×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant

Technology Risk & Controls Manager

Job in Santa Barbara, Santa Barbara County, California, 93190, USA
Listing for: AppFolio, Inc
Full Time position
Listed on 2026-06-13
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

Finance & Accounting, Santa Barbara, CA;
Dallas, TX;
San Diego, CA;
Remote – San Francisco, CA

About the Role

We’re looking for a Senior Technology Auditor to be a hands‑on leader behind App Folio’s technology assurance program. In this role, you’ll deliver the annual IT audit plan end‑to‑end, strengthen the IT General Controls that anchor our SOX and operational resilience programs, and help shape how App Folio governs its rapidly expanding use of AI — internally, in product, and across the software development lifecycle.

You’ll work shoulder‑to‑shoulder with Engineering, Security, IT, Finance, and Data Governance leaders on a cloud‑native (AWS/GCP) tech stack that powers payments, property management, and AI‑assisted experiences for thousands of customers. If you’re energized by audits that actually move the needle — and by being one of the first auditors at a public SaaS company to operationalize AI governance — this is the seat.

Your

Impact

Annual IT Audit Plan Delivery:
Own the execution of audits across the annual IT audit plan — scoping, risk assessment, fieldwork, reporting, and remediation follow‑up — producing high‑quality work papers and findings that drive measurable risk reduction.

IT General Controls (ITGCs):
Evaluate and continuously rationalize ITGCs across our cloud platforms (AWS/GCP), CI/CD pipelines, and enterprise systems (Net Suite ERP, Coupa, etc.) to support ongoing SOX compliance and operational resilience.

Internal AI Governance:
Play a leading role in how App Folio governs the internal use of generative and agentic AI — assessing policy design, model and tool usage, data privacy, vendor risk, and AI‑supported development workflows against frameworks like the NIST AI RMF.

Engineering & Cloud Assurance:
Assess the effectiveness of automated security checks embedded in our CI/CD pipelines and cloud configurations so we maintain “Elite” deployment performance without compromising security or compliance.

Strategic Risk Assessment:
Contribute to the enterprise technology risk assessment by identifying emerging threats across cloud‑native infrastructure, payments systems, and agentic AI platforms — and translating them into a forward‑looking audit plan.

Data Governance & Privacy Assurance:
Partner with Data Governance teams to audit data discovery scans, classification efforts, and the protection of sensitive information across structured and unstructured data sources.

Trusted Partnering:
Work directly with the CIO organization, CISO, Engineering leadership, and Finance to deliver practical, data‑driven recommendations that improve our security posture, operational efficiency, and audit‑readiness.

Qualifications

Experience:

4 to 7 years of progressive experience in IT audit, technology risk management, or cybersecurity, with a clear track record of delivering audits end‑to‑end.

Public Accounting Rigor:
Previous experience in a Big 4 or large national accounting firm, with a focus on IT audit or advisory services, is a plus.

Environment:
Direct experience auditing or managing risk in a high‑growth SaaS, Fin Tech, or technology‑driven environment.

Technical Knowledge:
Familiarity with cloud infrastructure security (AWS/GCP), containerization (Kubernetes), generative and agentic AI, and modern software development life cycles (SDLC).

AI Governance:
Exposure to emerging AI governance frameworks (e.g., NIST AI RMF) or experience auditing internal AI/LLM usage is a strong plus.

Technical Control Advisory:
Demonstrated ability to translate technical control objectives into action‑oriented plans that bridge the gap between current and desired state.

Financial Systems:
Experience with cloud‑based ERP systems (Net Suite preferred) and automated segregation of duties (SoD) monitoring tools.

Education:

Bachelor’s degree in Management Information Systems, Computer Science, Accounting, or a related field.

Must Haves
  • Certification: CISA (Certified Information Systems Auditor), CISSP, CIA, or AWS Certified Security Specialty.
  • Professional Presence:
    Excellent communication and presentation skills, with the ability to translate complex technical risks into a business context for senior leadership.
  • Objective…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search