Director, Technology Risk and Controls

Description

Hi, We’re AppFolio.

We’re innovators, changemakers, and collaborators. We’re more than just a software company — we’re a cloud-based powerhouse that creates products to make our customers’ lives easier. We’re revolutionizing the way people do business, and we want your ideas, your enthusiasm, and your passion to help us keep on innovating.

We love where we work, and you can, too.

Director, Technology Risk and Control

AppFolio seeks a dynamic and seasoned professional to build a forward-looking technology risk management function. The Director of Technology Risk and Controls will be responsible for identifying and quantifying technology risk within the product, V+ services (payments, screening, insurance) and operations areas. The role will work cross-functionally with process owners, the Enterprise Risk Management function, and will report directly to the VP of Internal Audit. This leader will outline the strategy for Technology Risk Management and will work with the VP of Internal Audit to design a forward-looking audit plan to address top risks.

What You’ll Do:

Future Vision:

• Develop and implement a long-term vision for Technology Risk and Controls at AppFolio.
• Work with the Enterprise Risk Committee to integrate technology risk into the Enterprise Risk Management Program.
• Build a plan to operationalize the long-term strategy of Technology Risk Management.
• Work with stakeholders (Chief Compliance Officer, CIO, CISO, Business Systems, etc.) to understand business risk and build a program that addresses technology issues impacting each area.
• Lead the evolution of SOX, SOC and other IT Compliance activities toward increased automation and efficiency.
• Build long-term relationships with key cross-functional stakeholders.
  
  

Risk Assessment

• Identify and quantify technology risks through corporate, production and payments systems.
• Relate technology risk to business risk, communicate and prioritize the remediation of technology issues.
• Align technology audit work with the prioritization of enterprise risk.
  
  

Audit Planning and Execution

• Assess internal controls over IT, including to comply with IT frameworks and standards such as COBIT, COSO, ISO, SOC and SOX.
• Understand and evaluate technology controls to comply with legal and regulatory requirements, including privacy legislation.
• Work cross-functionally with our Fraud, Security and Compliance Teams to assess technology controls within the payments, screening and insurance functions
  
  

What We’re Looking For:

• Connect the dots: Possesses an ability to move from identification of individual findings and risks to broader root causes. Can suggest remediation based on experience and industry best practices.
• Communication: Understand the needs and viewpoints of varied stakeholders and can adjust the message and style to effectively motivate them to act.
• Influence: Comfortable bringing a message to senior leaders.
• Teambuilding: Assesses talent and aligns it with needs. Develops and retains strong internal talent.
• Execution: Understands the resources needed to complete tasks and can deploy both internal and co-sourced resources to efficiently meet goals.
• Leadership: Inspires those around you to work their best. Mentors emerging talent.
• Communication Skills: Numbers are key, but a business is built with people. Cross-functional relationships and effective communication to non-financial audiences are critical to make an impact
• Analytical and Problem Solving: Combined with impeccable business judgment and ability to communicate with management team
• Resourceful & Action-Oriented: Works well with limited resources. Understands how to multiply the impact through use of existing technology and shared resources.
• Building Effective Teams / Fostering Teams: Fosters trust, encourages collaboration and drives high performance of the team through attraction, development and coaching.
  
  

Desired Skills & Experience:

• Robust technical audit and controls experience.
• CISA, CIA, CISSP or equivalent with 10+ years of internal audit, external audit or other risk and technology experience is required (Big4 is a plus).
• Experience working with IT compliance (SOX, SOC, PCI/DSS, ISO, etc.)
  
  

Our Story

AppFolio (NASDAQ: APPF) was founded in 2006 with the mission to revolutionize vertical industry businesses by providing great software and service. Our easy-to-use, cloud-based software helps our customers more effectively market, manage, and grow their businesses. Our software solutions exist in the real estate vertical, including AppFolio Property Manager and AppFolio Investment Management.

To find out more about what AppFolio has to offer, check out appfolioinc.com/careers

Statement of Equal Opportunity

At AppFolio, we value diversity in backgrounds and perspectives and depend on it to drive our innovative culture. That’s why we’re a proud Equal Opportunity Employer, and we believe that our products, our teams, and our business are stronger because of it. This means that no matter what race, color, religion, sex, sexual orientation, gender identification, national origin, age, marital status, ancestry, physical or mental disability, or veteran status, you’re always welcome at AppFolio.