Senior Manager, Product Security Engineering (Platform Security)

Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest. Security is critical to Affirm’s mission. Our goal is to embed a strong security culture across the company so we can build and operate honest financial products. The Platform Security team forms the backbone of Affirm’s preventive and responsive security capabilities, protecting cloud-hosted systems and applications from threats.

• Lead, develop, and mentor the Platform Security team, setting direction, managing performance, and ensuring strong communication and execution across distributed time zones.
• Design, implement, and operate cloud security controls for AWS, GCP, and Azure to protect infrastructure, services, and applications from evolving threats.
• Partner with engineering and product leadership to influence architecture decisions, define security requirements, and ensure alignment with Affirm’s technical strategy.
• Strengthen container security by guiding secure design and operation of containerized environments using Docker, Kubernetes, and related ecosystem tooling.
• Drive adoption of DevSecOps practices by embedding automated security checks, workflows, and guardrails into CI/CD pipelines and developer tooling.
• Communicate complex security risks, tradeoffs, and recommendations to technical and non-technical stakeholders with clarity, precision, and authority.
• Develop and mature the platform security roadmap, identifying long-term risks, investments, and capabilities needed to strengthen Affirm’s cloud posture.
• Define, maintain, and enforce baseline security configurations, standards, and operational processes for cloud platforms, systems, and applications.
• Create and maintain security metrics and dashboards that provide meaningful insights into control effectiveness, program maturity, and areas needing investment.
• Support budget planning, resource allocation, and team development, ensuring the program can scale effectively and deliver strong outcomes over time.

• Minimum five years of technical experience across cloud computing, security, identity and access management, or IT infrastructure.
• At least five years of experience implementing automated workflows in CI/CD, DevOps, or DevSecOps environments.
• At least five years of experience with automation tools such as Terraform, Jenkins, GitLab, GitHub, or TFS.
• At least five years of experience with containers and related technologies (Docker, Podman, Kubernetes).
• Strong understanding of attacker methodologies, advanced persistent threats, kill chain models, MITRE ATT&CK, and threat detection patterns.
• Knowledge of emerging threats and security countermeasures; experience partnering with threat intelligence and detection teams to proactively reduce risk.
• Strong project management and people leadership skills.
• Attention to detail and the ability to drive complex initiatives with minimal supervision.
• Ability to communicate technical issues clearly to non-technical audiences.
• Passion for working with diverse teams and integrating multiple perspectives into decision-making.
• Experience in leading and managing through impactful incidents with senior stakeholders and decision makers.
• Bachelor’s or Master’s degree from an accredited college or university.
• Relevant certifications a plus (e.g., CISSP, CCSP, CCSK, AWS Certified Security Specialty, AWS Solutions Architect).

At Affirm, we value people above all else. Even if you don’t meet every listed requirement, we encourage you to apply. We want to meet people who believe in Affirm’s mission and can contribute in meaningful ways, not just those who check every box.

Affirm is proud to be an equal-opportunity employer. Learn more about our D&I efforts here!

Base Pay Grade - R

Equity Grade - 9

Base pay range per year: $206,000 - $256,000

Location: Remote - CAN

Affirm is proud to be a remote-first company. The majority of roles are remote and you can work almost anywhere within the country of employment. Some roles may require occasional office presence.

• Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents
• Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses
• Time off - competitive vacation and holiday schedules
• ESPP - employee stock purchase plan enabling you to buy shares at a discount

We believe it’s On Us to provide an inclusive interview experience for all, including people with disabilities. We provide reasonable accommodations to candidates in need of individualized support during the hiring process.

[For U.S. positions that could be performed in Los Angeles or San Francisco] Pursuant to local Fair Chance ordinances, Affirm will consider qualified applicants with arrest and conviction records.

By clicking "Submit Application," you acknowledge that you have read Affirm’s Global Candidate Privacy Notice and give informed consent to the collection, processing, use, and storage of your personal information as described therein.