Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Security Risk Management Lead

$165k - $225k

Affirm

Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest. Affirm values security as being critical to the company’s continued success. Our mission is to cultivate a culture of security at Affirm , enabling the company to succeed in building honest financial products. The Security Risk Management team is evolving beyond traditional governance, risk, and compliance; we are building an engineering driven program that designs, automates, and scales the controls, workflows, and tooling that protect Affirm and our customers. What You'll Do Lead and mature Affirm 's Security Third Party Program, including the design, implementation, and continuous improvement of processes, controls, and operational workflows Build and maintain automation that replaces manual GRC tasks: intake, triage, evidence collection, control validation, tracking, escalations, and reporting, using either Python, low code platforms, and agentic coding tools (Cursor, Claude, etc.) Design and operate workflow orchestration and integrations across systems like ticketing, GRC platforms, vendor management tools, identity providers, and cloud control planes Partner closely with Procurement, Legal, Engineering, IT, Compliance, Privacy, and business stakeholders to assess and manage security risk across third party relationships Translate ambiguous business and security requirements into practical, scalable program solutions and decision frameworks Identify opportunities to automate manual processes across the program and prototype solutions yourself rather than waiting on an engineering backlog Drive program operational excellence by establishing repeatable processes, service-level expectations, metrics, and reporting for third party security risk management Evaluate third party security controls, cloud architectures (AWS/GCP), integration patterns, and risk posture, and provide clear recommendations to stakeholders and leadership Conduct light threat models on high risk integrations and partner with Security SMEs for deeper diligence Manage and prioritize a portfolio of complex security risk reviews and initiatives simultaneously, balancing business enablement with risk reduction Partner with technical teams to implement or optimize systems and tools that support program automation and workflow orchestration Develop dashboards, reporting mechanisms, and program insights (SQL, BI tools, or custom tooling) that improve visibility into risk trends, bottlenecks, and program performance Act as a trusted advisor and SME on third party security risk management, helping stakeholders make informed, risk based decisions Contribute to the broader Security Risk Management strategy by identifying opportunities to scale, simplify, and strengthen security governance processes through engineering What We Look For 5+ years of experience in Information Security, Risk Management, Engineering and/or relevant roles Hands‑on experience using agentic coding tools (Cursor, Claude Code, Copilot, etc.) and a working knowledge of Python; you don't need to be a software engineer, but you should be fluent enough to read, modify, and run scripts, build automations, and ship small tools end‑to‑end Familiarity with cloud environments (AWS, GCP, or Azure) — IAM, logging, common services, and the security risks/controls that apply to cloud‑deployed third parties and integrations Excellent written and verbal communications skills Experience engineering solutions via Python, Claude, Cursor or other agentic coding tooling Experience with industry based information security & control frameworks (NIST Cyber Security Framework, ISO 2700x, SOC1&2(SSAE18), PCI DSS, NIST-800-53, FFIEC Cybersecurity Assessment Tool, SANS Top 20, etc.) BA or BS degree in Information Security, Cyber Security, Computer Science or related field or commensurate experience Attention to detail and experience with security practices and security tooling Demonstrated ability to drive projects towards completion Ability to understand and communicate technical issues to non‑technical teams Professional certification in Information Security or Risk Management (such as CISSP, CISM, CISA, CRISC, etc.) is a plus Base Pay Grade - L Equity Grade - 5 Employees new to Affirm typically come in at the start of the pay range. Affirm focuses on providing a simple and transparent pay structure which is based on a variety of factors, including location, experience and job-related skills. Base pay is part of a total compensation package that may include equity rewards, monthly stipends for health, wellness and tech spending, and benefits (including 100% subsidized medical coverage, dental and vision for you and your dependents). USA Pacific base pay range (CA, WA, NY, NJ, CT) per year: $165,000 - $225,000 USA Sapphire base pay range (all other U.S. states) per year: $146,000 - $206,000 Please note that visa sponsorship is not available for this position. Benefits Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge ESPP - An employee stock purchase plan enabling you to buy shares of Affirm at a discount We believe It’s On Us to provide an inclusive interview experience for all, including people with disabilities. We are happy to provide reasonable accommodations to candidates in need of individualized support during the hiring process. For U.S. positions that could be performed in Los Angeles or San Francisco, pursuant to the San Francisco Fair Chance Ordinance and Los Angeles Fair Chance Initiative for Hiring Ordinance, Affirm will consider for employment qualified applicants with arrest and conviction records. #J-18808-Ljbffr Affirm

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Security Risk Management Lead in Palo Alto, CA vacancy
  • $200k - $250k

    A global technology company in Palo Alto seeks an Executive Protection Specialist responsible for physical security and risk management. This role entails close protection of executives, assessing security vulnerabilities, and collaborating with functional teams. The successful... 
    Suggested
    Flexible hours

    HP Inc.

