Principal Security Engineer, Product & AI

Principal Security Engineer, Product & AI

As Marqeta's Principal Security Engineer you will serve as the technical lead across our security engineering function. This role combines three critical responsibilities: leading product security engineering across our payment platform, building our AI security program as we scale generative AI and ML capabilities, and providing security architecture oversight across enterprise and infrastructure security.

Your primary focus will be product security and AI—threat modeling payment features, securing APIs, building genAI controls, and ensuring AI-powered capabilities ship securely. You'll also own the security architecture function and provide technical oversight for infrastructure security—endpoint protection, network security, VPN, and enterprise security controls—ensuring coherent security standards across everything we build and operate.

You'll partner closely with Product Security, Infrastructure Security, and Security Operations teams and serve as the security voice in our Model Risk Office. This is an individual contributor role with mentoring responsibilities and broad technical influence across the security, engineering, and business technology organizations.

The Impact You'll Have:

Product Security

• Conduct security architecture reviews and threat modeling for new product features, APIs, and service integrations across the payment platform
• Define and maintain secure development lifecycle practices including secure code review standards, API security patterns, and authentication/authorization frameworks
• Develop self-service security tooling and developer-facing guardrails that reduce friction while maintaining security posture

AI Security

• Lead security strategy and risk assessment for AI/ML systems including customer-facing AI products, fraud detection models, LLM integrations, and recommendation systems
• Build genAI security controls—prompt injection prevention, output filtering, model validation, and monitoring frameworks
• Perform security assessments of AI/ML model architectures, training pipelines, inference endpoints, and deployment infrastructure
• Evaluate and operationalize AI-powered security tools (e.g., AI-assisted code review, anomaly detection, automated threat intelligence) to improve security operations

Enterprise & Infrastructure Security Oversight

• Provide technical oversight for infrastructure security including endpoint protection, network security, VPN, and enterprise security controls
• Ensure coherent security architecture standards across product, cloud infrastructure, and corporate environments
• Drive technical decisions for security tooling and controls that span the full environment—from developer laptops to production infrastructure

Across All Domains

• Partner across Product Security, Infrastructure Security, and Security Operations teams as well as engineering