At a Glance
- Tasks: Lead incident response, monitor for cyber threats, and improve security operations.
- Company: Join a dynamic fintech company focused on cybersecurity excellence.
- Benefits: Competitive salary, flexible working hours, and opportunities for professional growth.
- Other info: Be part of a 24/7 on-call team in a fast-paced environment.
- Why this job: Make a real impact in cybersecurity while mentoring the next generation of security professionals.
- Qualifications: 5+ years in security operations with expertise in incident response and threat hunting.
The predicted salary is between 60000 - 80000 € per year.
Requirements
- 5+ years of hands-on experience in security operations with strong expertise in incident response, digital forensics, and threat hunting
- Experience serving as an incident commander or leading incident response workstreams, with the ability to make sound decisions under pressure
- Strong knowledge of the NIST Incident Response Lifecycle and experience contributing to incident response documentation and procedures
- Proficiency with security monitoring and forensic tools including EDR, SIEM, and SOAR systems
- Experience developing detections-as-code, including familiarity with version control, CI/CD pipelines, and detection testing frameworks
- Working knowledge of MITRE ATT&CK and experience using it to assess detection coverage and map threat actor TTPs
- Experience contributing to post-incident reviews and implementing security improvements based on lessons learned
- Solid understanding of threat actor TTPs and ability to apply threat intelligence to enhance detection and response capabilities
- Experience tuning security solutions and developing automation workflows to improve monitoring effectiveness and response efficiency
- Working knowledge of AWS cloud services and securing cloud environments
- Ability to effectively communicate with technical and non-technical stakeholders during security incidents and investigations
- Experience in payment processing, fintech, or other highly regulated environments; familiarity with PCI DSS incident handling requirements a plus
- Proven ability to work independently while demonstrating sound judgment about when to engage team members or elevate issues
- Willingness to mentor and support the growth of junior security professionals in incident response techniques
What the job involves
- We are seeking a UK-based Staff Security Engineer to serve as a technical leader within our Security Operations and Response Team
- As a senior technical responder, you will lead our incident response program, proactively monitor Marqeta’s environment for cyber threats, and serve as incident commander during security events of all severity levels
- You will establish response methodologies aligned with the NIST Incident Response Lifecycle, maintain the cybersecurity incident response plan, and drive continuous improvement of our security operations
- This position requires extensive expertise in incident response, digital forensics, threat hunting, and security monitoring technologies
- You will provide technical leadership across the organization, mentor team members, and participate in 24x7 on-call rotations
- Proactively monitor Marqeta’s environment for cyber threat activity and manage day-to-day security alerts through timely analysis, triage, and appropriate response actions
- Serve as incident commander during security events, directing investigation strategies and coordinating cross-functional response efforts
- Execute incident response activities aligned with the NIST Incident Response Lifecycle to detect, contain, eradicate, recover, and learn from cybersecurity incidents
- Contribute to the maintenance and improvement of the Cybersecurity Incident Response Plan (CIRP), playbooks, runbooks, and standard operating procedures to ensure consistent and effective response operations
- Participate in 24x7x365 on-call rotations, providing skilled guidance during security incidents and contributing to thorough post-incident reviews
- Research threat intelligence sources and contribute to hypothesis-driven threat hunting initiatives to uncover threats in corporate and production environments
- Work closely with Security Engineering to tune security solutions, enhance detection capabilities, and leverage business knowledge to improve security monitoring
- Design, develop, and maintain detection logic using a detections-as-code approach, collaborating with Security Solution Engineering to deploy detections through CI/CD pipelines into our SIEM and EDR platforms
- Contribute to detection coverage mapped to MITRE ATT&CK framework, identifying gaps in visibility and supporting detection development prioritization based on threat intelligence and business risk
- Coordinate with HR, law enforcement, response retainers, and cyber insurers as required, including support on cyber-crime financial fraud use cases
- Support the development of less-experienced security team members through knowledge sharing, pair investigations, and leading by example
- Partner with Fraud, Compliance, and Risk teams on security events involving payment systems, cardholder data, or regulatory reporting obligations under PCI DSS and related frameworks
Senior Security Engineer (Detection & Response, EU/UK) in London employer: Deepstreamtech
At Marqeta, we pride ourselves on being an exceptional employer that fosters a dynamic and inclusive work culture. As a Senior Security Engineer, you will not only lead critical incident response initiatives but also have the opportunity to mentor junior professionals, enhancing your own growth while contributing to the team's success. Our commitment to continuous improvement and innovation in cybersecurity, combined with our supportive environment, makes Marqeta an ideal place for those seeking meaningful and rewarding employment in the heart of the UK.
StudySmarter Expert Advice🤫
We think this is how you could land Senior Security Engineer (Detection & Response, EU/UK) in London
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the security field. Attend meetups, webinars, or conferences where you can chat with industry leaders and potential employers. Remember, sometimes it’s not just what you know, but who you know!
✨Tip Number 2
Show off your skills! Create a portfolio that highlights your incident response projects, threat hunting experiences, and any cool automation workflows you've developed. This will give potential employers a taste of what you can bring to the table.
✨Tip Number 3
Practice makes perfect! Prepare for interviews by simulating incident response scenarios. Think through how you’d handle various cyber threats and be ready to discuss your thought process. This will show employers you can think on your feet under pressure.
✨Tip Number 4
Don’t forget to apply through our website! We’re always on the lookout for talented individuals like you. Plus, applying directly gives you a better chance to stand out and get noticed by our hiring team.
We think you need these skills to ace Senior Security Engineer (Detection & Response, EU/UK) in London
Some tips for your application 🫡
Tailor Your CV:Make sure your CV highlights your 5+ years of experience in security operations, especially in incident response and threat hunting. We want to see how your skills align with the job description, so don’t be shy about showcasing your expertise!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you’re the perfect fit for our Senior Security Engineer role. Mention specific experiences that demonstrate your ability to lead incident response workstreams and communicate effectively with both technical and non-technical stakeholders.
Showcase Your Technical Skills:We’re looking for someone with strong knowledge of tools like EDR, SIEM, and SOAR systems. Make sure to include any relevant certifications or projects that highlight your proficiency in these areas, as well as your experience with AWS cloud services.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining our team at StudySmarter!
How to prepare for a job interview at Deepstreamtech
✨Know Your NIST Inside Out
Make sure you’re well-versed in the NIST Incident Response Lifecycle. Be ready to discuss how you've applied it in past roles, especially in leading incident response workstreams. This will show that you can make sound decisions under pressure.
✨Showcase Your Technical Skills
Prepare to talk about your experience with security monitoring tools like EDR, SIEM, and SOAR systems. Bring examples of how you've developed detections-as-code and used CI/CD pipelines. This will demonstrate your hands-on expertise and technical leadership.
✨Communicate Effectively
Practice explaining complex security concepts in simple terms. You’ll need to communicate with both technical and non-technical stakeholders, so being able to articulate your thoughts clearly is crucial during the interview.
✨Be Ready for Scenario Questions
Expect scenario-based questions where you might have to act as an incident commander. Think through how you would handle various security incidents, including coordinating cross-functional teams and managing day-to-day security alerts.
