Staff Product Security Engineer - Detection and Response

2 days ago

Apply Now

Receive Emails with Similar Jobs

Affirm

WebsiteLinkedInAll Job Openings

eCommerce • Payments • Installment Loans • Millennials • Financial Services

1001 - 5000

💰 Post-IPO Equity on 2021-01

Description

• Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest • Affirm recognizes that security is essential to the company’s ongoing success. • Our mission is to cultivate a culture of security at Affirm, enabling the company to succeed in building honest financial products. • The Security Operations (Sec Ops) program is the foundation of both preventive and responsive security practices to protect Affirm’s assets from an adverse security event • As a member of the Security Team at Affirm, you will be joining a team of fun, passionate and highly skilled individuals who like solving security challenges and enjoy learning new skills • We're seeking a Staff Security Operations (Sec Ops) Engineer who will help us build and mature the Security Operations Engineering program including Logging, Detection, and Response • This is a hands-on role where we are looking for engineering experience securing cloud environments • You will also participate in on-call duties along with the rest of the team and serve as engineering escalation point for the team • You will collaborate with internal Security teams (such as Platform Security, Corporate Security) and external teams (such as Infrastructure, Observability, Privacy/Compliance) to create and improve existing security operations capabilities • You will partner with these teams to solve complex security problems and design solutions that are aligned with broader organizational goals

Requirements

• A seasoned Security Operations Engineer with at least 5+ years of experience in Detection and Response with a significant engineering focus in a cloud heavy environment (AWS or similar) • Experience with developing native data ingestion and data normalization integrations to aid the Sec Ops monitoring & Detection program • Hands-on experience handling investigative, containment and remediation actions across environments and the ability to partner with Infrastructure, SRE teams during incidents • Demonstrated experience in common Sec Ops tooling including but not limited to: Elastic, Splunk, Hive, Crowdstrike Falcon or similar • Hands-on experience with container orchestration technologies (Kubernetes or similar) • Experience in creating automations to improve IR program workflows and capabilities (Python preferred) • Familiarity with Infrastructure-as-code (IaC) including experience developing and deploying cloud services using Terraform • Strong communication skills with the ability to switch communication styles when needed between engineering and non-engineering audiences • Ability to lead and drive large projects and work with cross functional stakeholders throughout the Engineering organization • Experience in building actionable threat intelligence & hunting programs is always a bonus! • This position requires either equivalent practical experience or a Bachelor’s degree in a related field

Benefits

• Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents • Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses • Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge • ESPP - An employee stock purchase plan enabling you to buy shares of Affirm at a discount