Security Risk Management Lead
$165k - $225kAffirm
Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest. Affirm values security as being critical to the company’s continued success. Our mission is to cultivate a culture of security at Affirm , enabling the company to succeed in building honest financial products. The Security Risk Management team is evolving beyond traditional governance, risk, and compliance; we are building an engineering driven program that designs, automates, and scales the controls, workflows, and tooling that protect Affirm and our customers. What You'll Do Lead and mature Affirm 's Security Third Party Program, including the design, implementation, and continuous improvement of processes, controls, and operational workflows Build and maintain automation that replaces manual GRC tasks: intake, triage, evidence collection, control validation, tracking, escalations, and reporting, using either Python, low code platforms, and agentic coding tools (Cursor, Claude, etc.) Design and operate workflow orchestration and integrations across systems like ticketing, GRC platforms, vendor management tools, identity providers, and cloud control planes Partner closely with Procurement, Legal, Engineering, IT, Compliance, Privacy, and business stakeholders to assess and manage security risk across third party relationships Translate ambiguous business and security requirements into practical, scalable program solutions and decision frameworks Identify opportunities to automate manual processes across the program and prototype solutions yourself rather than waiting on an engineering backlog Drive program operational excellence by establishing repeatable processes, service-level expectations, metrics, and reporting for third party security risk management Evaluate third party security controls, cloud architectures (AWS/GCP), integration patterns, and risk posture, and provide clear recommendations to stakeholders and leadership Conduct light threat models on high risk integrations and partner with Security SMEs for deeper diligence Manage and prioritize a portfolio of complex security risk reviews and initiatives simultaneously, balancing business enablement with risk reduction Partner with technical teams to implement or optimize systems and tools that support program automation and workflow orchestration Develop dashboards, reporting mechanisms, and program insights (SQL, BI tools, or custom tooling) that improve visibility into risk trends, bottlenecks, and program performance Act as a trusted advisor and SME on third party security risk management, helping stakeholders make informed, risk based decisions Contribute to the broader Security Risk Management strategy by identifying opportunities to scale, simplify, and strengthen security governance processes through engineering What We Look For 5+ years of experience in Information Security, Risk Management, Engineering and/or relevant roles Hands‑on experience using agentic coding tools (Cursor, Claude Code, Copilot, etc.) and a working knowledge of Python; you don't need to be a software engineer, but you should be fluent enough to read, modify, and run scripts, build automations, and ship small tools end‑to‑end Familiarity with cloud environments (AWS, GCP, or Azure) — IAM, logging, common services, and the security risks/controls that apply to cloud‑deployed third parties and integrations Excellent written and verbal communications skills Experience engineering solutions via Python, Claude, Cursor or other agentic coding tooling Experience with industry based information security & control frameworks (NIST Cyber Security Framework, ISO 2700x, SOC1&2(SSAE18), PCI DSS, NIST-800-53, FFIEC Cybersecurity Assessment Tool, SANS Top 20, etc.) BA or BS degree in Information Security, Cyber Security, Computer Science or related field or commensurate experience Attention to detail and experience with security practices and security tooling Demonstrated ability to drive projects towards completion Ability to understand and communicate technical issues to non‑technical teams Professional certification in Information Security or Risk Management (such as CISSP, CISM, CISA, CRISC, etc.) is a plus Base Pay Grade - L Equity Grade - 5 Employees new to Affirm typically come in at the start of the pay range. Affirm focuses on providing a simple and transparent pay structure which is based on a variety of factors, including location, experience and job-related skills. Base pay is part of a total compensation package that may include equity rewards, monthly stipends for health, wellness and tech spending, and benefits (including 100% subsidized medical coverage, dental and vision for you and your dependents). USA Pacific base pay range (CA, WA, NY, NJ, CT) per year: $165,000 - $225,000 USA Sapphire base pay range (all other U.S. states) per year: $146,000 - $206,000 Please note that visa sponsorship is not available for this position. Benefits Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge ESPP - An employee stock purchase plan enabling you to buy shares of Affirm at a discount We believe It’s On Us to provide an inclusive interview experience for all, including people with disabilities. We are happy to provide reasonable accommodations to candidates in need of individualized support during the hiring process. For U.S. positions that could be performed in Los Angeles or San Francisco, pursuant to the San Francisco Fair Chance Ordinance and Los Angeles Fair Chance Initiative for Hiring Ordinance, Affirm will consider for employment qualified applicants with arrest and conviction records. #J-18808-Ljbffr Affirm
