RemoteLeaf Logo
Log in Sign up

Senior Security Engineer - Detect & Response - EU/UK

2 days, 7 hours ago
United Kingdom
Full-time
Lead
Security Engineer
Cybersecurity
AWS Git SIEM
Apply Now
Marqeta

Marqeta

Marqeta is a pioneer in modern card issuing and payment solutions, offering businesses instant card issuance and payment processing through their innovative open API platform.

Diversified Financial Services
251-1K
Founded 2010
View All Jobs 39

Description

  • Proactively monitor Marqeta’s environment for cyber threats and manage daily security alerts through analysis, triage, and response actions.
  • Serve as incident commander during security events and coordinate investigation and cross-functional response efforts.
  • Execute incident response activities aligned with the NIST Incident Response Lifecycle to detect, contain, eradicate, recover, and learn from incidents.
  • Maintain and improve the Cybersecurity Incident Response Plan, playbooks, runbooks, and standard operating procedures.
  • Participate in 24x7x365 on-call rotations and support post-incident reviews.
  • Research threat intelligence sources and lead hypothesis-driven threat hunting in corporate and production environments.
  • Partner with Security Engineering to tune detections, improve security monitoring, and increase detection coverage.
  • Design, develop, and maintain detections-as-code and deploy detections through CI/CD pipelines into SIEM and EDR platforms.
  • Map detection coverage to MITRE ATT&CK and help prioritize detection development based on threat intelligence and business risk.
  • Coordinate with HR, law enforcement, response retainers, cyber insurers, Fraud, Compliance, and Risk teams during relevant security events.

Requirements

  • 5+ years of hands-on experience in security operations, with strong expertise in incident response, digital forensics, and threat hunting.
  • Experience serving as an incident commander or leading incident response workstreams under pressure.
  • Strong knowledge of the NIST Incident Response Lifecycle and incident response documentation and procedures.
  • Proficiency with EDR, SIEM, and SOAR security monitoring and forensic tools.
  • Experience developing detections-as-code, including version control, CI/CD pipelines, and detection testing frameworks.
  • Working knowledge of MITRE ATT&CK and its use in assessing detection coverage and mapping threat actor TTPs.
  • Experience contributing to post-incident reviews and implementing improvements based on lessons learned.
  • Solid understanding of threat actor TTPs and the use of threat intelligence to improve detection and response.
  • Experience tuning security solutions and building automation workflows to improve monitoring and response efficiency.
  • Working knowledge of AWS cloud services and securing cloud environments.
  • Experience in payment processing, fintech, or another highly regulated environment; PCI DSS incident handling experience is a plus.
  • Ability to communicate effectively with both technical and non-technical stakeholders during incidents and investigations.
  • Proven ability to work independently and judge when to escalate or involve others.
  • Willingness to mentor junior security professionals and support their growth in incident response techniques.

Benefits

  • Premium private medical and dental coverage.
  • Generous time off program with additional floating holiday days.
  • Retirement savings program with company contribution.
  • Equity in a publicly traded company plus an Employee Stock Purchase Program.
  • Monthly stipend to support the remote work model.
  • Annual development stipend for professional growth and development.
  • Family-forming benefits and up to 20 weeks of parental leave.
  • Wellbeing programs including Modern Health and HealthKick.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

MetroStar

Sr. Network Security Engineer III (Clearable) (6563)

MetroStar 251-1K IT Services

MetroStar is hiring a Sr. Network Security Engineer III to secure and harden mission-critical federal network environments while supporting secure mission delivery for a high-visibility customer.

United States Full-time Senior Security Engineer
$207k-$320k
Agile Cisco Fortinet IDS IPS
3 hours, 27 minutes ago
Trility Consulting

Mid-Level DevSecOps Consultant - AWS/CMMC

Trility Consulting 51-250 Internet Software & Services

Trility Consulting is hiring a Mid-Level DevSecOps Consultant to design and operate a CMMC-aligned GitLab platform for a regulated aerospace environment on Kubernetes.

United States Full-time Mid Level DevOps Engineer Security Engineer
Argo CD AWS CI/CD DevSecOps GitLab GitOps Kubernetes Terraform
8 hours, 36 minutes ago
Capital.com

Network Security Engineer

Capital.com 251-1K Capital Markets

Network Security Engineer at a global trading platform, focused on strengthening infrastructure security, monitoring network threats, and improving security operations through automation.

Bulgaria Poland Cyprus Full-time Mid Level Security Engineer
AWS Bash Docker GCP Kubernetes Linux Network Security Python SIEM Wireshark
8 hours, 54 minutes ago
HighLevel

Staff Engineer - Cloud Infrastructure & Security

HighLevel 251-1K Internet Software & Services

HighLevel is hiring a Staff Engineer to architect and strengthen its cloud infrastructure and security platform for a large-scale, remote-first SaaS environment.

India Full-time Lead Infrastructure Engineer Security Engineer
Bash CI/CD Cloudflare GCP Go Kubernetes Load Balancing Microservices Python Terraform
12 hours, 28 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers