Senior Manager, Security Awareness Program Manager
Remote US
Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest.
Affirm values security as being critical to the companyâs continued success. Our mission is to cultivate a culture of security at Affirm, enabling the company to succeed in building honest financial products. The Security Risk Management team builds and deploys common governance, risk, and compliance processes and controls, conducts audits, and ensures that technologies and business processes are built with data protection and compliance in mind.
What you'll do
- Design & manage Affirmâs Security awareness campaigns which meet all industry regulations, standards, and compliance requirements.
- Drive a culture of security awareness within the organization by providing security training and guidance to staff on cybersecurity best practices.
- Own all security communications to internal stakeholders & Affirm customers
- Partner with Security, Product, & Eng teams on building better consumer Security content within the Affirm App
- Create and drive engaging and informative security awareness materials such as newsletters, emails, videos, webinars, and training modulesÂ
- Ability to fluently communicate security risks to non-experts to empower business decisions with valuable, actionable information
- Develop, curate, and disseminate security documentation, ensuring awareness amongst stakeholders and employees
- Build & Manage a Security Guidance Hub aiming to provide consistent, actionable, self-service security guidance to engineers, product teams, operations and others
- Partner with Product Security and enhance the current Security Champions program
- Create a metrics framework that can effectively measure Security Awareness
What we look for
- Crystal clear verbal and written communicationâpeople love how your materials and documentation tell them exactly what they need to know so they act in a secure manner, reducing risk to our organization.
- Proven experience in a similar role developing and implementing security awareness programs.
- 8-10 years of risk management, information security, or other relevant experience working with technical teams and balancing risk against business need.
- Experience with e-learning platforms and creating engaging training materials
- Excellent project management and collaboration skillsâsetting goals and priorities, taking into account dependencies, and handling execution from start to finish.
- A drive to solve difficult problems and evolve the status quo with technical and non-technical solutionsâ-youâre never satisfied by just ticking a box.
- Passion for working with diverse teams and âŚ
This job isn't fresh anymore!
Search Fresh JobsJob Profile
Limited number of roles remain office-based Remote US
Benefits/Perks100% subsidized medical 100% subsidized medical coverage Competitive benefits Competitive vacation Competitive vacation and holiday schedules Employee stock purchase plan Equity Equity rewards ESPP Flexible Spending Flexible Spending Wallets Health care coverage Inclusive interview experience Inclusive interview experience for all Monthly stipends Monthly stipends for health Remote-first company Subsidized medical coverage Tech spending Time off Transparent pay structure Wellness Wellness and tech spending
Tasks- Design
Audits Collaboration Communication Communications Compliance Cybersecurity Data Protection Execution Governance Information security Metrics Operations Organization PCI PCI DSS Product Security Project Management REST Risk Management SANS Technology Training
Certifications TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9