    Palo Alto, CA
    20 hours ago
  • $160k - $190k

     ...About the role We are looking for a multifaceted Risk and Compliance Lead to lead our security compliance initiatives across the organization. You will...  ...the security GRC program, including policy lifecycle management, risk register maintenance, and control framework alignment... 
    Suggested
    Full time
    Contract work

    Applied Intuition

    Sunnyvale, CA
    20 hours ago
  • Decisive Point in Sunnyvale, California is seeking a Risk and Compliance Lead to enhance security compliance across the organization. The candidate will oversee security GRC programs, manage compliance efforts, and conduct risk assessments to mitigate risks effectively.... 
    Suggested

    Decisive Point

    Sunnyvale, CA
    3 days ago
  • CoreWeave in Sunnyvale is seeking a Security Risk Management Program Lead to shape and scale risk, assurance, and M&A integration workstreams. You will partner with Assurance Engineering to mature AI-assisted risk workflows and a KRI dashboard, moving pilots into BAU while... 
    Suggested

    CoreWeave

    Sunnyvale, CA
    1 day ago
  • $160k - $190k

     ...importance of flexibility and trust our employees to manage their schedules responsibly. This may include occasional...  .... About the role We are looking for a multifaceted Risk and Compliance Lead to lead our security compliance initiatives across the organization. You will... 
    Suggested
    Full time
    Contract work
    For contractors
    For subcontractor
    Casual work
    Work at office
    Remote work
    Day shift

    Decisive Point

    Sunnyvale, CA
    3 days ago
  • A leading technology platform in Sunnyvale is seeking a Lead Product Manager for Identity Verification to enhance security and user experiences. Responsible for leading a product team, you will...  ...grasp of identity verification and risk management. This role offers competitive... 

    Uber

    Sunnyvale, CA
    1 day ago
  • $90k

     ...Open Source Analyst, Team Lead Are you interested in joining an organization with a global reach? At Concentric, "We Manage Risk Everywhere to Keep People Safe." If you are passionate...  ...management, executive protection, security operations, or business resiliency, Concentric... 
    Currently hiring
    Local area
    Immediate start
    Remote work
    Monday to Friday
    Night shift
    Weekend work
    Day shift

    Concentric Advisors

    Mountain View, CA
    20 hours ago
  • Live Nation Entertainment is seeking a Security Supervisor for Shoreline Amphitheatre. The...  ...service during events at the venue. You will lead training, schedule assignments, and...  ...priorities while reporting to the Security Manager. The position requires walking, lifting up... 

    Dormont Manufacturing Co

    Mountain View, CA
    3 days ago
  • $200k - $271k

    Senior Manager, Technology Audit We are seeking a highly motivated...  ...team. This role is crucial in leading and executing complex...  ...assurance over Intuit’s technology risks, cloud environments, data privacy...  ...key technology, product, security, and engineering leaders across... 

    Intuit Inc.

    Mountain View, CA
    3 days ago
  • $75k

     ...individuals entering the facility, greeting them with a friendly and welcoming demeanor. Manage the issuance of visitor and parking passes, strictly adhering to all established security protocols. Professionally escort visitors to their appropriate destinations within... 
    Hourly pay
    Work at office
    Visa sponsorship

    CBRE

    Palo Alto, CA
    4 days ago
  • $116.88k - $158.13k

     ...Sonsini is looking for a Facilities Program Lead to join our firm. The Facilities Project...  ...excellent critical thinking skills who can manage multiple responsibilities. This position...  ...training Assist in evaluating operational risks and support existing programs and procedures... 
    Work at office
    Worldwide
    Flexible hours

    Wilson-Sonsini-Goodrich-

    Palo Alto, CA
    1 day ago
  • $240k - $280k

     ...together under one financial umbrella to reduce risk and unleash innovation. This model allows science and small teams of experts to lead the way. We build bridges to groundbreaking...  ...workstream aligned and moving. Build and manage detailed production plans, timelines,... 
    Freelance
    Work at office
    Flexible hours
    2 days per week
    3 days per week
    1 day per week

    JobRx, Inc.

    Palo Alto, CA
    3 days ago
  • $204k - $276k

    Intuit Inc. is seeking an innovative Manager experienced in Fraud Risk Policy & Strategy to lead a team of analysts. You will develop expertise in consumer financial...  ...will have a strong background in compliance, security, and analytics, with effective leadership and communication... 

    Intuit Inc.

    Mountain View, CA
    3 days ago
  •  ...the primary point of contact during events in Mountain View, CA, ensuring smooth onsite execution. You will manage logistics, coordinate with catering, AV, security, and transportation, provide day‑of support, and capture event documentation. Requirements include a... 

    Maritz

    Mountain View, CA
    2 days ago
  • LinkedIn is seeking a Senior Manager for their Trust Investigations team at the Mountain View, CA campus. This pivotal role combines leadership...  ...members from sophisticated threats. The ideal candidate will lead diverse teams and manage critical trust and safety... 

