Staff Security Operations Engineer, Observability & Automation Engineering

Remote US

Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest.

Affirm recognizes that security is essential to the company’s ongoing success. Our mission is to cultivate a culture of security at Affirm, enabling the company to succeed in building honest financial products. The Security Operations (Sec Ops) program is the foundation of both preventive and responsive security practices to protect Affirm’s assets from an adverse security event.

As a member of the Security Team at Affirm, you will be joining a team of fun, passionate and highly skilled individuals who like solving security challenges and enjoy learning new skills. We partner together with a team first mindset and are keen on redefining security in the fintech space.

We're seeking a Staff Security Operations (Sec Ops) Engineer who will help us build and mature the Security Operations Engineering program including Logging, Detection, and Response.

This is a hands-on role where we are looking for engineering experience particularly dealing with cloud environments. You will also participate in on-call duties along with the rest of the team and serve as engineering escalation point for the team.

You will also get to collaborate with internal Security teams (such as Platform Security, Corporate Security) and external teams (such as Infrastructure, Observability, Privacy/Compliance) to create and improve existing security operations capabilities. You will partner with these teams to solve complex security problems and help design solutions that are aligned with broader organizational goals.

What you’ll do

Serve as a hands-on technical leader to help mature our Logging & Detection Engineering program throughout our environment.

Build and enhance our current logging pipeline to help ingest the right data sources needed to improve our visibility.

Contribute to our detection program by helping write advanced detections based on frameworks such as MITRE ATT&CK.

Continuously tune existing detections to improve our detection fidelity and calibrate signals so we’re maximizing value while minimizing noise.

Contribute to engineering projects involved in building, maintaining and improving our current tooling.

Drive monitoring, detection and response including remediation for security incidents throughout our environment.

Be the senior escalation point for the team when needed for help with investigations and incidents particularly from an engineering escalation perspective.

Build automation between tools when needed to help improve logging, detection and response workflows.

Contribute to developing and maturing security incident response playbooks and processes.

Collaborate with cross functional teams across Affirm and lead key Security projects.

What we look for

A seasoned Security Operations Engineer with at least 5+ years of experience in Detection and Response with a significant engineering focus in a cloud heavy environment (AWS or similar).

Experience with developing native data ingestion and data normalization integrations to aid the Sec Ops monitoring & Detection program.

Hands-on experience handling investigative, containment and remediation actions across environments & ability to partner with Infrastructure, SRE teams as needed during incidents.

Demonstrated experience in common Sec Ops tooling including but not limited to: Elastic, Splunk, Hive, Crowdstrike Falcon or similar.

Hands-on experience with container orchestration technologies (Kubernetes or similar).

Experience in creating automations to improve IR program workflows and capabilities (Python scripting language preferred).

Familiarity with Infrastructure-as-code (IaaC) including experience developing and deploying cloud services using Terraform.

Strong communication skills with the ability to switch communication style when needed between engineering and non-engineering audiences.

Ability to lead and drive large projects and work with cross functional stakeholders throughout the Engineering organization.

Experience in building actionable threat intelligence & hunting programs is always a bonus!

Base Pay Grade - P

Equity Grade - 13

Employees new to Affirm typically come in at the start of the pay range. Affirm focuses on providing a simple and transparent pay structure which is based on a variety of factors, including location, experience and job-related skills.

Base pay is part of a total compensation package that may include equity rewards, monthly stipends for health, wellness and tech spending, and benefits (including 100% subsidized medical coverage, dental and vision for you and your dependents.)

USA base pay range (CA, WA, NY, NJ, CT) per year: $225,000 - $275,000

USA base pay range (all other U.S. states) per year: $200,000 - $250,000

Location: Remote - US

Affirm is proud to be a remote-first company! The majority of our roles are remote and you can work almost anywhere within the country of employment. Affirmers in proximal roles have the flexibility to work remotely, but will occasionally be required to work out of their assigned Affirm office. A limited number of roles remain office-based due to the nature of their job responsibilities.

We’re extremely proud to offer competitive benefits that are anchored to our core value of people come first. Some key highlights of our benefits package include:

• Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents
• Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses
• Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge
• ESPP - An employee stock purchase plan enabling you to buy shares of Affirm at a discount

We believe It’s On Us to provide an inclusive interview experience for all, including people with disabilities. We are happy to provide reasonable accommodations to candidates in need of individualized support during the hiring process.

[For U.S. positions that could be performed in Los Angeles or San Francisco] Pursuant to the San Francisco Fair Chance Ordinance and Los Angeles Fair Chance Initiative for Hiring Ordinance, Affirm will consider for employment qualified applicants with arrest and conviction records.

By clicking "Submit Application," you acknowledge that you have read Affirm'sGlobal Candidate Privacy Notice and hereby freely and unambiguously give informed consent to the collection, processing, use, and storage of your personal information as described therein.

*

indicates a required field

First Name *

Last Name *

Email *

Phone *

Resume/CV *

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

LinkedIn Profile

Current Company

Preferred Name *

Pronouns * Select...

Are you legally authorized to work in the United States? * Select...

Do you now or in the future requiresponsorshipfor employmentvisastatus (e.g., H-1B,TN, E-3, F-1 visastatus)? * Select...

Which U.S. State or Canadian Province do you reside in? * Select...

How did you first learn about Affirm as an employer? * Select...

GitHub

Twitter

Other Links

Have you previously been employed at Affirm for any length of time? * Select...

How do you identify? (gender identity) Select...

Do you identify as LGBTQ+? Select...

How do you identify? (race/ethnicity) Select...

What is your veteran status? Select...

What is your disability status? Select...

For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file.

As set forth in Affirm’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law.

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Select...

Form CC-305

Page 1 of 1

OMB Control Number 1250-0005

Expires 04/30/2026

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp .

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

• Alcohol or other substance use disorder (not currently using drugs illegally)
• Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
• Blind or low vision
• Cancer (past or present)
• Cardiovascular or heart disease
• Celiac disease
• Cerebral palsy
• Deaf or serious difficulty hearing
• Diabetes
• Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
• Epilepsy or other seizure disorder
• Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
• Intellectual or developmental disability
• Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
• Missing limbs or partially missing limbs
• Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
• Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
• Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
• Partial or complete paralysis (any cause)
• Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
• Short stature (dwarfism)
• Traumatic brain injury

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.