Senior Manager, Product Security Engineering (Platform Security)

Remote Canada

Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest.

Security is critical to affirm’s mission. Our goal is to embed a strong security culture across the company so we can build and operate honest financial products. The Platform Security team forms the backbone of affirm’s preventive and responsive security capabilities, protecting cloud-hosted systems and applications from threats.

The Sr. Manager, Product Security will lead the Platform Security team, partnering with engineering and cross-functional leaders to ensure affirm’s cloud platforms, infrastructure, and applications are secure and resilient.

Lead, develop, and mentor the Platform Security team, setting direction, managing performance, and ensuring strong communication and execution across distributed time zones.

Design, implement, and operate cloud security controls for AWS, GCP, and Azure to protect infrastructure, services, and applications from evolving threats.

Partner with engineering and product leadership to influence architecture decisions, define security requirements, and ensure alignment with affirm’s technical strategy.

Strengthen container security by guiding secure design and operation of containerized environments using Docker, Kubernetes, and related ecosystem tooling.

Drive adoption of DevSecOps practices by embedding automated security checks, workflows, and guardrails into CI/CD pipelines and developer tooling.

Communicate complex security risks, tradeoffs, and recommendations to technical and non-technical stakeholders with clarity, precision, and authority.

Develop and mature the platform security roadmap, identifying long-term risks, investments, and capabilities needed to strengthen affirm’s cloud posture.

Define, maintain, and enforce baseline security configurations, standards, and operational processes for cloud platforms, systems, and applications.

Create and maintain security metrics and dashboards that provide meaningful insights into control effectiveness, program maturity, and areas needing investment.

Support budget planning, resource allocation, and team development, ensuring the program can scale effectively and deliver strong outcomes over time.

Minimum five years of technical experience across cloud computing, security, identity and access management, or IT infrastructure.

At least five years of experience implementing automated workflows in CI/CD, DevOps, or DevSecOps environments.

At least five years experience with automation tools such as Terraform, Jenkins, GitLab, GitHub, or TFS.

At least five years experience with containers and related technologies (Docker, Podman, Kubernetes).

Strong understanding of attacker methodologies, advanced persistent threats, kill chain models, MITRE ATT&CK, and threat detection patterns.

Knowledge of emerging threats and security countermeasures; experience partnering with threat intelligence and detection teams to proactively reduce risk.

Strong project management and people leadership skills.

Attention to detail and the ability to drive complex initiatives with minimal supervision.

Ability to communicate technical issues clearly to non-technical audiences.

Passion for working with diverse teams and integrating multiple perspectives into decision-making.

Experience in leading and managing through impactful incidents with senior stakeholders and decision makers.

Bachelor’s or Master’s degree from an accredited college or university.

Relevant certifications a plus (e.g., CISSP, CCSP, CCSK, AWS Certified Security Specialty, AWS Solutions Architect).

Affirm is proud to be an equal-opportunity employer. Learn more about our D&I efforts here!

Base Pay Grade - R

Equity Grade - 9

Employees new to affirm typically come in at the start of the pay range. affirm focuses on providing a simple and transparent pay structure which is based on a variety of factors, including location, experience and job-related skills.

Base pay is part of a total compensation package that may include equity rewards, monthly stipends for health, wellness and tech spending, and benefits (including 100% subsidized medical coverage, dental and vision for you and your dependents.)

CAN base pay range per year: $206,000 - $256,000

Remote – CAN

Affirm is proud to be a remote-first company! The majority of our roles are remote and you can work almost anywhere within the country of employment. affirmers in proximal roles have the flexibility to work remotely, but will occasionally be required to work out of their assigned affirm office. A limited number of roles remain office-based due to the nature of their job responsibilities.

• Health care coverage - affirm covers all premiums for all levels of coverage for you and your dependents
• Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses
• Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge
• ESPP - An employee stock purchase plan enabling you to buy shares of affirm at a discount

We believe It’s On Us to provide an inclusive interview experience for all, including people with disabilities. We are happy to provide reasonable accommodations to candidates in need of individualized support during the hiring process.

[For U.S. positions that could be performed in Los Angeles or San Francisco] Pursuant to the San Francisco Fair Chance Ordinance and Los Angeles Fair Chance Initiative for Hiring Ordinance, affirm will consider for employment qualified applicants with arrest and conviction records.