Senior Product Security Engineer

We are seeking a Senior Product Security Engineer to join our team. This role is responsible for creating and maintaining the processes and technologies used to secure our products and systems.

• Help build out and mature a product security team including developing novel security tooling and solutions that enable secure FinTech products at scale
• Educate, advise and empower engineers in a growing and highly technical product engineering organization
• Work hands-on with cutting-edge security technologies including static and dynamic code analysis, software composition analysis, API security, and cloud security configurations while collaborating closely with engineering teams across the entire technology stack
• Conduct security design reviews and threat modeling
• Build and maintain automated security testing tools integrated into CI/CD pipelines
• Enable engineering teams through hands-on security education and training
• Design secure architecture solutions that provide built-in mitigations and safety controls for production systems
• Drive self-service security initiatives that empower engineers to build and deploy secure products independently
• Conduct proof of concept evaluations for cutting edge application security solutions
• Contribute to the general operations of the Product Security Team

This role is remote-first and can be performed from anywhere in Canada. If you are passionate about product security and looking to develop your expertise we would love to have you on board!

• A minimum of 5 years related experience with a Bachelor’s degree; or 3 years and a Master’s degree; or a PhD with 2 years experience; or equivalent combination of related education and work experience.
• Experience with application security, security engineering, and DevSecOps programs.
• Experience with building and securing CI/CD pipelines
• Experience with secure code reviews and vulnerability analysis
• Strong understanding of secure architecture patterns
• Understanding of operational cryptography (TLS, PKI)
• Experience with compliance and control frameworks (PCI DSS 4.0, SOC 2, ISO 27001, GDPR, NIST CSF, NIST SSDF)
• Experience with AWS development and cloud-native operations

• Experience with Kubernetes
• Experience with building tools and workflows utilizing GenAI
• Experience with IaC tools such as Terraform
• Experience with Payments Cryptography (Payments HSM)
• Experience with credit transaction applications
• Certifications such as CISSP, OSCP, CCSP, CISA or other appropriate certifications
• Experience with AWS cloud services security design strategies and protocols

Marqeta is a Flex First company which allows you to choose your best working environment whether that be from home or at a company office. To support Flex First we calibrate pay to a competitive value according to working location.

When determining salaries we consider several factors including but not limited to skills, prior experience and work location. The new-hire base salary range for this position reflected in CAD is: 119400 - 149300.

We also believe in recognizing the contributions of our people. That’s why we award annual bonuses to eligible employees rewarding both individual performance and the success of the entire company.

Along with monetary compensation Marqeta offers

• Multiple health insurance options
• Flexible time off
• Retirement savings program with company contribution
• Equity in a publicly-traded company
• Monthly stipend to support our remote work model
• Annual development dollars to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave

Required Experience: Senior IC

Location: Canada

Vacancy: 1