Information Security Analyst

Information Security San Diego, California Dallas, Texas Santa Barbara, California Remote - San Francisco, CA Remote - Denver, CO Remote - Atlanta, GA Remote - Chicago, IL Remote - Washington DC, United States

Apply

Description

AppFolio is more than a company. We’re a community of dreamers, big thinkers, problem solvers, active listeners, and multipliers. At every opportunity, we set the pace while delivering innovation built to carry real estate into the future. One in which every experience feels effortless, yet meaningful. Where customers are empowered to take on any opportunity. We show up as one team, connected by our values to be a force for good. Because together, we have the power to create extraordinary outcomes for our customers, our communities, and ourselves.

 

The Information Security Analyst will focus on detecting, investigating, and responding to account takeovers (ATO) and other security threats across AppFolio’s platforms. This role involves identifying early indicators of compromise, triaging anomalous behavior, and analyzing attacker patterns related to credential misuse, session hijacking, and social engineering. The analyst will collaborate closely with the security, fraud, risk, and engineering teams to investigate suspicious activity, reduce time to containment, and protect user accounts from unauthorized access.

 

Your impact 
  • Monitor security alerts and events to detect, investigate, and respond to cybersecurity incidents in real-time.
  • Investigate suspected Account Takeover (ATO) cases by analyzing authentication logs, user behavior, device intelligence, and related signals across AppFolio’s platform.
  • Identify, contain, and remediate fraudulent activity associated with compromised accounts to minimize customer impact.
  • Collaborate closely with customer support, fraud, and engineering teams to triage reports, escalate critical threats, and support impacted users.
  • Develop detection logic and alerting mechanisms that identify early indicators of ATO attempts using SIEM, identity platforms, and threat intelligence.
  • Perform root cause analysis of account compromises and contribute to process improvements to prevent recurrence.
  • Build and maintain investigation runbooks, documentation, and workflows specific to ATO detection, response, and customer notification.
  • Analyze emerging attack trends targeting SaaS authentication flows, such as phishing, session hijacking, and token theft, to evolve defenses.
  • Contribute to internal training and knowledge sharing around ATO patterns, prevention, and investigative techniques.
Qualifications 
  • Bachelor’s degree in Information Security, Computer Science, or a related field, or equivalent practical experience.
  • 3-5 years of experience in incident response, fraud investigation, or security operations with a focus on user or application security.
  • Hands-on experience with identity and access management systems (e.g., Okta, Duo, or similar).
  • Experience investigating ATOs or credential-based threats using logs from SIEM, IAM, and behavioral analytics platforms.
    Familiarity with common ATO tactics (e.g., credential stuffing, phishing, session reuse) and the MITRE ATT&CK framework.
  • Strong analytical skills with the ability to recognize subtle patterns across disparate data sources.
    Proficiency in log analysis and querying tools (e.g., Splunk, Snowflake) to investigate activity and develop detections.
  • Ability to work independently and cross-functionally in a fast-paced, customer-impacting environment.
  • Excellent verbal and written communications skills

 

Nice to have
  • Experience building detections for ATO or fraud-related activity in a SaaS environment.
  • Familiarity with fraud signals such as IP reputation, device fingerprinting, geolocation anomalies, and behavioral risk scoring.
  • Cyber Security certifications such as GIAC GCIH, GCFA, GCFE, or AWS Security Specialty.
  • Understanding of OAuth, SAML, and session management in web and mobile applications.
  • Experience working with customer support, fraud, and legal teams in the context of user-impacting security events.

 

Location
Find out more about our locations by visiting our site
Compensation & Benefits
The compensation that we reasonably expect to pay for this role is: $94,400 - $118,000 base pay. The actual compensation for this role will be determined by a variety of factors, including but not limited to the candidate’s skills, education, experience, and internal equity.

Please note that compensation is just one aspect of a comprehensive Total Rewards package. The compensation range listed here does not include additional benefits or any discretionary bonuses you may be eligible for based on your role and/or employment type.

Regular full-time employees are eligible for benefits - see here.

 
#LI-KB1

About AppFolio

AppFolio is the technology leader powering the future of the real estate industry. Our innovative platform and trusted partnership enable our customers to connect communities, increase operational efficiency, and grow their business. For more information about AppFolio, visit appfolio.com.

Why AppFolio

Grow | We enable a culture of high performance, where delivering results is recognized by opportunities for growth and compelling total rewards. Our challenging and meaningful work drive the growth of our business, and ourselves.

Learn | We partner with you to realize your potential by investing in you from the start. We're cultivating a team of big thinkers through coaching and mentorship with our best-in-class leaders, and giving you the time and tools to develop your skills.

Impact | We are creating a world where living in, investing in, managing, and supporting communities feels magical and effortless, freeing people to thrive. We do this by innovating with purpose while cultivating a culture of impact. We learn as much from each other as we do our customers and our communities.

Connect | We excel at hybrid work by fostering an environment that feels flexible, personal and connected, no matter where we are. We create space to fuel innovation and collaboration, and we come together to celebrate, connect, and succeed.

Paddle as One.

Learn more at appfolio.com/company/careers

Statement of Equal Opportunity

At AppFolio, we value diversity in backgrounds and perspectives and depend on it to drive our innovative culture. That’s why we’re a proud Equal Opportunity Employer, and we believe that our products, our teams, and our business are stronger because of it. This means that no matter what race, color, religion, sex, sexual orientation, gender identification, national origin, age, marital status, ancestry, physical or mental disability, or veteran status, you’re always welcome at AppFolio.

By submitting this form, I acknowledge I have reviewed AppFolio's Privacy Policy.

Apply Apply Later
← Back to Current Openings