$200k - $250k
A global technology company in Palo Alto seeks an Executive Protection Specialist responsible for physical security and risk management. This role entails close protection of executives, assessing security vulnerabilities, and collaborating with functional teams. The successful...SuggestedFlexible hours$160k - $190k
...About the role We are looking for a multifaceted Risk and Compliance Lead to lead our security compliance initiatives across the organization. You will... ...the security GRC program, including policy lifecycle management, risk register maintenance, and control framework alignment...SuggestedFull timeContract work- Decisive Point in Sunnyvale, California is seeking a Risk and Compliance Lead to enhance security compliance across the organization. The candidate will oversee security GRC programs, manage compliance efforts, and conduct risk assessments to mitigate risks effectively....Suggested
- CoreWeave in Sunnyvale is seeking a Security Risk Management Program Lead to shape and scale risk, assurance, and M&A integration workstreams. You will partner with Assurance Engineering to mature AI-assisted risk workflows and a KRI dashboard, moving pilots into BAU while...Suggested
$160k - $190k
...importance of flexibility and trust our employees to manage their schedules responsibly. This may include occasional... .... About the role We are looking for a multifaceted Risk and Compliance Lead to lead our security compliance initiatives across the organization. You will...SuggestedFull timeContract workFor contractorsFor subcontractorCasual workWork at officeRemote workDay shift- A leading technology platform in Sunnyvale is seeking a Lead Product Manager for Identity Verification to enhance security and user experiences. Responsible for leading a product team, you will... ...grasp of identity verification and risk management. This role offers competitive...
$90k
...Open Source Analyst, Team Lead Are you interested in joining an organization with a global reach? At Concentric, "We Manage Risk Everywhere to Keep People Safe." If you are passionate... ...management, executive protection, security operations, or business resiliency, Concentric...Currently hiringLocal areaImmediate startRemote workMonday to FridayNight shiftWeekend workDay shift- Live Nation Entertainment is seeking a Security Supervisor for Shoreline Amphitheatre. The... ...service during events at the venue. You will lead training, schedule assignments, and... ...priorities while reporting to the Security Manager. The position requires walking, lifting up...
$200k - $271k
Senior Manager, Technology Audit We are seeking a highly motivated... ...team. This role is crucial in leading and executing complex... ...assurance over Intuit’s technology risks, cloud environments, data privacy... ...key technology, product, security, and engineering leaders across...$75k
...individuals entering the facility, greeting them with a friendly and welcoming demeanor. Manage the issuance of visitor and parking passes, strictly adhering to all established security protocols. Professionally escort visitors to their appropriate destinations within...Hourly payWork at officeVisa sponsorship$116.88k - $158.13k
...Sonsini is looking for a Facilities Program Lead to join our firm. The Facilities Project... ...excellent critical thinking skills who can manage multiple responsibilities. This position... ...training Assist in evaluating operational risks and support existing programs and procedures...Work at officeWorldwideFlexible hours$240k - $280k
...together under one financial umbrella to reduce risk and unleash innovation. This model allows science and small teams of experts to lead the way. We build bridges to groundbreaking... ...workstream aligned and moving. Build and manage detailed production plans, timelines,...FreelanceWork at officeFlexible hours2 days per week3 days per week1 day per week$204k - $276k
Intuit Inc. is seeking an innovative Manager experienced in Fraud Risk Policy & Strategy to lead a team of analysts. You will develop expertise in consumer financial... ...will have a strong background in compliance, security, and analytics, with effective leadership and communication...- ...the primary point of contact during events in Mountain View, CA, ensuring smooth onsite execution. You will manage logistics, coordinate with catering, AV, security, and transportation, provide day‑of support, and capture event documentation. Requirements include a...
- LinkedIn is seeking a Senior Manager for their Trust Investigations team at the Mountain View, CA campus. This pivotal role combines leadership... ...members from sophisticated threats. The ideal candidate will lead diverse teams and manage critical trust and safety...
