Senior Product Security Engineer

Summary

Join Marqeta as a Senior Product Security Engineer and contribute to building and maturing a product security team. You will design secure architecture solutions, build automated security testing tools, and conduct security design reviews and threat modeling. The role involves educating engineering teams on security best practices and driving self-service security initiatives. This remote-first position is based anywhere in Canada and requires a minimum of 5 years of relevant experience. Marqeta offers competitive compensation, including a base salary range of CAD 119,400-149,300, annual bonuses, and various benefits.

Requirements

• A minimum of 5 years related experience with a Bachelor’s degree; or 3 years and a Master’s degree; or a PhD with 2 years’ experience; or equivalent combination of related education and work experience
• Experience with application security, security engineering, and DevSecOps programs
• Experience with building and securing CI/CD pipelines
• Experience with secure code reviews and vulnerability analysis
• Strong understanding of secure architecture patterns
• Understanding of operational cryptography (TLS, PKI)
• Experience with compliance and control frameworks (Experience with PCI DSS 4.0, SOC2, ISO27K1, GDPR, NIST CSF, NIST SSDF)
• Experienced with AWS development and cloud native operations

Responsibilities

• Conduct security design reviews and threat modeling
• Build and maintain automated security testing tools integrated into CI/CD pipelines
• Enable engineering teams through hands-on security education and training
• Design secure architecture solutions that provide built-in mitigations and safety controls for production systems
• Drive self-service security initiatives that empower engineers to build and deploy secure products independently
• Conduct proof of concept evaluations for cutting edge application security solutions
• Contribute to the general operations of the Product Security Team

Preferred Qualifications

• Experience with Kubernetes
• Experience with building tools and workflows utilizing GenAI
• Experience with IaC tools such as Terraform
• Experience with Payments Cryptography (Payments HSM)
• Experience with credit transaction applications
• CISSP, OSCP, CCSP, CISA or other appropriate certifications is a plus
• Experience with AWS cloud services security design, strategies, and protocols

Benefits

• Multiple health insurance options
• Flexible time off – take what you need
• Retirement savings program with company contribution
• Equity in a publicly-traded company
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave