Manager, Vulnerability & Data Security

Job description

As Marqeta’s Information Security Manager you will lead Vulnerability Management and establish a Data Security program. You’ll drive risk reduction across cloud, endpoints, and applications, while building controls and monitoring to safeguard critical data end-to-end across all of Marqeta’s systems and services—100% cloud-based, with no data center footprint.

We work Flexible First. This role can be performed remotely anywhere within the United States. We’d love for you to join us!

The Impact You'll Have:

Vulnerability Management

• Lead program strategy and operations: asset coverage, scanning cadence, prioritization, and measurable risk reduction using Tenable (Nessus/SC/IO) and Snyk.
• Integrate Tenable and Snyk findings into engineering backlogs with clear SLAs; partner with SRE, platform, and application teams to drive remediation.
• Establish risk-based prioritization (CVSS, KEV, EPSS, exploitability, business criticality) and publish dashboards for transparency to leadership.
• Mature patching and configuration baselines; build preventative controls and secure-by-default guardrails.
• Coordinate vulnerability disclosure, pen test intake, and threat-driven campaigns for actively exploited CVEs.
• Report program health, trends, and exceptions to security leadership and auditors.

Data Security (Program Build & Ownership)

• Establish clear data ownership and stewardship across critical datasets; define roles, responsibilities, and decision rights.
• Define and enforce data classification, access, and usage policies; drive best practices and guard rails for least privilege and segregation of duties.
This is an excerpt. Read the full job description on Marqeta careers →