Staff Security Engineer - Detect & Response

Summary

Join Marqeta's Security Operations & Response Team as a Staff Security Engineer based in Canada. Lead incident response programs, proactively monitor for cyber threats, and serve as incident commander for security events. Establish methodologies aligned with the NIST Incident Response Lifecycle, maintain the cybersecurity incident response plan, and drive operational improvements. This role demands deep expertise in incident response, digital forensics, threat hunting, and security monitoring tools. You will mentor team members, lead technical initiatives, and participate in a 24x7 on-call rotation. This flexible position can be performed remotely from Ontario or British Columbia.

Requirements

• 8+ years of hands-on experience in security operations with deep expertise in incident response, digital forensics, and threat hunting
• Demonstrated experience serving as an incident commander, managing response workflows and making decisions under pressure for security events of varying severity
• Advanced knowledge of the NIST Incident Response Lifecycle and experience developing effective incident response documentation and procedures
• Expert-level proficiency with security monitoring and forensic tools including EDR, SIEM, and SOAR systems
• Experience conducting post-incident reviews and implementing security improvements based on lessons learned
• Strong understanding of threat actor TTPs and ability to apply threat intelligence to enhance detection and response capabilities
• Experience tuning security solutions and developing automation workflows to improve monitoring effectiveness and response efficiency
• Advanced knowledge of AWS cloud services and securing cloud environments
• Ability to effectively communicate with technical and executive stakeholders during security incidents and investigations
• Proven ability to work independently while demonstrating sound judgment about when to engage team members or escalate issues
• Strong mentorship abilities with a track record of developing junior security professionals in incident response techniques

Responsibilities

• Proactively monitor Marqeta's environment for cyber threat activity and manage day-to-day security alerts through timely analysis, triage, and appropriate response actions
• Serve as the incident commander during security events of all severity levels, directing investigation strategies and coordinating cross-functional response efforts
• Deliver NIST Incident Response Lifecycle aligned services to prepare for, detect, contain, eradicate, recover, and learn from cybersecurity incidents
• Work with the CISO to maintain the Cybersecurity Incident Response Plan (CIRP), ensuring alignment with government and law enforcement reporting requirements
• Document and maintain Security Operations processes, procedures, playbooks, and runbooks to ensure consistent and effective response operations
• Participate in 24x7x365 on-call rotations, providing expert-level guidance during security incidents and conducting thorough post-incident reviews
• Proactively research threat intelligence sources to develop and lead hypothesis-driven threat hunting initiatives to uncover threats in corporate and production environments
• Work closely with Security Solution Engineering to tune security solutions, enhance detection capabilities, and leverage business knowledge to improve security monitoring
• Serve as liaison with HR, law enforcement, response retainers, and cyber insurers as required, including coordination on cyber-crime financial fraud use cases
• Mentor security team members in incident response methodologies while collaborating with senior leadership to communicate security risks and strategic recommendations

Benefits

• Multiple health insurance options
• Flexible time off – take what you need
• Retirement savings program with company contribution
• Equity in a publicly-traded company
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave