Security Infrastructure Engineer

Software Engineering - Web Operations San Diego, California Dallas, Texas Santa Barbara, California


Description

Hi, We’re AppFolio.

We’re innovators, changemakers, and collaborators. We’re more than just a software company — we’re a cloud-based powerhouse that creates products to make our customers’ lives easier. We’re revolutionizing the way people do business, and we want your ideas, your enthusiasm, and your passion to help us keep on innovating.

We love where we work, and you can, too.

What We Are Looking For

As an Information Security Engineer, you will contribute to security initiatives as an individual contributor and work on high-impact projects as a member of the security engineering team. You will provide expertise and support to your team members in the areas of your strengths. Staying abreast of industry trends and technology is key to this role, and you will actively seek to continue to develop your skills and competencies.

Success in this role requires a strong passion for computer security. DevOps or sysadmin experience in a SaaS environment is preferred, but not necessarily required.

Responsibilities

Quickly gain an understanding of how Appfolio makes use of the following:

  • Automated deployment technologies
  • Infrastructure as code software
  • Agile development frameworks
  • Version control software
  • Virtualization and container technologies
  • Host and Network Intrusion Detection systems
  • Vulnerability management software
  • Automate security engineering tasks
  • Maintains existing infrastructure and services (IDS, HIDS, etc.) 
  • Investigates and responds to incidents that arise from would-be-attackers
  • Identifies gaps in the existing security defenses and recommends, builds, and deploys solutions to address these gaps.
  • Is familiar with current compliance frameworks, identifies lapses in compliance, and recommends solutions to address lapses.
  • Provides on-call support for security-supported technologies and processes.
  • Meaningfully contributes to the security analysis of new Appfolio features, services, products, and infrastructure.

Skills and knowledge

  • BS or MS in Computer Science or a related technical discipline, or equivalent experience
  • Sysadmin level of hands-on use of the Linux command line
  • Hands-on knowledge of and experience with security technologies such as IDS/IPS, HIDS, WAF, FIM, vulnerability scanners, etc. 
  • Hands-on knowledge of and experience with cloud and container-based technologies
  • Recent hands-on experience with scripting and programming in Ruby or similar language
  • Hands-on experience with OWASP Top 10 security risks and remediation techniques
  • Understands RBAC authentication/authorization
  • Understanding of generic application layer vulnerabilities for hosted 3rd party services/frameworks
  • Detailed technical knowledge of common information systems, networking, defensive security, common security vulnerabilities, and mitigation techniques
  • Hands-on experience interacting with APIs and reading through their documentation
  • A strong passion for, and deep knowledge of the information security field
  • Enthusiasm for tackling complex problems
  • Ability to work cross-functionally in a dynamic environment
  • Excellent verbal and written communication skills

Nice to Have

  • Experience with Infrastructure security in the cloud 
  • SAAS environment experience
  • Familiarity with automated security tools
  • Ruby on Rails (or other MVC framework) development experience
  • Industry-related certifications GCIA, OSCP, CISSP

 

Our Story

AppFolio (NASDAQ: APPF) was founded in 2006 with the mission to revolutionize vertical industry businesses by providing great software and service. Our easy-to-use, cloud-based software helps our customers more effectively market, manage, and grow their businesses.

To find out more about what AppFolio has to offer, check out appfolioinc.com/careers.

At AppFolio, we value diversity in backgrounds and perspectives and depend on it to drive our innovative culture. That’s why we’re a proud Equal Opportunity Employer, and we believe that our products, our teams, and our business are stronger because of it. This means that no matter what race, color, religion, sex, sexual orientation, gender identification, national origin, age, marital status, ancestry, physical or mental disability, or veteran status, you’re always welcome at AppFolio.

Statement of Equal Opportunity

At AppFolio, we value diversity in backgrounds and perspectives and depend on it to drive our innovative culture. That’s why we’re a proud Equal Opportunity Employer, and we believe that our products, our teams, and our business are stronger because of it. This means that no matter what race, color, religion, sex, sexual orientation, gender identification, national origin, age, marital status, ancestry, physical or mental disability, or veteran status, you’re always welcome at AppFolio.