Box is the market leader for Cloud Content Management. Our mission is to power how the world works together. Box is partnering with enterprise organizations to accelerate their digital transformation by creating a single platform for secure content management, collaboration and workflow. We have an amazing opportunity to further establish ourselves as leaders in the space, and we need strong advocates to help us achieve that goal. 
By joining Box, you will have the unique opportunity to help capture a majority of this developing market and define what content management looks like for the digital enterprise. Today, Box powers over 97,000 businesses, including 70% of the Fortune 500 who trust Box to manage their content in the cloud. 

It's an amazing time to be working at Box. We are a big enough company to have the ability to execute large-scale deliverables and just small enough that you can play a meaningful role in that delivery. With millions of users on our platform, we have an opportunity to ship products that will change the way people work. Box is growing its next generation security program for the cloud, and you can be a critical part of this creative and exciting team. We are seeking a security manager to lead a team of product security architects and engineers with a heavy focus on performing design reviews, penetration testing, and collaborating with our engineering teams.

Box is a recognized leader in the cloud security space. We understand that security is an ever-evolving landscape of vulnerabilities, new techniques, and best practices, so we're doubling down our efforts. We're in search for a security leader who thinks like an attacker, has experience working with external partners to prioritize and address risk, and has a passion to help teams remediate security issues.

Every business in the world is looking to modernize the way that they work. As the leader in cloud content management, Box is the only company that can help enterprises transform how people work together. The security team is positioned well within the company to execute quickly and against things that matter. We have executive support and you will have the ability to influence the security posture of our infrastructure and products.

  • Lead a team of product security architects and engineers
  • Shape vision of security engagement with product and engineering organizations
  • Perform and lead secure design reviews on products and features
  • Perform and lead internal, and external penetration testing against our products
  • Work with stakeholders to establish product security requirements
  • Proactive auditing of core frameworks to identify security uplift opportunities
  • Lead the security of multiple product lines
  • Lead multiple security programs, and provide exec level updates
  • Collaborate with engineers/developers to address security risks and provide mitigation recommendations
You have extensive experience in the application security space, have personally identified and remediated security flaws/concerns, have performed attack/threat modeling, and have lead pentesting efforts. You are comfortable mentoring team members, leading cross vertical initiatives, providing security requirements, and working with engineering to remediate and raise valid issues.
  • Delivering security programs from inception to delivery
  • Performing application design reviews with a security focus
  • Performing penetration testing at the application level
  • Working with engineering teams to prioritize security concerns, fix security risks, and provide mitigation recommendations
  • Experience in a manager or technical lead role
  • Security program management
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
For details on how we protect your information when you apply, please see our Personnel Privacy Notice.

Apply for this Job

* Required