Junior Cloud Infrastructure Security Engineer

What is Box? Box is the market leader for Cloud Content Management. Our mission is to power how the world works together. Box is partnering with enterprise organizations to accelerate their digital transformation by creating a single platform for secure content management, collaboration and workflow. We have an amazing opportunity to further establish ourselves as leaders in the space, and we need strong advocates to help us achieve that goal.  Today, Box powers over 100,000 businesses, including 70% of the Fortune 500 who trust Box to manage their content in the cloud. Our Warsaw office is an incredibly exciting addition to our EMEA expansion. We're already in UK, France, and Germany, and the new Poland location will act as a global engineering and product development hub alongside our headquarters in Redwood City, California.   Why Box Needs You? Box is growing fast. Real fast. Every business in the world is looking to modernize the way that they work. As the leader in cloud content management, Box is the only company that can help enterprises transform how people work together. We are undergoing a massive change in how we run our services in hybrid cloud and need to innovate and build the right frameworks using latest and greatest technologies to help us automate & effectively manage at scale. Box is looking for a Junior Cloud Infrastructure Security Engineer to join our Cloud Infrastructure organization and help us continue to securely scale our industry-leading platform. It is the responsibility of the team to secure our customer's content by delivering trusted products and platforms. You'll also get to learn about supporting compliance, legal, and internal infrastructure efforts as we are often domain experts for them. You'll get to work with a wide variety of partners and customers on a team that values input and learning.    What You'll Do? We need a Security Engineer to drive making sound, repeatable decisions, and implementing those ideas via mature processes, technology, automation, and engagement with partner teams at Box. You will be working in a collaborative environment that focuses on enabling the team to share their unique skills, experience, and perspectives.    We are focused on various technical areas that support Security efforts at Box. You will focus on one or more of them. Some of those areas are:

• Implementation of our hardening requirements on mission critical infrastructure.
• Implementation of Identity and Access Management hardening and improvements to Production workloads.
• Implementation of automation to enforce security controls.
• Advocate security improvements through Box systems, procedures, and knowledge.

In the above areas, you'll be asked to:

• Provide security expertise for truly massive software projects and cloud service designs for a hybrid cloud model.
• Perform hands-on threat modeling, risk assessment, and web service security validation.
• Develop new tools, templates, and methods to help teams across Box scale securely.
• Partner with Engineering to build a secure cloud native platform.

Who you are?

• You have 1+ years of experience in the security industry or as a systems engineer.
• You have experience with Linux and system fundamentals, hypervisor & container security (especially in modern cloud environments).
• You possess development skills (Python, Terraform, Bash scripting, Micro-service architecture, API testing, fuzzing, etc)
• You have security review/risk assessment (threat modeling, penetration testing, security code review, etc) experience.
• You have security architecture and risk mitigation for enterprise networks or cloud hardware infrastructure experience.
• You have understanding of network protocols (TCP/UDP, SSH, TLS, DNS, DHCP, IPMI, SNMP, etc) and applied cryptography (encryption, signing, certificates, algorithms).
• You have excellent interpersonal and communication skills with a sense of urgency and impatience infused with infectious enthusiasm to drive our vision. 
• You communicate fluently in English.

  Equal Opportunity We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. For details on how we protect your information when you apply, please see our Personnel Privacy Notice. For more details on how Box Poland protects your information, please see our Supplemental Personnel and Candidate Privacy Notice.  #LI-DW1 #LI-Remote