Manager, Security Operations

About The Position

Requirements

• 5+ Years experience in security operations
• 2+ years experience of managing security operations and incident response.
• Experience with security tools such as XSOAR, Crowdstrike, Tenable, AWS Security Hub, GuardDuty, SIEM tooling, etc
• Expertise and experience in security operational services: logging and monitoring unified threat management, EDR, DDOS / DOS, threat management, cyber investigations, and cyber security forensic investigations.
• Experience managing on-call rotations and escalation frameworks
• Advanced knowledge of best practice standards and procedures regarding information systems applications security, data security, and infrastructure security.
• Experience in cloud technology, especially AWS.
• Strong knowledge of networking and security fundamentals.
• Strong time management and leadership skills.
• Must have excellent writing and communication skills.
• Experience in executive-level reporting.
• Excellent communication and interpersonal skills, with the ability to cultivate relationships across teams, influence decision-making, and collaborate with stakeholders at all levels of the organization.
• BS degree or relevant experience.
• Relevant certifications (CISSP, CISA, CISM, GCIH, Security+, etc)

Nice To Haves

• Experience with PCI, payments and cyber-fraud preferred
• Experience with leveraging AI/ML in security operations preferred

Responsibilities

• Direct the functions, processes, and operations of the security operations team SOC and ensure policies and procedures are followed.
• Lead the security operations team to ensure optimal identification / resolution of security incidents and enhance security.
• Ensure SLA compliances, process adherence, process improvement to meet operational objectives.
• Manage the collection, documentation and research of security incidents and investigations.
• Provide Senior Management with a realistic overview of risks and threats in the Marqeta environment.
• Continuous development and maintenance of the incident response management program which includes incident detection, analysis, containment, eradication, recovery and chain of evidence / forensic artifacts.
• Ability to work directly with all levels of Marqeta employees (Executive, Senior management, SMEs.)
• Create and maintain reports, dashboards, and metrics of security operations for regular reporting and presentation to management.
• Manage the process improvement program for security operations processes.
• Conduct scheduled and ad hoc training exercises to ensure staff are current with the latest threats and incident response techniques.
• Provide direction, leadership and management of security operations personnel.
• Create a high-performing team culture where team members are supported, standards are consistently upheld, people are treated with respect, and everyone feels a sense of belonging.
• Manage cross-functional response with Fraud and Risk for cyberfraud activities
• Lead best practices for detection engineering lifecycles collaboratively with the detection engineering team, ensuring high quality metrics around alert quality and optimization
• Lead development of security playbooks for incident response and collaborate on security automation strategy with detection engineering
• Develop and maintain modern threat intelligence program
• Leverage modern AI/ML tools as a force multiplier

Benefits

• Multiple health insurance options
• Flexible time off – take what you need
• Retirement savings program with company contribution and after tax contributions
• Equity in a publicly-traded company and an Employee Stock Purchase Program
• Family-forming benefits, fertility support, and up to 20 weeks of Parental Leave
• Free therapy sessions, financial and professional coaching, and legal advice
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Through Flex First, the freedom to live and work wherever you and your family thrive