    LinkedIn

    Mountain View, CA
    20 hours ago
  • $164k - $192k

    Job Summary As the Senior Applications Lead, Defense, you will help define and advance PsiQuantum's defense and national security applications strategy. Sitting in the Industry...  ...feasibility, define project scope, identify risks, and develop paths toward customer‑facing work... 
    Full time

    PSI Quantum

    Palo Alto, CA
    1 day ago
  • $190k - $270k

     ...Compensation $190K - $270K Platform Trust & Security Lead (Satellite / Firmware Security) Logos...  ...: Drive the design, implementation, and management of platform-specific security controls,...  ...-level interfaces. Threat Modeling and Risk Assessment: Conduct thorough threat... 
    Full time
    Local area
    Worldwide

    Logos Space

    Mountain View, CA
    1 day ago
  •  ...with our innovation and ambition. Team Overview The SOX Risk & Compliance Office (SRCO) is a management‑led function purpose‑built to deliver a modern,...  ...including AI governance. Role Summary We're looking for a Lead, SOX Program Strategy & Audit Excellence who thrives... 
    Work experience placement
    Work at office

    Intuit

    Mountain View, CA
    2 days ago
  • $219k - $305k

     ...functionally with Google engineers and product managers to identify and fight abuse and fraud...  ...One Google solutions for industry-leading responsible AI applications. It is a global...  ...backgrounds in operations, strategy, ethics, risk management, product management, and... 
    Full time

    Google Inc.

    Mountain View, CA
    1 day ago
  • $170.6k - $390k

    EY is seeking a Senior Manager for its National Consulting practice, focusing on Microsoft Enterprise Platform. This role involves leading transformation projects in AI, Security, and Cloud domains. Candidates should have a bachelor's degree and substantial experience in... 

    EY

    Palo Alto, CA
    1 day ago
  • $140k - $190k

     ...an experienced and proactive IT Helpdesk Lead to scale out our IT support function. In...  ...the explicit goal of hiring, training, and managing a team of 2-3 IT Analysts as we scale....  ...platforms on their first day. Offboarding: Securely manage the retrieval of assets and... 
    Temporary work
    Work at office
    Visa sponsorship
    Flexible hours
    Shift work

    Applied Labs, Inc.

    Mountain View, CA
    1 day ago
  • Dormont Manufacturing Co in Palo Alto is seeking a Governance, Risk, and Compliance (GRC) Lead. This role requires experience in regulatory frameworks...  ...will possess strong communication skills, experience in managing risks, and familiarity with cybersecurity controls. This... 

    Dormont Manufacturing Co

    Palo Alto, CA
    1 day ago
  • PDS Tech Commercial is seeking a Project Manager to oversee telecom, network infrastructure, and data center deployment projects across...  ...in high-visibility, customer-facing environments, with focus on risk management, change control, and schedule adherence across diverse... 

    PDS Tech Commercial

    Palo Alto, CA
    3 days ago
  •  ...professional who will build and manage Commure’s employee data...  ...scalable processes, reducing risk, preparing Commure for success...  ...internal audits. Partner with Security on SOC 2 audit readiness for People...  ...reviews, and handbook updates. Lead job classification reviews and... 
    Full time
    Immediate start

    Commure

    Mountain View, CA
    20 hours ago
  • $152k - $206k

    Intuit Inc. is seeking a Lead, SOX Program Strategy & Audit Excellence in Mountain View. This role demands extensive expertise in risk management and technology governance, focusing on automated and AI-related controls. The ideal candidate will collaborate closely with... 

    Intuit Inc.

    Mountain View, CA
    2 days ago
  • Come join Intuit as an IT SOX Lead Risk Advisor within the SOX Risk and Compliance Organization (SRCO). SRCO is a management-led function purpose-built to deliver a modern, sustainable, and risk-focused SOX program that scales with the business. SRCO enables Intuit's continued... 
    Work at office
    3 days per week

    Intuit Inc.

    Mountain View, CA
    20 hours ago
  • Cloud Software Group is looking for a Principal Security Technology Strategist to enhance customer security across North America. This role involves collaboration with IT and security teams to improve cybersecurity postures. The strategist will provide technical guidance... 
    Remote job

    Cloud Software Group

    Palo Alto, CA
    4 days ago
  •  ...Shift Lead A Shift Lead is responsible for supporting the overall shift operations, sales performance, and execution of brand excellence...  ...Opens and/or closes store as required. Performs all safety and security tasks as required to open and close the store. Observes the "... 
    Hourly pay
    Part time
    Flexible hours
    Shift work
    Day shift

    Jamba

    Mountain View, CA
    2 days ago
  • $190k - $270k

     ...Engineering Compensation $190K - $270K Security Platform Lead (CI/CD + Supply Chain Security +...  ...supply chain. CI/CD System: Build and manage a high‑assurance Continuous Integration...  ...Snyk and Semgrep) for use cases such as risk identification, vulnerability explanation... 
    Full time
    Local area
    Worldwide

    Logos Space

    Mountain View, CA
    1 day ago
  • Tesla Motors, Inc. is seeking a Global Supply Manager to lead end-to-end sourcing for next-generation AI hardware systems powering autonomous...  ...will interface with engineering and executive teams to align on strategy and risk management. #J-18808-Ljbffr Tesla Motors, Inc.

    Tesla Motors, Inc.

    Palo Alto, CA
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Security Risk Management Lead. Be the first to apply!