Senior Security Operations Engineer, Incident Response

This is a fully remote position, open to applicants in Canada.

📋 Description

• Oversee security incidents from start to finish, encompassing detection, triage, containment, remediation, and post-incident analysis.

• Serve as the incident commander, ensuring effective decision-making and alignment among teams during high-stress scenarios.

• Perform hands-on investigations in cloud and endpoint environments to identify root causes and assess impacts.

• Collaborate with the Observability & Automation team to enhance detection capabilities, minimize noise, and create automated response playbooks.

• Contribute to and enhance incident response playbooks, runbooks, and documentation to boost readiness and consistency.

• Work alongside Security, Infrastructure, and Product teams to pinpoint vulnerabilities and fortify the incident response lifecycle.

• Communicate effectively throughout incidents, delivering clear updates to both technical and non-technical stakeholders.

⛳️ Requirements

• A minimum of 5 years of experience in Security Operations or Detection & Response, with substantial hands-on incident response in cloud environments (experience with AWS and EKS is highly preferred).

• Demonstrated capability to lead security incidents, including containment and remediation, in dynamic environments.

• Strong investigative and analytical abilities, with the skill to synthesize signals from diverse data sources.

• Familiarity with security tools such as SIEM and EDR platforms (e.g., Splunk, Elastic, SentinelOne, CrowdStrike, or similar).

• Comprehensive understanding of cloud security concepts and their application in practical scenarios.

• Excellent communication skills, with the ability to convey information clearly to both technical and non-technical audiences.

• Experience in developing or enhancing automation for incident response workflows (e.g., scripting in Python; familiarity with infrastructure-as-code is a plus).

🏝️ Benefits

• Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents.

• Flexible Spending Wallets - generous stipends for spending on technology, food, various lifestyle needs, and family planning expenses.

• Time off - competitive vacation and holiday schedules that allow you to take time off to rest and recharge.

• ESPP - An employee stock purchase plan that enables you to buy shares of Affirm at a discount.