RemoteLeaf Logo
Log in Sign up

Senior Security Engineer - Detect & Response - EU/UK

3 weeks, 6 days ago
United Kingdom
Full-time
Lead
Security Engineer
Cybersecurity
AWS Git SIEM
Apply Now
Marqeta

Marqeta

Marqeta is a pioneer in modern card issuing and payment solutions, offering businesses instant card issuance and payment processing through their innovative open API platform.

Diversified Financial Services
251-1K
Founded 2010
View All Jobs 41

Description

  • Proactively monitor Marqeta’s environment for cyber threats and manage daily security alerts through analysis, triage, and response actions.
  • Serve as incident commander during security events and coordinate investigation and cross-functional response efforts.
  • Execute incident response activities aligned with the NIST Incident Response Lifecycle to detect, contain, eradicate, recover, and learn from incidents.
  • Maintain and improve the Cybersecurity Incident Response Plan, playbooks, runbooks, and standard operating procedures.
  • Participate in 24x7x365 on-call rotations and support post-incident reviews.
  • Research threat intelligence sources and lead hypothesis-driven threat hunting in corporate and production environments.
  • Partner with Security Engineering to tune detections, improve security monitoring, and increase detection coverage.
  • Design, develop, and maintain detections-as-code and deploy detections through CI/CD pipelines into SIEM and EDR platforms.
  • Map detection coverage to MITRE ATT&CK and help prioritize detection development based on threat intelligence and business risk.
  • Coordinate with HR, law enforcement, response retainers, cyber insurers, Fraud, Compliance, and Risk teams during relevant security events.

Requirements

  • 5+ years of hands-on experience in security operations, with strong expertise in incident response, digital forensics, and threat hunting.
  • Experience serving as an incident commander or leading incident response workstreams under pressure.
  • Strong knowledge of the NIST Incident Response Lifecycle and incident response documentation and procedures.
  • Proficiency with EDR, SIEM, and SOAR security monitoring and forensic tools.
  • Experience developing detections-as-code, including version control, CI/CD pipelines, and detection testing frameworks.
  • Working knowledge of MITRE ATT&CK and its use in assessing detection coverage and mapping threat actor TTPs.
  • Experience contributing to post-incident reviews and implementing improvements based on lessons learned.
  • Solid understanding of threat actor TTPs and the use of threat intelligence to improve detection and response.
  • Experience tuning security solutions and building automation workflows to improve monitoring and response efficiency.
  • Working knowledge of AWS cloud services and securing cloud environments.
  • Experience in payment processing, fintech, or another highly regulated environment; PCI DSS incident handling experience is a plus.
  • Ability to communicate effectively with both technical and non-technical stakeholders during incidents and investigations.
  • Proven ability to work independently and judge when to escalate or involve others.
  • Willingness to mentor junior security professionals and support their growth in incident response techniques.

Benefits

  • Premium private medical and dental coverage.
  • Generous time off program with additional floating holiday days.
  • Retirement savings program with company contribution.
  • Equity in a publicly traded company plus an Employee Stock Purchase Program.
  • Monthly stipend to support the remote work model.
  • Annual development stipend for professional growth and development.
  • Family-forming benefits and up to 20 weeks of parental leave.
  • Wellbeing programs including Modern Health and HealthKick.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Anduril Industries

Head of Classified Infrastructure, Frontier Systems

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is seeking a senior security leader for its Frontier Systems team to shape and execute classified infrastructure and information security strategy for defense and intelligence programs.

United States Full-time Lead Infrastructure Engineer Security Engineer
$166k-$220k
Cybersecurity Penetration Testing
18 minutes ago
Game Plan Tech

Information System Security Manager (ISSM)

Game Plan Tech Internet Software & Services

Game Plan Tech is seeking an Information System Security Manager to lead security authorization and compliance for classified systems supporting AI capabilities in a fast-moving national security environment.

United States Full-time Senior Security Engineer
Active Directory
45 minutes ago
Block

Security Engineer, Detection & Response - Monitoring & Triage

Block 10K-50K Capital Markets

Block is hiring a Detection and Response Team (DART) security engineer to lead monitoring, triage, and incident response across its endpoints, cloud, identity, SaaS, and product environments.

Australia Full-time Senior Security Engineer
AWS DNS Kubernetes Linux macOS Network Security SQL
1 hour ago
Stripe

Principal Security Engineer, Privy

Stripe 5K-10K Diversified Financial Services

Privy is hiring a Principal Security Engineer to define and operate security programs for its fintech and crypto infrastructure products, with a focus on protecting sensitive systems and reducing risk across the company.

United States Full-time Lead Security Engineer
AWS Blockchain CI/CD Encryption Go Java JavaScript Microservices Network Security OAuth OpenID Connect Penetration Testing Python Ruby Rust Secrets Management TypeScript
8 hours, 6 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers