Senior Technical Compliance Analyst

As Marqeta’s Senior Technical Compliance Analyst, you'll be responsible for driving implementation of security controls and supporting our technical compliance program. You will collaborate with cross-functional teams to assess internal control effectiveness, facilitate external audits, drive remediation of findings and risks and articulate the Company’s compliance posture to our auditors, customers and partners. You will partner closely with Technology, Product, Internal Audit, Legal, Sales and Operations teams to monitor the controls required to meet key security standards and regulatory requirements, including PCI DSS, ISO 27001, SOX, EU AI Act, and SSAE 18. 

We work Flexible First. This role can be performed remotely anywhere within the provinces of Ontario and British Columbia, Canada. We’d love for you to join us!

The Impact You'll Have

• ​​Maintain and implement a Common Controls Framework based on security and data protection standards (e.g. PCI, ISO, NIST, GDPR, etc.) 
• Identify, document and map technology processes, systems and internal controls of applicable technology infrastructure and operational areas per the scope of audit projects
• Partner with Security and Control Owners across the organization to design and mature security controls
• Perform testing and monitoring including inquiry, observation, documentation gathering and other analysis to assess compliance with security and data protection policies and regulatory requirements
• Report on results of internal and external assessments with key stakeholders
• Develop recommendations to remediate issues identified during assessments
• Foster strong cross-functional partnerships to drive remediation of findings and execution of security compliance objectives and goals
• Facilitate internal and external security audits

Who You Are

• Minimum of 5 years of related experience with a Bachelor’s degree; or 3 years and a Master’s degree; or a PhD without experience; or equivalent work experience
• Minimum 4 years industry experience in Information Security, IT Risk Management, IT Audit or Compliance
• Experience designing and integrating technical regulations and standards (e.g. PCI DSS, NIST, ISO 27001, etc.) into new products and services
• A strong bias toward action and able to operate effectively in a dynamic, fast-paced environment
• Excellent verbal and written communication skills including the ability to simplify key security messages and translate technical matters to non-technical audiences
• Positive attitude, team player, adaptable, resourceful, and self-starter who is able to work independently

Nice-To-Haves

• Masters or Bachelors degree in Computer Science, Information Security, or, Information Technology.
• Experience working with global privacy and data protection regulations (e.g. GDPR, CCPA)
• CISSP, CISM, CISA, CIPP Certifications

Your Manager

• Ben Pournader, Manager, Cybersecurity Governance and Risk Management

Recruiter for this Role

• Prashant, Senior Technical Recruiter

Typical Process

• Application Submission
• Recruiter screen
• Hiring Manager Interview
• Virtual “Onsite” consisting of three 45-60 minute rounds
• Offer!

Compensation and Benefits

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. 

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position, reflected in CAD, is $89,600 to $112,000

We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

• Multiple health insurance options
• Flexible time off – take what you need
• Retirement savings program with company contribution
• Equity in a publicly-traded company 
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Family-forming benefits and up to 20 weeks of Parental Leave