Security Engineer

San Diego, CA, United States

Company Description Dropbox is a special place where we are all seeking to fulfill our mission to design a more enlightened way of working. We’re looking for innovative talent to join us on our journey. The words shared by our founders at the start of Dropbox still ring true today. Wouldn’t it be great if our working environment—and the tools we use—were designed with people’s actual needs in mind? Imagine if every minute at work were well spent—if we could focus and spend our time on the things that matter. This is possible, and Dropbox is connecting the dots. The nearly 3,000 Dropboxers around the world have helped make Dropbox a living workspace - the place where people come together and their ideas come to life. Our 700+ million global users have been some of our best salespeople, and they have helped us acquire customers with incredible efficiency. As a result, we reached a billion dollar revenue run rate faster than any software-as-a-service company in history. Dropbox is making the dream of a fulfilling and seamless work life a reality. We hope you’ll join us on the journey.

Team Description Our Engineering team is working to simplify the way people work together. They’re building a family of products that handle over a billion files a day for people around the world. With our broad mission and massive scale, there are countless opportunities to make an impact.

Role Description The Dropbox team is growing, and we’re looking for security engineers to support this growth. In this role, you'll be a part of a team of 5 - 10 engineers, working closely with technical program managers, peer security teams and leads, and other engineering teams to build the future of Dropbox. Our team culture rewards a bias for action, engineering partnership in building security into our DNA, and discipline in how we develop. You’ll thrive in our team if you love chasing impact, working through ambiguity, and developing a culture of innovation.

Responsibilities Maintain a high and continuously improving bar for the security of Dropbox infrastructure in order to protect customer data.

Review the current and upcoming infrastructure stack from a security perspective and provide hardening mechanisms andrecommendations.

Deploy, build, and/or operate security infrastructure solutions to help scale the security program.

Automate security controls using scripting to the extent that it requires minimal human interaction.

Define security strategies for new infrastructure initiatives or programs.

Perform structured security risk assessment to identify, prioritize, and provide recommendations or solutions for issues found.

Perform security assessments on third-party vendors and integrations.

Participate in on-call rotation for infrastructure security issues

For candidates with interest and sufficient experience, we have opportunities to lead programs and teams (TL and Engineering Manager roles)

Requirements 5+ years in a security engineering or operations role

BS in Computer Science or a related technical field, or equivalent work experience

Experience in one or more information security domains, e.g. authentication and authorization related systems, development of security tooling and infrastructure, network and operating systems security; security architectures, principles, and assessment methodologies; security monitoring/detection and incident response; vulnerability assessment and/or penetration testing, Zero trust architectures and tools

Technical domain knowledge in areas adjacent to infrastructure security, e.g. application security, Cloud/IaaS products (e.g. AWS, GCP, Azure), Linux, Windows, or MacOS based systems, Networking, Reliability, Software development

Proficiency using one or more scripting or high-level languages to automate tasks, manipulate data, or build small systems. E.g. Bash, Python, Go, Rust, Ruby, NodeJS, C/C++, or Java

Demonstrated ability to drive improvement within systems, codebases, or organizations with a focus on solving problems

Many teams at Dropbox run Services with on-call rotations, which entails being available for calls during both core and non-core business hours. If a team has an on-call rotation, all engineers on the team are expected to participate in the rotation as part of their employment. Applicants are encouraged to ask for more details of the rotations to which the applicant is applying.

Total Rewards Our Engineering Career Framework is viewable by anyone outside the company and describes what’s expected for our engineers at each of our career levels. Check out our blog post on this topic and more here.

At Dropbox, we strive to be a great place for all Dropboxers to grow and be recognized for that growth. This job posting reflects broad requirements, and represents two potential levels of role. Through our assessment process, we will identify your level that ties to compensation based on your experience and technical expertise along with the scope of the role.

Dropbox takes a number of factors into account when determining individual starting pay, including job and level they are hired into, location/metropolitan area, skillset, and peer compensation.  We target most new hire offers between the minimum up to the middle of the range.

Salary/OTE is just one component of Dropbox’s total rewards package. All regular employees are also eligible for the corporate bonus program or a sales incentive (target included in OTE) as well as stock in the form of Restricted Stock Units (RSUs).

If you are assessed at the IC3 level, below are the current Salary/OTE ranges (Subject to change):

• US Zone 1: $195,500 - $230,000 - $264,500.

• US Zone 2: $176,000 - $207,000 - $238,100.

• US Zone 3: $156,400 - $184,000 - $211,600.

If you are assessed at the IC4 level, below are the current Salary/OTE ranges (Subject to change):

• US Zone 1: $217,600 - $256,000 - $294,400.

• US Zone 2: $195,800 - $230,400 - $265,000.

• US Zone 3: $174,100 - $204,800 - $235,500.

Dropbox uses the zip code of an employee’s remote work location to determine which metropolitan pay range we use. Current US Zone locations are as follows:

• US Zone 1: San Francisco metro, New York City metro, or Seattle metro

• US Zone 2: Austin (TX) metro, Chicago metro, California (outside SF metro), Colorado, Connecticut (outside NYC metro), Delaware, Massachusetts, New Hampshire, New York (outside NYC metro), Oregon, Pennsylvania (outside NYC or DC metro), Washington (outside Seattle metro) and Washington DC metro

• US Zone 3: All other US locations

Dropbox is committed to investing in the holistic health and wellbeing of all Dropboxers and their families. Our benefits and perks programs include, but are not limited to:

Competitive medical, dental and vision coverage

(US Only) Competitive 401(k) Plan with a generous company match and immediate vesting

Flexible Time Off/Paid Time Off, paid holidays, Volunteer time off and more

Protection Plans including; Life Insurance, Disability Insurance and Travel benefit plans

Perks Allowance to be used on what matters most to you, whether that’s wellness, learning and development, food & groceries, and much more

Parental benefits including; Parental Leave, Child and Adult Care, Day Care FSA (US Only), Fertility Benefits (US Only), Adoption and Surrogacy support and Lactation Support

Mental Health and Wellness benefitsFree Dropbox space for your friends and family

Additional benefits details are available upon request.

Dropbox is an equal opportunity employer. We are a welcoming place for everyone, and we do our best to make sure all people feel supported and connected at work. A big part of that effort is our support for members and allies of internal groups like Asians at Dropbox, BlackDropboxers, Latinx, Pridebox (LGBTQ), Vets at Dropbox, Women at Dropbox, ATX Diversity (based in Austin, Texas) and the Dropbox Empowerment Network (based in Dublin, Ireland).