Security Analyst
Role details
Job location
Tech stack
Job description
By joining Box, you will have the unique opportunity to continue driving our platform forward. Content powers how we work. It's the billions of files and information flowing across teams, departments, and key business processes every single day: contracts, invoices, employee records, financials, product specs, marketing assets, and more. Our mission is to bring intelligence to the world of content management and empower our customers to completely transform workflows across their organisations. With the combination of AI and enterprise content, the opportunity has never been greater to transform how the world works together and at Box you will be on the front lines of this massive shift., Box's Security Incident Response Team (SIRT) is responsible for managing Box's security incidents. Box presents a unique opportunity to be a part of building our global security team at massive scale. We have built a world-class group with some amazing talent and this is a unique opportunity to grow with us. We have the data, we have the corporate support and we're looking to grow. We need a Security Analyst with experience fighting security fires, who is comfortable being uncomfortable, and is willing to run point on incidents. You're passionate about helping the team better understand your areas of expertise and interest, and to share your knowledge in a collaborative environment that focuses on enabling the team to share their unique skills and perspectives.
You will also be responsible for:
- Responding and investigating security alerts
- Recognising trends in alerts to help strengthen Box's security posture and provide suggestions for enhanced alerts, detection coverage and automation
- Executing and delivering work towards long-term goals and initiatives to support Box's overall security posture
- Adapting to change and effectively organising work according to business priorities
- The documentation of process and procedures
Requirements
- Bachelor's degree in a technical engineering or IT related field or equivalent experience
- A pulse on the tools, tactics and procedures the bad guys are using today and what they'll be using tomorrow. This includes Splunk, Burp Suite, etc.
- Experience with formal security models like MITRE ATT&CK or CIS Critical Security Controls
- You work well with the unpredictable, ever changing threat landscape that exists in cybersecurity
- You can perform independently to collect data, perform analysis, and research findings to determine if abuse or exploitation occurred
- Enthusiasm and passion for Cyber Security, you will definitely find a lot in Box!
- Experience in three or more of the following:
- Cloud Security - we're a cloud company!
- System Security - MacOS\Linux\Windows
- Network Security - IDS, PCAP
- Malware Analysis & Forensics
- Incident Response
- Signature\Alerting Creation
- Tools of the trade including RegEx, YARA
- Scripting - We like Python but other languages like Golang are cool too
- SIEM\Log Aggregation\Data Analytics\Query languages - Splunk SPL, Lucene, SQL, Elk DSL
- Networking and Security certifications a plus
- Cybersecurity Boot Camp experience/completion a plus
- Familiarity with AI tools and AI security
- Excellent communication skills
- Here's the fine print:
- Must be willing to work a shift schedule (4 days x 10 hours, 1 weekend day)
Box lives its values, with community and in-person collaboration being a core part of our culture. Boxers are expected to work from their assigned office a minimum of 3 days per week. Your Recruiter will share more about how we work and company culture during the hiring process.
Benefits & conditions
- Box Benefits package includes pension, medical and dental coverage. We have a robust wellness program including 25 days of vacation (plus your birthday off!) and subsidized gym membership. There is such a thing as a free lunch, you can order from a daily menu along with lots of snacks and drinks. EMEA HQ office is located in the impressive White Collar Factory on Old Street; www.whitecollarfactory.com and other European offices in Paris, Munich, Amsterdam, and Warsaw.