As Marqeta’s Information Security Manager you will lead Vulnerability Management and establish a Data Security program. You’ll drive risk reduction across cloud, endpoints, and applications, while building controls and monitoring to safeguard critical data end-to-end across all of Marqeta’s systems and services—100% cloud-based, with no data center footprint.

We work Flexible First. This role can be performed remotely anywhere within the United States. We’d love for you to join us!

The Impact You'll Have:

Vulnerability Management

Lead program strategy and operations: asset coverage, scanning cadence, prioritization, and measurable risk reduction using Tenable (Nessus/SC/IO) and Snyk.
Integrate Tenable and Snyk findings into engineering backlogs with clear SLAs; partner with SRE, platform, and application teams to drive remediation.
Establish risk-based prioritization (CVSS, KEV, EPSS, exploitability, business criticality) and publish dashboards for transparency to leadership.
Mature patching and configuration baselines; build preventative controls and secure-by-default guardrails.
Coordinate vulnerability disclosure, pen test intake, and threat-driven campaigns for actively exploited CVEs.
Report program health, trends, and exceptions to security leadership and auditors.

Data Security (Program Build & Ownership)

Establish clear data ownership and stewardship across critical datasets; define roles, responsibilities, and decision rights.
Define and enforce data classification, access, and usage policies; drive best practices and guard rails for least privilege and segregation of duties.
Operationalize Sentra (DSPM) and Google DLP to monitor data exposure and access risks; drive timely remediation with accountable teams.
Build data lifecycle controls (creation, storage, use, sharing, archival, destruction) and technical guardrails embedded in platforms and workflows.
Ensure compliance with data protection regulations (e.g., PCI, SOX); partner on control design, testing, and evidence collection.
Collaborate with Security, Legal, Privacy, and Data teams to protect data across its lifecycle and enable safe analytics/product use cases.
Develop metrics (DLP incidents, misconfigurations, toxic combinations, stale sensitive datasets, policy violations) and report to leadership.

Who You Are:

7–10+ years in information security with 3+ years leading programs or teams; regulated/fintech experience preferred.
Hands-on depth managing vulnerabilities at scale with Tenable and Snyk across cloud-native, containers, endpoints, and CI/CD.
Practical experience building/maturing data security programs with Sentra (DSPM) and Google DLP; strong policy design and enforcement.
Partner management across engineering, data, and compliance; able to translate risk into actionable plans and measurable outcomes.
Familiarity with PCI and SOX; knowledge of SDLC, DevSecOps, and cloud security architectures (AWS/GCP/Azure).
Comfort with IAM/IGA, SIEM, CNAPP, and ticketing/workflow integrations; solid grasp of data governance concepts (stewardship, lineage).
Excellent communication and reporting—clear narratives, crisp metrics, executive-ready updates.
Certifications such as CISSP or CISM are a plus.

How you’ll measure success

Reduction in high-risk vulnerabilities and time-to-remediation across prioritized asset classes.
Complete inventory coverage and adherence to patch/configuration SLAs via Tenable/Snyk dashboards.
Implemented and adopted data classification and access policies with defined ownership.
Sentra and Google DLP coverage with declining exposure trends and timely remediation.
Successful PCI/SOX audits for relevant controls; fewer exceptions and faster closure.
Clear metrics and dashboards used by leadership for decision-making.

Nice to Have's:

Experience automating Tenable/Snyk workflows into CI/CD and GRC/Risk registers.
Background in data governance (stewardship councils, RACI) and analytics platform security (e.g., Snowflake, Databricks, BigQuery).
Exposure to SaaS Security Posture Management and third-party data controls at scale.

Manager:

Chetan Jha

Recruiter For This Role:

Kayla Osuna

Compensation and Benefits:

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. Compensation is aligned according to three tiers within the United States:

National: A baseline tier that applies to most of the geographic territory of the United States.
Premium: Slightly elevated from the National tier, and oriented toward a narrower set of higher cost-of-living areas, such as Los Angeles CA and Seattle WA
Premium Plus: A tier for the most expensive working areas, like the San Francisco Bay area and New York City.

Visit this page or consult with a Recruiter to determine which tier would be applicable to you.

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position is:

National: $167,100 - $208,900
Premium: $179,800 - $224,700
Premium Plus: $$195,400 - $244,400

We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

Multiple health insurance options
Flexible time off – take what you need
Retirement savings program with company contribution and after tax contributions
Equity in a publicly-traded company and an Employee Stock Purchase Program
Family-forming benefits, fertility support, and up to 20 weeks of Parental Leave
Free therapy sessions, financial and professional coaching, and legal advice
Monthly stipend to support our remote work model
Annual “development dollars” to support our people growth and development
Through Flex First, the freedom to live and work wherever you and your family thrive