Senior Security Engineer - Detection & Response

Summary

Join Marqeta's Security Operations & Response Team as a UK-based Senior Security Engineer. This pivotal role focuses on enhancing threat detection and response capabilities. You will design, document, and implement a security detection engineering program, participate in on-call rotations and incident response, and collaborate with various teams to identify detection gaps. The position offers significant impact through technical contributions and reports to the Manager of Security Operations and Response. This role can be performed remotely or from our London office. We offer a flexible work environment and a comprehensive benefits package.

Requirements

• 5+ years of hands-on, in-depth knowledge and technical experience in security operations, including detection engineering, threat hunting, incident response, digital forensics, and/or threat intelligence
• Strong technical foundation and understanding of security concepts, solutions and technologies; experience with enterprise security services such as EDR, SIEM technologies, and SOAR platforms is essential
• Familiarity with frameworks such as MITRE ATT&CK and how to utilise them in the assessment of detection capabilities and coverage
• Skilled in identifying opportunities for developing new threat detection use cases based on security telemetry, environment baselining, actionable threat intelligence and Incident Response lessons learned
• Ability to identify gaps in our detection coverage across global infrastructure, and work with business partners to gain visibility and control through logging and detection content
• Strong understanding of AWS and containerization technologies
• Experience with Terraform

Responsibilities

• Perform detection engineering and regularly write/maintain detection logic to identify suspicious activity
• Document and track detection capabilities across numerous data sources
• Work with team leadership to define and report metrics related to detection capabilities and effectiveness
• Participate in a 24x7x365 on-call rotation for alert response
• Be an active responder as part of the Cybersecurity Incident Response Team during declared incidents
• Contribute to automation and orchestration playbooks to streamline detection engineering, threat hunting and incident response activities
• Participate in threat hunts to proactively identify threats in our corporate and market environments
• Regularly review current use cases/detection logic to identify and remove gaps in coverage

Benefits

• Premium Private Medical and Dental coverage
• Generous time off program with additional “Floating Holiday days”
• Retirement savings program with company contribution
• Equity in a publicly-traded company and an Employee Stock Purchase Program
• Monthly stipend to support our remote work model
• Annual development stipend to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave
• Wellbeing programs i.e. Modern Health, HealthKick and much more…