• Increase quality leads at efficient costs, testing strategies on a daily, weekly and monthly basis. • Be a part of the ongoing conversation of how to best execute and measure multi-channel digital marketing campaigns across search, display, social media, video, email, and other channels. • Execute online marketing campaigns and tests, including implementation, optimization, budget management, and analysis. • Support customer acquisition and engagement via paid digital marketing, including Google, Bing, YouTube, Capterra, Google Display Network, programmatic channels, etc. • Launch, and track frequent ad copy, landing page, and other creative tests using some of the latest testing tools and methodologies. • Analyze SEM & Paid Social performance, making recommendations and executing optimizations. • Assist in managing multiple advertising accounts. • Support creation of reports to measure campaign performance and show ROI of efforts.

• Lead, develop, and mentor the Platform Security team, setting direction, managing performance, and ensuring strong communication and execution across distributed time zones. • Design, implement, and operate cloud security controls for AWS, GCP, and Azure to protect infrastructure, services, and applications from evolving threats. • Partner with engineering and product leadership to influence architecture decisions, define security requirements, and ensure alignment with Affirm’s technical strategy. • Strengthen container security by guiding secure design and operation of containerized environments using Docker, Kubernetes, and related ecosystem tooling. • Drive adoption of DevSecOps practices by embedding automated security checks, workflows, and guardrails into CI/CD pipelines and developer tooling. • Communicate complex security risks, tradeoffs, and recommendations to technical and non-technical stakeholders with clarity, precision, and authority. • Develop and mature the platform security roadmap, identifying long-term risks, investments, and capabilities needed to strengthen Affirm’s cloud posture. • Define, maintain, and enforce baseline security configurations, standards, and operational processes for cloud platforms, systems, and applications. • Create and maintain security metrics and dashboards that provide meaningful insights into control effectiveness, program maturity, and areas needing investment. • Support budget planning, resource allocation, and team development, ensuring the program can scale effectively and deliver strong outcomes over time.

• Design and build platform capabilities that deliver reliable, high-value features with safety, precision, and user focus. • Collaborate closely with product managers, designers, and fellow engineers to create new features and improve existing ones. • Approach the platform as a product: maintain a clear understanding of customer needs, identify friction points, and take ownership of outcomes with metrics-driven decision making (KPIs, OKRs, and North Star metrics). • Use data to inform decisions, measure impact, and drive improvements through empirical evidence. • Take ownership across all phases of development, from design to production, and monitor system performance in live environments. • Continuously improve the flow of work from idea to production, using data to identify and remove friction. • Write clean, efficient, and well-documented code following best practices. • Build and maintain APIs, and integrate with third-party services. • Ensure application performance, quality, and responsiveness across platforms. • Participate in code reviews, testing, and debugging to maintain high-quality deliverables. • Mentor other engineers and contribute to their growth. • Contribute to architectural decisions and help define technical standards and best practices. • Stay up to date with emerging technologies and suggest improvements to enhance development processes.

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description We are seeking an Identity System Integration Engineer to deliver outstanding Federal Identity, Credential, and Access Management (FICAM) policy, implementation, and operational services. - The Federal Government's smart cards are the output of a dozen or more systems, some on-prem and some cloud-based, working in conjunction at very high levels of security. - HSPD-12 credentials are the first line of cyber defense within the Federal Government. - Involves nearly 1,000 Workstations leveraging a mixture of thin and thick clients, some manned and some kiosk-based, connected over varying levels of bandwidth. - Credential issuance systems are complex and will test every bit of your IT systems background. - Tasks may include looking at IIS servers, SQL queries, client workstation configurations, on-prem hardware devices, and integrating APIs to client applications. - Have experience in deploying, configuring, operating, and maintaining Identity Management and Credential Management systems on-prem and in Microsoft Azure environments. - Have an in-depth understanding of Smart card supported credential management system installation, configuration, and deployment methods, including scripting, use of APIs, orchestration, automation, and database services. - Assist technical support related to presales and business development activities with focus on IDEMIA Smart Credentials, smartcard, and USB authenticator products and solutions. - Understand requirements by meeting with customers and presenting technical information/solutions to customers supporting the sales organization. - Collaborate with architects and developers to support API integrations into multi-platform environments. - Troubleshoot and document broad-ranging issues (operating systems, network, firewall, COTS products, access, and authentication). - Define integration and test strategy, test plan, and test scenarios. - Ensure requirements traceability and coverage. - Build the integration environment and install or upgrade the solution. - Perform system integration and validation tests including load, performance, high availability, accuracy, and security tests. - Investigate issues by analyzing logs during test execution, report incidents, and monitor them until closure. - Produce documents that will allow proper installation, testing, operations, and administration. - Prepare and provide training for customers, support, and maintenance teams. - Support pre-sales teams on specific technical requests on integration activities. Qualifications - Ability to work in the USA. - A bachelor's degree in computer science or a related technical discipline or the equivalent combination of education, technical certifications or training, and work experience. - 3+ years of total experience in the security industry, experience in configuring, integrating, and testing multi-tier information systems. - Preferred experience in Physical Access Control System (PACS) technologies (Prox, DESFire) and how cards are issued and used within these environments. - Experience working on federal and/or commercial client engagements. - Hands-on experience integrating, troubleshooting, deploying, and maintaining Identity Management Systems, Credential Management Systems, or other large-scale systems. - Proven skills in the following: - API Frameworks (WSDL, SOAP, REST, XML) and proficiently using Swagger or other API design tools. - Performing software integration activities in an agile and smart card embedded environment. - Desired skills: - Strong customer-facing interpersonal communication skills supporting customer integrations and attending pre-sales discussions supporting the business development team. - Hands-on experience integrating, troubleshooting, deploying, and maintaining an enterprise credentialing platform such as MyID or ActivID and its associated peripherals (smart card readers, biometric capture devices). - Experience with PIVPack, PIV SDK, FIDO SDK, and/or Open-Source Tools like OpenSC. - A strong understanding of Public Key Infrastructure (PKI), PIV credentialing (FIPS 201-3/NIST SP-800-73-4), and Public Key Enablement (PKE). - Full understanding of the revocation model and capabilities available within PKI to include Certificate Revocation List (CRL)s and Online Certificate Status Protocol (OCSP). - IT Security Certification (e.g., CISSP, CSEIP, CSCIP/G). Requirements - The US base salary range for this position is $93,440.00 - $116,813.00 + bonus + benefits. - Our salary ranges are determined by role and level. - The range displayed on each job posting reflects the compensation target for the role across all US locations. - Individual pay is determined by job-related skills, experience, and relevant education or training. - Beyond offering a competitive total rewards package, we offer various opportunities to support team member growth and success.