Security Analyst at Boxinc

WHAT IS BOX? Box (NYSE:BOX) is the leader in Intelligent Content Management. Our platform enables organizations to fuel collaboration, manage the entire content lifecycle, secure critical content, and transform business workflows with enterprise AI. We help companies thrive in the new AI-first era of business. Founded in 2005, Box simplifies work for leading global organizations, including JLL, Morgan Stanley, and Nationwide. Box is headquartered in Redwood City, CA, with offices across the United States, Europe, and Asia. By joining Box, you will have the unique opportunity to continue driving our platform forward. Content powers how we work. It’s the billions of files and information flowing across teams, departments, and key business processes every single day: contracts, invoices, employee records, financials, product specs, marketing assets, and more. Our mission is to bring intelligence to the world of content management and empower our customers to completely transform workflows across their organisations. With the combination of AI and enterprise content, the opportunity has never been greater to transform how the world works together and at Box you will be on the front lines of this massive shift. WHY BOX NEEDS YOU Box is scaling at a rapid pace, and with innovation and speed comes with interesting security challenges. Our customers demand world class security. We need your creativity and technical expertise to help us tackle these challenges. Come help us continue to develop a forward-leaning security posture and an incredible team dedicated to detecting and responding to threats, keeping both Box and our customers safe. WHAT YOU'LL DO Box's Security Incident Response Team (SIRT) is responsible for managing Box's security incidents. Box presents a unique opportunity to be a part of building our global security team at massive scale. We have built a world-class group with some amazing talent and this is a unique opportunity to grow with us. We have the data, we have the corporate support and we're looking to grow. We need a Security Analyst with experience fighting security fires, who is comfortable being uncomfortable, and is willing to run point on incidents. You're passionate about helping the team better understand your areas of expertise and interest, and to share your knowledge in a collaborative environment that focuses on enabling the team to share their unique skills and perspectives. You will also be responsible for: • Responding and investigating security alerts • Recognising trends in alerts to help strengthen Box's security posture and provide suggestions for enhanced alerts, detection coverage and automation • Executing and delivering work towards long-term goals and initiatives to support Box's overall security posture • Adapting to change and effectively organising work according to business priorities • The documentation of process and procedures WHO YOU ARE • Bachelor's degree in a technical engineering or IT related field or equivalent experience • A pulse on the tools, tactics and procedures the bad guys are using today and what they'll be using tomorrow. This includes Splunk, Burp Suite, etc. • Experience with formal security models like MITRE ATT&CK or CIS Critical Security Controls • You work well with the unpredictable, ever changing threat landscape that exists in cybersecurity • You can perform independently to collect data, perform analysis, and research findings to determine if abuse or exploitation occurred • Enthusiasm and passion for Cyber Security, you will definitely find a lot in Box! • Experience in three or more of the following: • Cloud Security - we're a cloud company! • System Security - MacOS\Linux\Windows • Network Security - IDS, PCAP • Malware Analysis & Forensics • Incident Response • Signature\Alerting Creation • Tools of the trade including RegEx, YARA • Scripting - We like Python but other languages like Golang are cool too • SIEM\Log Aggregation\Data Analytics\Query languages - Splunk SPL, Lucene, SQL, Elk DSL • Networking and Security certifications a plus • Cybersecurity Boot Camp experience/completion a plus • Familiarity with AI tools and AI security • Excellent communication skills • Here's the fine print: • Must be willing to work a shift schedule (4 days x 10 hours, 1 weekend day) Box lives its values, with community and in-person collaboration being a core part of our culture. Boxers are expected to work from their assigned office a minimum of 3 days per week. Your Recruiter will share more about how we work and company culture during the hiring process. At Box, we believe unique and diverse experiences benefit our culture, our products, our customers, our company, and our world. We aim to recruit a passionate, high-performing workforce that reflects the world we live in. If you are head-over-heels about this role but unsure if you meet all the requirements, we encourage you to apply! BENEFITS • Box Benefits package includes pension, medical and dental coverage. We have a robust wellness program including 25 days of vacation (plus your birthday off!) and subsidized gym membership. There is such a thing as a free lunch, you can order from a daily menu along with lots of snacks and drinks. EMEA HQ office is located in the impressive White Collar Factory on Old Street; www.whitecollarfactory.com and other European offices in Paris, Munich, Amsterdam, and Warsaw. EQUAL OPPORTUNITY We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability, and any other protected ground of discrimination under applicable human rights legislation. For details on how we protect your information when you apply, please see our Personnel Privacy Notice. #LI-EMEA #LI-REMOTE