Manager, Identity Security

As Marqeta’s Manager of Identity and Access Management (IAM), you bring a strong passion for IAM and proven expertise in cloud-native environments, preferably AWS. In this role, you’ll shape and implement modern identity strategies that secure access across all of Marqeta’s systems and services, built entirely in the cloud with no data-center footprint.

Join us in building a secure, scalable, and frictionless IAM program where you’ll play a crucial part in:

• Building and evolving our Identity Governance and Administration (IGA) capabilities.
• Implementing Privileged Access Management (PAM) in a cloud-first (AWS-focused) environment.
• Designing and architecting a Certificate Lifecycle Management solution that supports cloud-native workloads.
• Driving integration of IAM across AWS services, SaaS platforms, and developer/DevOps pipelines.
• Designing identity and access controls to protect AI/ML systems—ensuring secure access to training data, models, and inference APIs.

The Impact You’ll Have:

• Provide Technical and managerial leadership to a team of 5 to 6 Identity Security Engineers
• Lead implementation of robust IAM strategies aligned with cloud-native architecture and security principles.
• Expand and operationalize the IAM program across IGA, PAM, SSO, MFA, access management, secrets management, and certificate lifecycle management.
• Automate identity provisioning, de-provisioning, and access reviews using tools and infrastructure-as-code.
• Design IAM integrations for AWS-native services ( EC2, S3, IAM, etc.), SaaS platforms, and third-party identity tools (e.g., Okta).
• Promote and enforce least privilege and zero-trust principles through scalable access controls and policy automation.
• Mentor junior engineers and serve as a technical lead for IAM-related projects.
• Collaborate with Security, DevOps, and Infrastructure teams to embed IAM controls across the engineering lifecycle.
• Stay ahead of emerging trends and continuously refine IAM strategy based on evolving cloud threats and compliance requirements.

Who You Are:

• A minimum of 15 years related experience with a Bachelor’s degree or equivalent combination of related education and work experience. Must have been a people manager
• Establish clear, achievable objectives for the team that align with organizational goals
• Experience in Agile/Scrum environments holding daily stand-ups, sprint planning, and retrospectives, using tools like Jira, and estimating user stories
• Comfortable working in a remote only environment and getting hands-on when required
• Providing guidance, support, and feedback to help team members grow in their roles
• Strong experience with IAM tools (e.g., Okta, CyberArk, Ping, SailPoint, Britive).
• Deep knowledge of IAM in cloud-native environments, especially AWS IAM, roles, policies, permissions boundaries, and federation.
• Proficiency in infrastructure-as-code (e.g., Terraform, CloudFormation).
• Familiarity with authentication and authorization protocols (SAML, OAuth2, OpenID Connect, Kerberos).
• Strong grasp of directory services like Active Directory, LDAP, and cloud-based alternatives.
• Experience in scripting (e.g., Python, PowerShell) to automate IAM operations.
• Solid understanding of compliance standards: NIST, SOC 2, PCI DSS, etc.
• Proven experience integrating IAM into CI/CD pipelines, secrets management, and DevOps workflows.
• Excellent communication skills and ability to influence and lead cross-functional teams.

Nice to have

• Relevant certifications such as CISSP, CISM, or IAM-specific credentials (e.g., CIAM/CAMS, CyberArk Certified, Okta Certified Consultant).
• Experience with AWS technologies such as Lambda, S3, DynamoDB, RDS, Aurora, SNS, SQS, CloudTrail, CloudWatch, Code Pipeline, AWS Developer Tools, and IAM roles and permissions
• Experience with DevOps tools and practices, including secrets management and CICD pipelines

Manager

• Chetan Jha

Recruiter for this role

• Kayla Osuna

Compensation and Benefits: 

Marqeta is a Flex First company which allows you to choose your best working environment, whether that be from home or at a company office. To support Flex First, we calibrate pay to a competitive value according to working location. Compensation is aligned according to three tiers within the United States:

• National: A baseline tier that applies to most of the geographic territory of the United States.
• Premium: Slightly elevated from the National tier, and oriented toward a narrower set of higher cost-of-living areas, such as Los Angeles CA and Seattle WA
• Premium Plus: A tier for the most expensive working areas, like the San Francisco Bay area and New York City.

Visit this page or consult with a Recruiter to determine which tier would be applicable to you.

When determining salaries, we consider several factors including, but not limited to, skills, prior experience, and work location. The new-hire base salary range for this position is:

• National: $167,100 - $208,900
• Premium: $179,800 - $224,700
• Premium Plus: $$195,400 - $244,400

We also believe in recognizing the contributions of our people. That's why we award annual bonuses to eligible employees, rewarding both individual performance and the success of the entire company.

Along with monetary compensation, Marqeta offers

• Multiple health insurance options
• Flexible time off – take what you need
• Retirement savings program with company contribution and after tax contributions
• Equity in a publicly-traded company and an Employee Stock Purchase Program
• Family-forming benefits, fertility support, and up to 20 weeks of Parental Leave
• Free therapy sessions, financial and professional coaching, and legal advice
• Monthly stipend to support our remote work model
• Annual “development dollars” to support our people growth and development
• Through Flex First, the freedom to live and work wherever you and your family thrive