Staff Security Engineer

at Marqeta
  • $167k-$244k
  • Remote - United States

Remote

Cybersecurity

Senior

Job description

We’re seeking an experienced Staff Security Engineer with a strong passion for data security and a deep understanding of encryption and key management. In this role, you’ll have the opportunity to shape and implement cutting-edge security strategies to protect sensitive data across our platforms.

Join us in building secure cloud environments where you’ll play a crucial part in:

  1. Cloud Data Security – Driving initiatives around data discovery, classification, and protection.
  2. Encryption & Key Management – Leading encryption and secrets management across the enterprise.
  3. PKI & Certificate Management – Architecting robust public key infrastructures and certificate solutions.

This is a remote-first role, with the option to work from anywhere within the U.S. or from our Oakland office. If you’re excited about designing and securing the future of data, we’d love to have you on our team!

What You’ll Do:

  • Lead the development of enterprise-level data security architecture and strategies.
  • Define encryption and secrets management standards, ensuring alignment with product development and enterprise needs.
  • Collaborate closely with security, technology, and privacy teams to implement and maintain data classification, encryption, and key management standards.
  • Deploy, configure, and manage cloud-based Key Management Services (KMS) and Hardware Security Modules (HSMs).
  • Participate in Proof of Concept (POC) testing and demonstrations for new cryptographic products and services.
  • Serve as a key custodian, overseeing the full lifecycle of sensitive key material, including governance and security controls.
  • Maintain and update data security tooling such as Data Security Posture Management (DSPM) and Data Loss Prevention (DLP) solutions.
  • Ensure systems remain compliant with evolving security standards like PCI-DSS and FIPS 140-2 & 140-3.
  • Provide operational support, including on-call rotation, and document critical procedures such as key lifecycle management and disaster recovery plans.
  • Research emerging security standards and advise on their integration into our strategies.

What We’re Looking For:

  • A minimum of 8 years related experience with a Bachelor’s degree; or 5 years and a Master’s degree; or a PhD with 3 years’ experience; or equivalent combination of related education and work experience.
  • 5+ years of professional experience within data security including encryption, tokenization, PKI implementation and key management.
  • 4 years+ of in-depth experience working with payment and/or general-purpose HSMs, cloud KMSs.
  • 4+ years of practical experience in encryption algorithms (e.g., AES, RSA), protocols (e.g., TLS/SSL), key management, secrets management
  • 3+ years  with cloud computing architectures and Infrastructure as Code (e.g., Terraform).
  • 2+ years working experience with security regulatory/compliance requirements including PCI, NIST and GDPR.
  • 2+ years experience with data security, classification and posture management tooling.
  • Strong collaboration and communication skills, with the ability to influence cross-functional teams and stakeholders.
  • Problem-solving skills to navigate complexity and security risks with confidence and flexibility.

Nice to Have:

  • Experience with Thales payShield HSM, AWS KMS and AWS Secrets Manager.
  • Coding experience and working knowledge of Google Tink, PKCS11, JCE , OpenSSL and other crypto libraries.
  • Familiarity with Kubernetes, cloud platforms, and IaC tools like Terraform.
  • Experience with AWS Payment Cryptography would be a major plus
  • CISSP, CCSP, CISA or other appropriate certifications is a plus.

Job Expectations:

  • Occasional travel (up to 10%).
  • A hiring process that includes an application, recruiter call, hiring manager video call, and a virtual “onsite” interview.

Compensation and Benefits

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. Compensation is aligned according to three tiers within the United States:

  • National: A baseline tier that applies to most of the geographic territory of the United States.
  • Premium: Slightly elevated from the National tier, and oriented toward a narrower set of higher cost-of-living areas, such as Los Angeles CA and Seattle WA
  • Premium Plus: A tier for the most expensive working areas, like the San Francisco Bay area and New York City.

Visit this page or consult with a Recruiter to determine which tier would be applicable to you.

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position is:

  • National: $167,100 - $208,900
  • Premium: $179,800 - $224,700
  • Premium Plus: $195,400 - 244,200

We also believe in recognizing the contributions of our people. That’s why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

  • Multiple health insurance options
  • Flexible time off – take what you need
  • Retirement savings program with company contribution and after tax contributions
  • Equity in a publicly-traded company and an Employee Stock Purchase Program
  • Family-forming benefits, fertility support, and up to 20 weeks of Parental Leave
  • Free therapy sessions, financial and professional coaching, and legal advice
  • Monthly stipend to support our remote work model
  • Annual “development dollars” to support our people growth and development

About Marqeta

Marqeta is on a mission to change the way money moves. We’re one of the earliest enablers of embedded finance, a market opportunity sized up in the trillions. Our card issuing platform provides unprecedented flexibility and control for companies to issue cards, authorize transactions, and manage payment operations in real time. Marqeta is powering the most well known brands in the new economy (Block, Cash App, Affirm, Instacart, Doordash, Uber, Walmart, etc). You don’t need to be a Payments expert to join the Marqeta Team, let us help you with that.  This is the opportunity of a lifetime to work with innovators around the world and unlock equitable financial access for all.

Marqeta’s Values

– Intentional Curiosity: We believe in asking the questions others shy away from. True progress comes from understanding today’s realities while challenging ourselves to do better and take on the status quo.

– Thoughtful Responsibility: We believe that every interaction with our technology and platforms matters. Businesses and livelihoods rely on our work, so we strive for excellence and accountability every day with the highest standards for failsafe technology and compliance.

– Innovative Simplicity: We believe that simplicity is powerful, especially in innovation—making a tool work better or finishing that feature that makes everyone smile. Our customers face a lot of complexity. We’re not here to add more.

– Shared Success: We believe the measure of our success is the success of our employees, customers, and communities. From local businesses to big corporations, our impact goes deep and wide. And we’ve got the results to prove it.

– Passion to Thrive: We believe anyone with a better idea should be able to change the game for our company and our customers. We solve big problems for our customers and draw energy from that challenge and opportunity.

Equal Employment Opportunity, Accommodations and Privacy

Marqeta is proud to be an equal opportunity employer that gives consideration to all qualified applicants regardless of race, ancestry, national  origin, color, Indigenous, citizenship, religion/creed, sex, sexual orientation, gender identity, gender expression marital status, family status, disability, veteran status, criminal histories consistent with legal requirements, or any other characteristic protected by applicable law.

Our dedication to diversity and inclusion extends beyond the categories above. Review Marqeta’s ESG Report to see that dedication in action. Fostering an environment where everyone feels valued and respected creates a stronger and more innovative team at Marqeta. We celebrate the unique contributions of each individual and empower all members of our organization. Join us in building a company where diversity thrives and everyone can be their authentic selves.

If you require reasonable accommodation for the application process and beyond (including due to a disability), please submit this form and we will be more than happy to assist you. Marqeta will make reasonable accommodations for candidates when needed in accordance with applicable law. The Applicant and Candidate Privacy Notice applies to the personal data that you directly provide to us or that we collect during the application and candidate recruitment process.

Share this job:
Please let Marqeta know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

Latest Jobs at Marqeta

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply