Senior Data Privacy & Security Analyst

Description

Hi, We’re AppFolio!

We’re more than just a software company — we are innovators, changemakers, and collaborators in a cloud-based powerhouse that creates award-winning, world-class products and services which simplify our customers’ lives. We’re revolutionizing the way people do business, and we want your ideas, your enthusiasm, and your passion to help us keep on innovating. We love where we work, and you can, too.

• NOTE: While our major development hubs are based in Santa Barbara and San Diego, CA, we're open to exploring remote-first working arrangements in other locations around the United States.**
  
  

About Our Team

Our Security and Data Privacy team’s mission is to promote a culture of security and privacy by design (PbD) to drive efficient and sustainable innovation and an exceptional customer experience.

As a Senior Security & Data Privacy Analyst, you will partner with others on the Security & Data Privacy team and members of the Audit, Compliance, Client Services, Legal, Procurement, Product and Engineering teams to help align AppFolio’s practices to comply with applicable data protection regulations, laws, company policies, and industry best practices.

Over time you will become a leader in the Security and Data Privacy space by developing relationships across business lines and support departments in order to understand and balance the business needs with our mission to design, build and scale solutions to protect the confidentiality, integrity and availability of our customers' information, along with software products and services.

What You’ll Do

• Support cross-functional collaboration with a Security and Data Privacy-first mindset to protect corporate assets and customer data
• Oversee and enhance our third party risk management (TPRM) process, including stakeholders, recommend controls to align business opportunities within our organizational risk tolerance, align SLAs and contracts with our legal/regulatory obligations, and corporate policies, e.g., Data Processing & Security Agreement (DPSA)
• Build relationships across the organization to define and maintain a Records of Processing Activities (ROPA)
• Partner with stakeholders to manage data mapping, classification, and quality gathering exercises, and define retention schedules
• Validate and respond to Data Subject Requests (DSRs)
• Conduct Privacy Impact Assessments (PIAs), and make recommendations to resolve identified material risks
• Design and manage program metrics, including compliance, operational effectiveness, and program maturity
• Create and manage organizational education and awareness campaigns, and maintain policies, standards, procedures, and other program collateral
• Evaluate the impact of industry trends to maintain vigilance of evolving regulatory, legal, and threat landscapes
• Incorporate principles and requirements from laws, regulations, and professional standards into policy, guidance, and training materials
  
  

Must-Haves

• Ownership mindset to identify, document, and track issues to resolution
• Interest in evolving your technical, compliance, and legal acumen
• Ability to coach and mentor organizational team members on security and data privacy principles
• Curiosity to explore multiple solutions to support business mission
• Desire to engage and learn from internal and third party stakeholders
• Have a “can-do” and collaborative “win-win” EQ mindset
• Comfortable operating semi-autonomously and making (and defending) decisions
  
  

Skills And Knowledge

• Hold a BS or MS in Computer/Data Science, Engineering, Legal or in a related discipline
• Knowledgeable with cloud (e.g. AWS, Microsoft, Google) environments and tools, and multiple software development best practices
• Experience using security and privacy industry frameworks, e.g., ISO, NIST, IAPP to conduct risk assessments, audits and compliance activities
• Experience creating and maintaining policies, standards and guidelines
• Ability to operate semi-autonomously in a dynamic, hybrid work environment
• Excellent verbal and written communication skills
• Previous experience working on an Information Security and/or Data Privacy team
• Hold at least one Security and/or Data Privacy industry certification, e.g., CISSP, CISA, CISM, CEH, CIPP/US, CIPM, or similar
  
  

Compensation & Benefits

The base salary that we reasonably expect to pay for this role is: $100,000-$150,000

The actual base salary for this role will be determined by a variety of factors, including but not limited to: the candidate’s skills, education, experience, etc.

Please note that base pay is one important aspect of a compelling Total Rewards package. The base pay range indicated here does not include any additional benefits or bonuses/commissions that you may be eligible for based on your role and/or employment type.

Regular full-time employees are eligible for benefits including but not limited to:

• Paid Time Off (PTO)
• Medical, dental, and vision benefits
• Long-term and short-term disability insurance
• 401(k)
• Wellness benefits
  
  

Interns / full-time temporary / eligible variable hour employees are eligible for benefits including but not limited to:

• Medical
• 401(k)
• Wellness benefits
  
  

Our Story

AppFolio (NASDAQ: APPF) was founded in 2006 with the mission to revolutionize vertical industry businesses by providing great software and service. Our easy-to-use, cloud-based software helps our customers more effectively market, manage, and grow their businesses. Our software solutions exist in the real estate vertical, including AppFolio Property Manager and AppFolio Investment Management.

To find out more about what AppFolio has to offer, check out appfolioinc.com/careers.

Why AppFolio

We ride and make waves together, with a relentless focus on building great products for the way our customers work and live today — and tomorrow. AppFolio is a destination organization where careers are made and accelerated. Here, innovation is a team sport.

Paddle as One.

Statement of Equal Opportunity

At AppFolio, we value diversity in backgrounds and perspectives and depend on it to drive our innovative culture. That’s why we’re a proud Equal Opportunity Employer, and we believe that our products, our teams, and our business are stronger because of it. This means that no matter what race, color, religion, sex, sexual orientation, gender identification, national origin, age, marital status, ancestry, physical or mental disability, or veteran status, you’re always welcome at AppFolio.