Staff Product Security Engineer

🕒 April 2

🇺🇸 United States – Remote

💵 $200k - $275k / year

⏰ Full Time

🔴 Lead

👮‍♂️ Cybersecurity / Security Engineer

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Affirm

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 2012

💳 Fintech

👥 B2C

🛍️ eCommerce

💰 Post-IPO Equity on 2021-01

Fintech • B2C • eCommerce

Affirm is a financial technology company that offers a 'Buy Now, Pay Later' service, allowing consumers to make purchases and pay for them over time with flexible payment plans. Affirm eliminates hidden fees and compound interest, providing clear terms and conditions for its users. The company also offers the Affirm Card, a debit card that allows users to request to pay over time for larger purchases or pay in full for smaller ones. Affirm partners with various retailers across multiple categories, including electronics, apparel, and travel, providing customers with the convenience of paying over time at checkout both online and in physical stores. Affirm's services are integrated with Apple Pay, enabling customers to make payments seamlessly from their iPhone or iPad.

📋 Description

• Partner with Affirm product teams to ensure that security is included in every phase of the product development lifecycle. • Conduct threat modeling and architecture reviews to ensure threats are understood, documented, and mitigated. • Review and analyze product source code to identify security vulnerabilities and provide recommendations for secure implementation. • Seek out opportunities to automate processes when appropriate. • Identify emerging classes of vulnerabilities and developing solutions for them before they’re a problem. • Assist product teams in the development of security focused test cases to enforce security requirements. • Advise product teams on business security requirements early in the product development lifecycle. • Decompose large, cross-team projects into individual tasks. Manage scope across teams and drive toward project closure.

🎯 Requirements

• Deep understanding of web application architecture and design principles • Experience using modern software development and delivery techniques to develop cloud-based services. Python, Kotlin, Java, AWS, and Azure experience preferred. • Knowledge of common security flaws and resolution as published by OWASP, SANS, etc. • Experience with PCI or other regulated environments. • Experience conducting threat models for complex, distributed products using standard threat modeling techniques and methodologies. • Experience with standard authentication mechanisms, including SAML and OAuth2. • Understanding of continuous integration / continuous deployment processes and tools. • BS degree in related field or equivalent experience. MS degree in a related field or equivalent experience is a plus.

🏖️ Benefits

• Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents • Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses • Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge • ESPP - An employee stock purchase plan enabling you to buy shares of Affirm at a discount