Manager, Vulnerability & Data Security jobs in United States
cer-icon
Apply on Employer Site
company-logo

Marqeta · 1 month ago

Manager, Vulnerability & Data Security

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$167K/yr - $244K/yr
date7+ years exp

Marqeta is a company focused on information security, and they are seeking an Information Security Manager to lead Vulnerability Management and establish a Data Security program. The role involves driving risk reduction across cloud, endpoints, and applications, while building controls and monitoring to safeguard critical data across all of Marqeta's systems and services.

Credit CardsCryptocurrencyDebit CardsFinTechPayments
check
Comp. & Benefits
check
H1B Sponsor Likelynote

Responsibilities

Lead program strategy and operations: asset coverage, scanning cadence, prioritization, and measurable risk reduction using Tenable (Nessus/SC/IO) and Snyk
Integrate Tenable and Snyk findings into engineering backlogs with clear SLAs; partner with SRE, platform, and application teams to drive remediation
Establish risk-based prioritization (CVSS, KEV, EPSS, exploitability, business criticality) and publish dashboards for transparency to leadership
Mature patching and configuration baselines; build preventative controls and secure-by-default guardrails
Coordinate vulnerability disclosure, pen test intake, and threat-driven campaigns for actively exploited CVEs
Report program health, trends, and exceptions to security leadership and auditors
Establish clear data ownership and stewardship across critical datasets; define roles, responsibilities, and decision rights
Define and enforce data classification, access, and usage policies; drive best practices and guard rails for least privilege and segregation of duties
Operationalize Sentra (DSPM) and Google DLP to monitor data exposure and access risks; drive timely remediation with accountable teams
Build data lifecycle controls (creation, storage, use, sharing, archival, destruction) and technical guardrails embedded in platforms and workflows
Ensure compliance with data protection regulations (e.g., PCI, SOX); partner on control design, testing, and evidence collection
Collaborate with Security, Legal, Privacy, and Data teams to protect data across its lifecycle and enable safe analytics/product use cases
Develop metrics (DLP incidents, misconfigurations, toxic combinations, stale sensitive datasets, policy violations) and report to leadership

Qualification

Vulnerability ManagementData Security ProgramTenable (Nessus/SC/IO)SnykSentra (DSPM)Google DLPPCI ComplianceSOX ComplianceCloud SecurityIAM/IGASIEMDevSecOpsData GovernanceCISSP CertificationCISM CertificationCommunication SkillsReporting Skills

Required

7–10+ years in information security with 3+ years leading programs or teams
Hands-on depth managing vulnerabilities at scale with Tenable and Snyk across cloud-native, containers, endpoints, and CI/CD
Practical experience building/maturing data security programs with Sentra (DSPM) and Google DLP; strong policy design and enforcement
Partner management across engineering, data, and compliance; able to translate risk into actionable plans and measurable outcomes
Familiarity with PCI and SOX; knowledge of SDLC, DevSecOps, and cloud security architectures (AWS/GCP/Azure)
Comfort with IAM/IGA, SIEM, CNAPP, and ticketing/workflow integrations; solid grasp of data governance concepts (stewardship, lineage)
Excellent communication and reporting—clear narratives, crisp metrics, executive-ready updates

Preferred

Regulated/fintech experience preferred
Certifications such as CISSP or CISM are a plus
Experience automating Tenable/Snyk workflows into CI/CD and GRC/Risk registers
Background in data governance (stewardship councils, RACI) and analytics platform security (e.g., Snowflake, Databricks, BigQuery)
Exposure to SaaS Security Posture Management and third-party data controls at scale

Benefits

Multiple health insurance options
Flexible time off – take what you need
Retirement savings program with company contribution and after tax contributions
Equity in a publicly-traded company and an Employee Stock Purchase Program
Family-forming benefits, fertility support, and up to 20 weeks of Parental Leave
Free therapy sessions, financial and professional coaching, and legal advice
Monthly stipend to support our remote work model
Annual “development dollars” to support our people growth and development
Through Flex First, the freedom to live and work wherever you and your family thrive

Company

Marqeta

twittertwittertwitter
Glassdoor3.6
company-logo
Marqeta is a card issuing platform that provides infrastructure and tools to help companies build and manage payment programs.
dateFounded in 2010
location
Oakland, California, USA
people-size501-1000 employees
web-link
https://www.marqeta.com

H1B Sponsorship

Marqeta has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (57)
2024 (75)
2023 (44)
2022 (122)
2021 (70)
2020 (28)

Funding

Current Stage
Public Company
Total Funding
$530.11M
Key Investors
MastercardCoatueICONIQ Growth
2021-06-09Post Ipo Equity
2021-06-09IPO
2021-04-23Series Unknown· $2.11M

Leadership Team

leader-logo
Mike Milotich
Chief Executive Officer
linkedin
leader-logo
Heather Gantt-Evans
Chief Information Security Officer, SVP of Cybersecurity
linkedin

Recent News

PYMNTS.com
Embedded Finance Pays Off for 54% of US B2B Platforms
2026-01-09
thefly.com
Marqeta appoints Patti Kangwankij as chief financial officer
2026-01-08
FX News Group
Marqeta appoints Patti Kangwankij as CFO
2026-01-08
Company data provided by crunchbase