$164k - $192k
Job Summary As the Senior Applications Lead, Defense, you will help define and advance PsiQuantum's defense and national security applications strategy. Sitting in the Industry... ...feasibility, define project scope, identify risks, and develop paths toward customer‑facing work...Full time$190k - $270k
...Compensation $190K - $270K Platform Trust & Security Lead (Satellite / Firmware Security) Logos... ...: Drive the design, implementation, and management of platform-specific security controls,... ...-level interfaces. Threat Modeling and Risk Assessment: Conduct thorough threat...Full timeLocal areaWorldwide- ...with our innovation and ambition. Team Overview The SOX Risk & Compliance Office (SRCO) is a management‑led function purpose‑built to deliver a modern,... ...including AI governance. Role Summary We're looking for a Lead, SOX Program Strategy & Audit Excellence who thrives...Work experience placementWork at office
$219k - $305k
...functionally with Google engineers and product managers to identify and fight abuse and fraud... ...One Google solutions for industry-leading responsible AI applications. It is a global... ...backgrounds in operations, strategy, ethics, risk management, product management, and...Full time$170.6k - $390k
EY is seeking a Senior Manager for its National Consulting practice, focusing on Microsoft Enterprise Platform. This role involves leading transformation projects in AI, Security, and Cloud domains. Candidates should have a bachelor's degree and substantial experience in...$140k - $190k
...an experienced and proactive IT Helpdesk Lead to scale out our IT support function. In... ...the explicit goal of hiring, training, and managing a team of 2-3 IT Analysts as we scale.... ...platforms on their first day. Offboarding: Securely manage the retrieval of assets and...Temporary workWork at officeVisa sponsorshipFlexible hoursShift work- Dormont Manufacturing Co in Palo Alto is seeking a Governance, Risk, and Compliance (GRC) Lead. This role requires experience in regulatory frameworks... ...will possess strong communication skills, experience in managing risks, and familiarity with cybersecurity controls. This...
- PDS Tech Commercial is seeking a Project Manager to oversee telecom, network infrastructure, and data center deployment projects across... ...in high-visibility, customer-facing environments, with focus on risk management, change control, and schedule adherence across diverse...
- ...professional who will build and manage Commure’s employee data... ...scalable processes, reducing risk, preparing Commure for success... ...internal audits. Partner with Security on SOC 2 audit readiness for People... ...reviews, and handbook updates. Lead job classification reviews and...Full timeImmediate start
$152k - $206k
Intuit Inc. is seeking a Lead, SOX Program Strategy & Audit Excellence in Mountain View. This role demands extensive expertise in risk management and technology governance, focusing on automated and AI-related controls. The ideal candidate will collaborate closely with...- Come join Intuit as an IT SOX Lead Risk Advisor within the SOX Risk and Compliance Organization (SRCO). SRCO is a management-led function purpose-built to deliver a modern, sustainable, and risk-focused SOX program that scales with the business. SRCO enables Intuit's continued...Work at office3 days per week
- Cloud Software Group is looking for a Principal Security Technology Strategist to enhance customer security across North America. This role involves collaboration with IT and security teams to improve cybersecurity postures. The strategist will provide technical guidance...Remote job
- ...Shift Lead A Shift Lead is responsible for supporting the overall shift operations, sales performance, and execution of brand excellence... ...Opens and/or closes store as required. Performs all safety and security tasks as required to open and close the store. Observes the "...Hourly payPart timeFlexible hoursShift workDay shift
$190k - $270k
...Engineering Compensation $190K - $270K Security Platform Lead (CI/CD + Supply Chain Security +... ...supply chain. CI/CD System: Build and manage a high‑assurance Continuous Integration... ...Snyk and Semgrep) for use cases such as risk identification, vulnerability explanation...Full timeLocal areaWorldwide- Tesla Motors, Inc. is seeking a Global Supply Manager to lead end-to-end sourcing for next-generation AI hardware systems powering autonomous... ...will interface with engineering and executive teams to align on strategy and risk management. #J-18808-Ljbffr Tesla Motors, Inc.
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Risk Management Lead. Be the first to apply!
- risk Palo Alto, CA
- technology risk Palo Alto, CA
- at risk youth Palo Alto, CA
- geopolitical risk Palo Alto, CA
- risk assurance Palo Alto, CA
- vice president risk management Palo Alto, CA
- vp risk management Palo Alto, CA
- rn risk management Palo Alto, CA
- risk management coordinator Palo Alto, CA
- chemical risk assessment

