Security Engineer #92446
Security Engineer sought by AppFolio, Inc. in San Diego, CA.
Assess, evaluate, and improve how Appfolio makes use of the following: Host and Network Intrusion Detection systems; Vulnerability management software; Automated deployment technologies; infrastructure as code software; Version control software; Virtualization and container technologies; Agile development frameworks. Maintain existing infrastructure and services (IDS, HIDS, etc.). Investigate and respond to incidents that arise from would-be-attackers. Identify gaps in the existing security defenses and recommend, build and deploy solutions to address these gaps. Get familiar with current compliance frameworks, identify lapses in compliance, and recommend solutions to address lapses. Provide on-call support for security supported technologies and processes. Meaningfully contribute to the security analysis of new Appfolio features, services, products, and infrastructure. Requires a Bachelor's degree in Computer Science or related field and 2 years of experience. 2 years of experience with security technologies to include at least 3 of the following or significantly similar tools: Intrusion Detection systems and Intrusion Prevention Systems (IDS/IPS) including: Netskope, Palo Alto, Tenable, Suricata, Snort and Cisco, Host-based Intrusion Detection Systems (HIDS) including OSSEC, Falco, Powershell, Web Application Firewalls (WAF) including AWS WAF, Imperva, Palo Alto, File Integrity Monitoring (FIM) including OSSEC, Vulnerability Scanners including Tenable. 2 years of experience with cloud and container-based technologies. 2 years of programming experience with Ruby or similar language. 2 years of experience with OWASP Top 10 security risks and remediation techniques. 2 years of experience in system and network security, common security vulnerabilities, and mitigation techniques. Telecommuting permitted during office closures/other restricted staff presence as determined by the employer.