threat detection, and incident response processes for the company’s IT environment.

Ukraine Full-time Mid Level Security Engineer
Active Directory Cybersecurity Elasticsearch Linux SIEM Splunk
7 hours, 39 minutes ago
Eleos

Senior Security Engineer

Eleos 51-250 IT Services

Eleos Health is hiring a Senior Security Engineer to help secure its AI-driven, multi-cloud behavioral health platform by partnering closely with R&D on architecture, data protection, and security controls.

Israel Senior Security Engineer
AWS Azure CI/CD Encryption GCP LLM
8 hours, 31 minutes ago
SpaceX

Security Software Engineer (Starlink)

SpaceX 10K-50K Aerospace & Defense

SpaceX is hiring a Security Software Engineer for Starlink to design and improve security across its internet system, from software infrastructure to devices, factories, and connected services.

United States Full-time Mid Level Security Engineer Software Engineer
$130k-$180k
C C++ Go Network Security Python TCP/IP
8 hours, 57 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers