Affirm

Senior Platform Security Engineer

Affirm

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Manual Apply

Salary

💰 $169,000 - $240,000 per year

Job Level

Senior

Tech Stack

AWSCloudDynamoDBKubernetesTerraform

About the role

  • Affirm is looking for a Senior Security Engineer in the Enterprise Security team, primarily supporting the Infrastructure and Platform Security organization focusing on vulnerability management, cloud security, perimeter and network security, and hardening of critical environments.
  • We work closely with corporate/workforce security, incident response, security operations, identity and access systems and partner with infrastructure engineering teams that build, operate and manage compute, storage, caching and security systems at scale.
  • What you’ll do:
  • Drive infrastructure, network and perimeter security initiatives for hardening and segmentation.
  • Work across multiple engineering functions and organizations to advocate for security practices.
  • Influence, align and implement security features across engineering teams.
  • Demonstrate expertise across various domains to design and develop scalable solutions.
  • Configure and implement cloud security services, including identity and access management, detective controls, infrastructure protection, and data protection.
  • Specify, standardize, configure, and validate access controls across a wide range of cloud services. Integrate security tooling into existing infrastructure.
  • Develop security software configurations and improve tool functionality over time. Implement security controls across Affirm’s data infrastructure, including S3, DynamoDB, RDS, and Snowflake.
  • Decompose large, cross-team projects into individual tasks. Manage scope across teams and drive toward project closure.
  • What we look for:
  • A proven track record of tackling difficult and ambiguous challenges and driving them to success.
  • Capable of shifting focus in a complex, ever changing environment to balance between security risks and business agility.
  • Strong in multiple domains including infrastructure operations (e.g. networking, systems, storage), Corporate IT, able to make technical trade-offs between short versus long term security business decisions.
  • Hands-on experience deploying infrastructure within a Kubernetes environment.
  • Experience developing and deploying cloud services using Terraform.
  • Understanding of methods and systems used for auditing usage and access to AWS cloud services.
  • Experience managing security tooling, including Wiz, Auditbeat, Crowdstrike Falcon EDR, AWS System Manager Agent, or similar.
  • BS degree in related field or equivalent experience. MS degree in a related field or equivalent experience is a plus

Requirements

  • A proven track record of tackling difficult and ambiguous challenges and driving them to success
  • Capable of shifting focus in a complex, ever changing environment to balance between security risks and business agility
  • Strong in multiple domains including infrastructure operations (networking, systems, storage), Corporate IT, able to make technical trade-offs between short versus long term security business decisions
  • Hands-on experience deploying infrastructure within a Kubernetes environment
  • Experience developing and deploying cloud services using Terraform
  • Understanding of methods and systems used for auditing usage and access to AWS cloud services
  • Experience managing security tooling, including Wiz, Auditbeat, Crowdstrike Falcon EDR, AWS System Manager Agent, or similar
  • BS degree in related field or equivalent experience. MS degree in a related field or equivalent experience is a plus