Oct 26, 2023
In order to support the Platform Security organization, we are seeking a Senior Staff Security Engineer for the Enterprise Security team. This person will primarily be responsible for vulnerability management, cloud security, perimeter security, and the hardening of critical environments. We collaborate closely with teams in infrastructure engineering that develop, run, and oversee compute, storage, caching, and security systems at scale. We also work closely with corporate/workforce security, incident response, security operations, identity, and access systems. Together with the appropriate teams, you will assist in creating solutions that are in line with the larger organizational objectives while resolving difficult security issues.
Work across multiple engineering functions and organizations to advocate for security practices.
Influence, align, and implement security features across engineering teams.
Demonstrate expertise across various domains to design and develop scalable solutions.
Configure and implement cloud security services, including identity and access management, detective controls, infrastructure protection, and data protection.
Specify, standardize, configure, and validate access controls across a wide range of cloud services. Integrate security tooling into existing infrastructure.
Develop security software configurations and improve tool functionality over time. Implement security controls across Affirm’s data infrastructure, including S3, DynamoDB, RDS, and Snowflake.
Decompose large, cross-team projects into individual tasks. Manage scope across teams and drive toward project closure.
A proven track record of tackling difficult and ambiguous challenges and driving them to success.
Capable of shifting focus in a complex, ever-changing environment to balance between security risks and business agility.
Strong in multiple domains including infrastructure operations (e.g. networking, systems, storage) and corporate IT, able to make technical trade-offs between short versus long-term security business decisions.
Hands-on experience deploying infrastructure within a Kubernetes environment.
Experience developing and deploying cloud services using Terraform.
Understanding of methods and systems used for auditing usage and access to AWS cloud services.
Experience managing security tooling, including Wiz, Auditbeat, Crowdstrike Falcon EDR, AWS System Manager Agent, or similar.
BS degree in a related field or equivalent experience. MS degree in a related field or equivalent experience is a plus.
We offer a competitive package, with some highlights listed below. However, the given figures are not guaranteed compensation ranges; rather, they are unbinding, approximate indications of what the salary may be your awareness. The actual salary may be less than the lower range or greater than the upper range, depending on skills and experience. No employee is guaranteed a salary at the amount of the lower range.
Flexible Spending Wallets for tech, food and lifestyle
Generous time off policies
Away Days - wellness days to take off work and recharge
Learning and development programs
Parental leave
Robust health benefits
Employee Resource & Community Groups