RemoteLeaf Logo
Log in Sign up

Senior Manager, Security Risk Management

6 hours, 8 minutes ago
Canada
Full-time
Lead
Program Manager
Cybersecurity
CI/CD DevSecOps JIRA Looker OAuth SAML Tableau TLS
Apply Now
Affirm

Affirm

Affirm offers a transparent buy now, pay later service founded in 2012 by Max Levchin. No late fees or surprises, just a responsible way to pay over time for your favorite brands.

Diversified Financial Services
1K-5K
Founded 2012
View All Jobs 2

Description

  • Own and evolve Security Governance: maintain security policies, standards, and control frameworks (e.g., NIST CSF, ISO 27001) and map them to compliance requirements (SOC2, PCI, applicable regulations).
  • Lead program maturity planning and roadmaps, and run cross‑functional governance forums such as security steering committee and risk council.
  • Define and enforce security risk appetite and decision criteria for third‑party relationships, integrations, and high‑risk vendor decisions.
  • Lead the Security TPRM function across the vendor lifecycle: intake/onboarding, due diligence (IRQ/DDQ/SME reviews), contracting handoffs, ongoing monitoring, periodic reviews, and offboarding.
  • Ensure robust fourth‑party oversight (subprocessors) and manage remediation and QA cycles driven by Internal Audit and regulators.
  • Own program KPIs, dashboards, and reporting (Jira STPRM Ops, AuditBoard, Sigma/BI, MetricStream) and drive improvements in throughput, turnaround, backlog age, and remediation velocity.
  • Partner with Automation/TPRM Ops to operationalize threat‑modeling outputs, integration inventories, pre‑integration gates, CI/CD checks, and prioritize automations to reduce manual effort.
  • Implement and maintain QA processes, runbooks, SOPs for ticket ownership, and evidence standards to ensure consistent operations and auditability.
  • Build, coach, and scale the Governance and TPRM teams, and act as the primary security contact for Legal, Procurement, Privacy, Product, and Engineering while representing Security in executive, audit, and regulatory forums.

Requirements

  • 7+ years in information security, risk management, or GRC roles, with a minimum of 3 years managing teams or equivalent leadership experience.
  • Demonstrated ownership of a TPRM program or security governance program in a regulated or high‑growth technology environment (fintech preferred).
  • Strong knowledge of security frameworks (NIST, ISO) and compliance standards (SOC2, PCI), and vendor risk processes including IRQ/DDQ/SME assessments.
  • Hands‑on familiarity with TPRM/GRC tooling and observability platforms such as AuditBoard (or equivalent), Jira, and BI tools (Sigma/Tableau/Looker), and experience with integrations/APIs.
  • Proven experience translating audit findings into operational remediation plans and measurable outcomes, and serving as a liaison for Internal Audit and external assessments.
  • Practical experience with threat‑modeling approaches and third‑party integration security (API security, SSO/OAuth/SAML, TLS).
  • Experience scaling automation for GRC/TPRM programs and integrating security checks into CI/CD pipelines.
  • Excellent stakeholder management and communication skills across Legal, Procurement, Engineering, Product, and executive leadership.
  • Certifications such as CISSP, CISM, CRISC, or similar (preferred).
  • Prior experience in fintech or other highly regulated industries (preferred).

Benefits

  • CAN base pay range: $198,000 - $248,000 per year, with base pay part of a total compensation package that may include equity rewards.
  • Equity opportunities and an Employee Stock Purchase Plan (ESPP) to buy Affirm shares at a discount.
  • Monthly stipends for health, wellness, and technology spending (Flexible Spending Wallets).
  • 100% subsidized medical coverage and coverage for dental and vision for you and your dependents.
  • Remote‑first work environment with flexibility to work almost anywhere within the country of employment and occasional office presence for proximal roles.
  • Competitive vacation and holiday schedules to support time off and recharge.
  • Inclusive interview experience with reasonable accommodations and fair‑chance hiring considerations where applicable.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

PROCEPT BioRobotics

Program Launch Specialist - West - Denver

PROCEPT BioRobotics 251-1K Health Care Providers & Services

Program Launch Specialist at PROCEPT BioRobotics supporting Aquablation Therapy site launches in the Western U.S., responsible for driving rapid referral activation, early procedural adoption, and operational readiness during the first 90–120 days.

United States Full-time Senior Program Manager
$110k-$110k
8 minutes ago
Stripe

Engineering Program Manager, Infrastructure

Stripe 5K-10K Diversified Financial Services

Program Manager at Stripe on the Infrastructure team, partnering with engineering and corporate technology stakeholders to run and improve cross-cutting IT and work-tracking programs that increase efficiency, enable new systems, and align work across the organization.

United States Full-time Junior Program Manager
23 minutes ago
MCA Connect

CX Transformation Principal

MCA Connect 251-1K Internet Software & Services

MCA Connect is hiring a CX Transformation Principal to lead strategic and business transformation for enterprise customer experience programs, working with clients and delivery teams to modernize customer-facing processes and ensure technology drives measurable commercial outcomes.

Anywhere Full-time Lead Program Manager Solutions Engineer
$175k-$200k
Azure
23 minutes ago
Welocalize

Life Sciences Localization Quality Manager

Welocalize 1K-5K Professional Services

Quality Manager (Life Sciences Localization) at Welocalize responsible for managing supplier performance, client-facing language quality, and delivery quality across accounts to ensure on-time, defect-free multilingual content for global life sciences projects.

Greece Romania Full-time Senior Program Manager
Agile Machine Learning
38 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers