Senior Manager, Security Risk Management

Affirm is seeking a Senior Manager to lead its Security Governance and Third-Party Risk Management (TPRM) functions. This role is pivotal in shaping the company's security risk posture, ensuring robust governance, and managing risks associated with third-party integrations. The successful candidate will drive policy and control frameworks, remediate audit findings, and build a high-performing team to execute vendor diligence and monitoring at scale.

Key responsibilities include owning the Security Governance program by maintaining and evolving security policies, standards, and control frameworks such as NIST CSF and ISO 27001. The role involves leading program maturity planning, defining security risk appetite for third-party relationships, and overseeing the TPRM function across the vendor lifecycle—from intake and due diligence to ongoing monitoring and offboarding. Additionally, the manager will implement operational excellence through KPIs, dashboards, and automation to improve throughput and remediation velocity.

The ideal candidate will have over seven years of experience in information security, risk management, or GRC roles, with at least three years in a managerial capacity. They should demonstrate ownership of a TPRM or security governance program in a regulated or high-growth technology environment, preferably in fintech. Strong knowledge of security frameworks, compliance standards, and vendor risk processes is essential, along with hands-on experience with TPRM/GRC tools and excellent stakeholder management skills.

Affirm offers a competitive compensation package, including a base salary, equity rewards, and monthly stipends for health, wellness, and technology expenses. Benefits include 100% subsidized medical coverage, dental and vision insurance for employees and their dependents. The company fosters a remote-first work environment, allowing employees to work from almost anywhere within their country of employment.

Joining Affirm means becoming part of a mission-driven company committed to reinventing credit to make it more honest and friendly. Employees have opportunities for professional growth, working in a collaborative environment that values transparency and innovation. This role offers the chance to make a significant impact on Affirm's security posture and contribute to the company's ongoing success.