Staff Security Engineer, Enterprise Security
Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest.
As a member of the Security Team at Affirm, you will be joining a team of fun, passionate and highly skilled individuals who like solving security challenges and enjoy learning new skills. We partner together with a team first mindset and are keen on redefining security in the fintech space.
We are looking for a Staff Security Engineer in the Enterprise Security team, primarily supporting the Security Operations program including Logging, Detection, Response and Automation. In this role, you will collaborate with internal Security teams (such as Platform Security, Corporate Security) and other external teams (such as Infrastructure, Observability, Privacy/Compliance) to create and improve enterprise security capabilities. You will partner with the right teams to solve complex security problems and help design solutions that are aligned with broader organizational goals.
What You'll Do
- Drive monitoring, detection and response including remediation for security incidents and investigations throughout our environment.
- Build and enhance our current logging pipeline to help ingest the right data sources needed to improve our visibility.
- Integrate security tooling into existing infrastructure. Develop security software configurations and improve tool functionality over time.
- Build automation between tools when needed to help improve logging, detection and response workflows.
- Contribute to our detection program by helping write detections based on frameworks such as MITRE ATT&CK.
- Configure and implement cloud security services, including identity and access management, detective controls, infrastructure protection, and data protection.
- Contribute to developing and maturing security incident response playbooks and processes.
- Collaborate with cross functional teams across Affirm and lead key Security projects.
- Be the senior escalation point for the team when needed for help with investigations and incidents.
What We Look For
- A seasoned Enterprise Security engineer with a strong ability to analyze, parse and correlate information against data from multiple sources and when needed engineer solutions to do the same.
- Experience leading investigations and incidents including containment actions and remediation when needed in a cloud heavy environment (AWS preferred).
- Demonstrated experience in common Enterprise Security tooling including but not limited to: Elastic/Splunk, CrowdStrike Falcon, Auditbeat or similar.
- Experience with developing native data ingestion and data normalization integrations.
- Familiarity with container orchestration with container orchestration technologies (Kubernetes).
- Experience developing and deploying cloud services using Infrastructure as code with Terraform or similar.
- Experience in developing API integrations and automations to improve Enterprise Security workflows and capabilities (Python or similar language).
- Ability to lead and drive cross functional projects with stakeholders throughout the organization.
- Strong communication skills with the ability to switch communication style when needed between technical and non-technical audiences.
- Experience in applying IAM controls across a variety of users, applications and services is a bonus!
Compensation & Benefits
We offer a competitive package, with some highlights listed below:
- Flexible Spending Wallets for tech, food and lifestyle
- Generous time off policies
- Away Days - wellness days to take off work and recharge
- Learning & Development programs
- Parental leave
- Robust health benefits
- Employee Resource & Community Groups
We are able to offer visa sponsorship for this role, but do require that someone is based in Spain for the role.
Location - Remote Spain
Affirm is proud to be a remote-first company! The majority of our roles are remote and you can work almost anywhere within the country of employment. Affirmers in proximal roles have the flexibility to work remotely, but will occasionally be required to work out of their assigned Affirm office. A limited number of roles remain office-based due to the nature of their job responsibilities.
We have a simple and transparent remote-first grade-based compensation structure. Offer amounts within the range are based on a number of factors including but not limited to job-related skills, experience, and relevant education or training. Across the broader organization, certain roles are eligible for equity awards upon hire, promotion, tenure milestones and for performance.
We’re extremely proud to offer competitive benefits that are anchored to our core value of people come first. Some key highlights of our benefits package include:
- Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents
- Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses
- Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge
- ESPP - An employee stock purchase plan enabling you to buy shares of Affirm at a discount
We believe It’s On Us to provide an inclusive interview experience for all, including people with disabilities. We are happy to provide reasonable accommodations to candidates in need of individualized support during the hiring process.