Senior Application Security Engineer

Redwood City, CA, USA

Full-TimeDepends on ExperienceSenior LevelMasters

Job Description

Welcome to Box, a leading cloud content management and file sharing platform that empowers businesses to collaborate securely and efficiently. We are seeking a highly skilled and experienced Senior Application Security Engineer to join our dynamic team and play a crucial role in protecting our customers' data. As a Senior Application Security Engineer at Box, you will have the opportunity to use your expertise and knowledge to design, implement, and maintain security solutions for our applications. We are looking for a driven individual who is passionate about security and continuously strives to stay ahead of the ever-evolving threat landscape. If you have a strong technical background, excellent problem-solving skills, and a proven track record of securing complex applications, we want you on our team. Join us at Box and help us build a more secure digital world.

Develop and implement security measures and systems to protect Box's applications from potential threats and vulnerabilities.
Conduct regular security audits and penetration testing to identify and address any security gaps or weaknesses.
Collaborate with cross-functional teams to integrate security best practices into the development lifecycle of applications.
Investigate and respond to security incidents, including conducting root cause analysis and implementing corrective actions.
Keep up-to-date with the latest security trends, vulnerabilities, and technologies, and proactively recommend improvements to enhance Box's security posture.
Conduct risk assessments and provide recommendations for mitigating identified risks.
Develop and maintain security policies, procedures, and standards for Box's applications.
Train and educate team members on security best practices and ensure compliance with security policies.
Work closely with third-party vendors and partners to ensure their integration with Box's applications meets security requirements.
Communicate security issues and recommendations to senior management and other stakeholders effectively.
Participate in security incident response drills and exercises to test the effectiveness of Box's security measures.
Mentor and provide guidance to junior members of the security team.
Collaborate with regulatory compliance teams to ensure Box's applications meet industry-specific security standards and regulations.
Continuously monitor and assess the security posture of Box's applications and provide recommendations for improvement.
Participate in the development and improvement of security tools and processes to enhance the overall security of Box's applications.

Where is this job?

This job is located at Redwood City, CA, USA

Job Qualifications

Extensive Knowledge Of Application Security Principles And Best Practices: The Ideal Candidate Should Have A Deep Understanding Of Application Security Concepts Such As Secure Coding, Web Application Vulnerabilities, And Threat Modeling. They Should Also Be Well-Versed In Industry Standards Such As Owasp Top 10 And Sans Top 25.
Experience With Security Testing Tools And Techniques: The Senior Application Security Engineer Should Have Hands-On Experience With Tools Such As Burp Suite, Zap, And Nessus For Dynamic And Static Application Security Testing. They Should Also Be Familiar With Manual Testing Techniques And Able To Identify And Exploit Vulnerabilities.
Strong Programming Skills: A Solid Foundation In Programming Languages Such As Java, Python, And Javascript Is Crucial For A Senior Application Security Engineer At Box. They Should Be Able To Read And Understand Complex Code, As Well As Write Secure Code Themselves.
Familiarity With Cloud Security: As Box Is A Cloud-Based Company, The Ideal Candidate Should Have Experience With Cloud Security And Be Familiar With Best Practices For Securing Cloud-Based Applications And Infrastructure. Knowledge Of Cloud Security Frameworks Such As Csa And Aws Security Best Practices Is A Plus.
Communication And Collaboration Skills: The Senior Application Security Engineer At Box Will Work Closely With Cross-Functional Teams, Including Developers, Product Managers, And Security Analysts. Strong Communication And Collaboration Skills Are Essential For Effectively Advocating For Security Best Practices And Building Relationships With Other Teams.

Required Skills

Network Security
Compliance Knowledge
Code Review
Penetration testing
Risk assessment
Incident response
Threat Intelligence
Vulnerability identification
Security architecture
Cybersecurity Expertise
Encryption Methods

Soft Skills

Communication
Conflict Resolution
Leadership
Time management
creativity
Organization
Teamwork
Adaptability
Problem-Solving
Empathy

Compensation

According to JobzMall, the average salary range for a Senior Application Security Engineer in Redwood City, CA, USA is between $130,000 and $170,000 per year. This range can vary depending on factors such as experience, qualifications, and the specific company or industry the engineer is working in. Additionally, the salary may also include bonuses, stock options, and other benefits.

Additional Information

Box is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate based upon race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

Required LanguagesEnglish

Job PostedApril 5th, 2024

Apply BeforeApril 11th, 2026

This job posting is from a verified source.

Reposted

See an issue with this job? Report it to us