Affirm
Staff Security Operations Engineer, Observability & Automation Engineering
Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest.
Affirm recognizes that security is essential to the company’s ongoing success. Our mission is to cultivate a culture of security at Affirm, enabling the company to succeed in building honest financial products. The Security Operations (Sec Ops) program is the foundation of both preventive and responsive security practices to protect Affirm’s assets from an adverse security event.
As a member of the Security Team at Affirm, you will be joining a team of fun, passionate and highly skilled individuals who like solving security challenges and enjoy learning new skills. We partner together with a team first mindset and are keen on redefining security in the fintech space.
We're seeking a Staff Security Operations (Sec Ops) Engineer who will help us build and mature the Security Operations Engineering program including Logging, Detection, and Response.
This is a hands-on role where we are looking for engineering experience particularly dealing with cloud environments. You will also participate in on-call duties along with the rest of the team and serve as engineering escalation point for the team.
You will also get to collaborate with internal Security teams (such as Platform Security, Corporate Security) and external teams (such as Infrastructure, Observability, Privacy/Compliance) to create and improve existing security operations capabilities. You will partner with these teams to solve complex security problems and help design solutions that are aligned with broader organizational goals.
What you’ll do
-
Serve as a hands-on technical leader to help mature our Logging & Detection Engineering program throughout our environment.
-
Build and enhance our current logging pipeline to help ingest the right data sources needed to improve our visibility.
-
Contribute to our detection program by helping write advanced detections based on frameworks such as MITRE ATT&CK.
-
Continuously tune existing detections to improve our detection fidelity and calibrate signals so we’re maximizing value while minimizing noise.
-
Contribute to engineering projects involved in building, maintaining and improving our current tooling.
-
Drive monitoring, detection and response including remediation for security incidents throughout our environment.
-
Be the senior escalation point for the team when needed for help with investigations and incidents particularly from an engineering escalation perspective.
-
Build automation between tools when needed to help improve logging, detection and response workflows.
-
Contribute to developing and maturing security incident response playbooks and processes.
-
Collaborate with cross functional teams across Affirm and lead key Security projects.
What we look for
-
A seasoned Security Operations Engineer with at least 5+ years of experience in Detection and Response with a significant engineering focus in a cloud heavy environment (AWS or similar).
-
Experience with developing native data ingestion and data normalization integrations to aid the Sec Ops monitoring & Detection program.
-
Hands-on experience handling investigative, containment and remediation actions across environments & ability to partner with Infrastructure, SRE teams as needed during incidents.
-
Demonstrated experience in common Sec Ops tooling including but not limited to: Elastic, Splunk, Hive, Crowdstrike Falcon or similar.
-
Hands-on experience with container orchestration technologies (Kubernetes or similar).
-
Experience in creating automations to improve IR program workflows and capabilities (Python scripting language preferred).
-
Familiarity with Infrastructure-as-code (IaaC) including experience developing and deploying cloud services using Terraform.
-
Strong communication skills with the ability to switch communication style when needed between engineering and non-engineering audiences.
-
Ability to lead and drive large projects and work with cross functional stakeholders throughout the Engineering organization.
-
Experience in building actionable threat intelligence & hunting programs is always a bonus!
Base Pay Grade - P
Equity Grade - 13
Employees new to Affirm typically come in at the start of the pay range. Affirm focuses on providing a simple and transparent pay structure which is based on a variety of factors, including location, experience and job-related skills.
Base pay is part of a total compensation package that may include equity rewards, monthly stipends for health, wellness and tech spending, and benefits (including 100% subsidized medical coverage, dental and vision for you and your dependents.)
USA base pay range (CA, WA, NY, NJ, CT) per year: $225,000 - $275,000
USA base pay range (all other U.S. states) per year: $200,000 - $250,000
Location: Remote - US
#LI-Remote
Affirm is proud to be a remote-first company! The majority of our roles are remote and you can work almost anywhere within the country of employment. Affirmers in proximal roles have the flexibility to work remotely, but will occasionally be required to work out of their assigned Affirm office. A limited number of roles remain office-based due to the nature of their job responsibilities.
We’re extremely proud to offer competitive benefits that are anchored to our core value of people come first. Some key highlights of our benefits package include:
- Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents
- Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses
- Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge
- ESPP - An employee stock purchase plan enabling you to buy shares of Affirm at a discount
We believe It’s On Us to provide an inclusive interview experience for all, including people with disabilities. We are happy to provide reasonable accommodations to candidates in need of individualized support during the hiring process.
[For U.S. positions that could be performed in Los Angeles or San Francisco] Pursuant to the San Francisco Fair Chance Ordinance and Los Angeles Fair Chance Initiative for Hiring Ordinance, Affirm will consider for employment qualified applicants with arrest and conviction records.
By clicking "Submit Application," you acknowledge that you have read Affirm's Global Candidate Privacy Notice and hereby freely and unambiguously give informed consent to the collection, processing, use, and storage of your personal information as described therein.
Top Skills
Similar Jobs at Affirm
What you need to know about the Colorado Tech Scene
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
