Staff Security Operations Engineer, Observability & Automation Engineering

Join us as a Staff Security Operations Engineer, Observability & Automation Engineering at Affirm.

Affirm is transforming credit to be more honest and friendly, offering consumers the flexibility to buy now and pay later without hidden fees or interest. Security is vital to our success, and our Security Operations (Sec Ops) program underpins our preventive and responsive security practices to protect assets.

As part of our Security Team, you will work with passionate, skilled professionals who enjoy tackling security challenges and innovating in fintech security. We seek a Staff Security Operations Engineer to develop and mature our Logging, Detection, and Response programs, involving hands-on engineering experience in cloud environments. You will participate in on-call duties and serve as an escalation point for engineering issues.

You will collaborate with internal teams (Platform Security, Corporate Security) and external teams (Infrastructure, Observability, Privacy/Compliance) to enhance security operations capabilities, solving complex problems and designing aligned solutions.

1. Lead and mature our Logging & Detection Engineering programs across environments.
2. Enhance our logging pipeline to improve visibility.
3. Develop advanced detections based on frameworks like MITRE ATT&CK.
4. Tune detections to maximize value and reduce noise.
5. Contribute to building and maintaining security tooling.
6. Drive incident detection, response, and remediation efforts.
7. Serve as the senior escalation point for investigations and incidents.
8. Automate workflows between tools to improve efficiency.
9. Develop and refine incident response playbooks and processes.
10. Lead security projects across teams.

• At least 5+ years in Detection and Response with a focus on engineering in cloud environments (AWS or similar).
• Experience with data ingestion and normalization for Sec Ops monitoring.
• Hands-on experience with investigations, containment, and remediation, partnering with Infrastructure and SRE teams.
• Proficiency with security tools like Elastic, Splunk, Hive, Crowdstrike Falcon, etc.
• Experience with container orchestration (Kubernetes or similar).
• Automation skills, preferably with Python scripting.
• Knowledge of Infrastructure-as-Code, especially Terraform.
• Strong communication skills for technical and non-technical audiences.
• Ability to lead large projects and collaborate across teams.
• Experience in threat intelligence and hunting programs is a plus.

Base pay grade: P, Equity grade: 13. Compensation includes salary, equity, stipends, and benefits such as health coverage, wellness stipends, and more. Location: Remote within the US. Affirm offers competitive benefits and an inclusive hiring process.