Sr. Manager, Technology Risk And Controls

Sr. Manager Technology Risk and Controls

At AppFolio, we paddle as one. We ride and make waves together, with a relentless focus on building great products for the way our customers work and live today – and tomorrow. AppFolio is a destination organization where careers are made and accelerated. Here, innovation is a team sport.

Senior Manager, Technology Risk and Control: AppFolio seeks a dynamic and seasoned professional to build a forward-looking technology risk management function. The Senior Manager of Technology Risk and Controls will be responsible for identifying and quantifying technology risk within the product, V+ services (payments, screening, insurance) and operations areas. The role will work cross-functionally with process owners, the Enterprise Risk Management function, and will report directly to the VP of Internal Audit. This leader will outline the strategy for Technology Risk Management and will work with the VP of Internal Audit to design a forward-looking audit plan to address top risks.

Your impact

Future Vision:

• Develop and implement a long-term vision for Technology Risk and Controls at AppFolio.
• Build long-term relationships with key cross-functional stakeholders.
• Lead the evolution of SOX, SOC and other IT Compliance activities toward increased automation and efficiency.
• Work with stakeholders (Chief Compliance Officer, CIO, CISO, Business Systems, etc.) to understand business risk and build a program that addresses technology issues impacting each area.
• Build a plan to operationalize the long-term strategy of Technology Risk Management.
• Work with the Enterprise Risk Committee to integrate technology risk into the Enterprise Risk Management Program.

Risk Assessment

• Relate technology risk to business risk, communicate and prioritize the remediation of technology issues.
• Align technology audit work with the prioritization of enterprise risk.
• Identify and quantify technology risks through corporate, production and payments systems.

Audit Planning and Execution

• Work cross-functionally with our Fraud, Security and Compliance Teams to assess technology controls within the payments, screening and insurance functions
• Assess internal controls over IT, including to comply with IT frameworks and standards such as COBIT, COSO, ISO, SOC and SOX.
• Understand and evaluate technology controls to comply with legal and regulatory requirements, including privacy legislation.

Qualifications

• Influence: Comfortable bringing a message to senior leaders.
• Leadership: Inspires those around you to work their best. Mentors emerging talent.
• Connect the dots: Possesses an ability to move from identification of individual findings and risks to broader root causes. Can suggest remediation based on experience and industry best practices.
• Teambuilding: Assesses talent and aligns it with needs. Develops and retains strong internal talent.
• Execution: Understands the resources needed to complete tasks and can deploy both internal and co-sourced resources to efficiently meet goals.
• Communication: Understand the needs and viewpoints of varied stakeholders and can adjust the message and style to effectively motivate them to act.

Must Have

• CISA, CIA, CISSP or equivalent with 7+ years of internal audit, external audit or other risk and technology experience is required (Big4 is a plus).
• Experience working with IT compliance (SOX, SOC, PCI/DSS, ISO, etc.)
• Robust technical audit and controls experience.

Compensation & Benefits

The base salary/hourly wage that we reasonably expect to pay for this role is: $132,000 - 198,000.

The actual base salary/hourly wage for this role will be determined by a variety of factors, including but not limited to: the candidate’s skills, education, experience, etc.

Please note that base pay is one important aspect of a compelling Total Rewards package. The base pay range indicated here does not include any additional benefits or bonuses/commissions that you may be eligible for based on your role and/or employment type.
Regular full-time employees are eligible for benefits including but not limited to:

• Medical, dental, and vision benefits
• 401(k)
• Wellness benefits
• Long-term and short-term disability insurance
• Paid Time Off (PTO)

Interns / full-time temporary / eligible variable hour employees are eligible for benefits including but not limited to:

• Wellness benefits
• 401(k)
• Medical

Why AppFolio

We ride and make waves together, with a relentless focus on building great products for the way our customers work and live today — and tomorrow. AppFolio is a destination organization where careers are made and accelerated. Here, innovation is a team sport.

Paddle as One.

Learn more at appfolioinc.com/careers

#LI-JH1