Security Engineer, Cyber Threat Intelligence

Role Description

Dropbox Threat Intelligence leverages data-driven insights to understand and counteract potential threats to Dropbox and its users.

By analyzing attack patterns and threat actors, we provide actionable intelligence that supports the business in fortifying defences and enhancing security resilience.

In this role you will investigate critical threats to Dropbox and our customers, profiling threat actors and uncovering the actions, techniques and objectives of these malicious actors.

We ensure trust in the Dropbox platform by protecting all users interactions with our products. You will analyze telemetry data to identify signals indicative of malicious activity and abuse.

You will help enhance our capabilities by formulating new analytic techniques and working across teams to drive the supporting capabilities.

You’ll leverage your understanding of current cybercrime and fraud actor TTPs, experience working with API, network, and host based indicators and scripting expertise to help automate recurring tasks.

Our Engineering Career Framework is and describes what’s expected for our engineers at each of our career levels. Check out our blog post on this topic and more here.

Responsibilities

• Research and analyze evolving threats to anticipate future risks.
• Provide deep analytic reports to help business units anticipate and mitigate risks.
• Build and maintain strong partnerships with internal stakeholders and external threat intelligence networks to facilitate the exchange of critical information.
• Pursue actionable intelligence on cybercrime threats as they relate to Dropbox.
• Build and support team automation and investigation tools.

Many teams at Dropbox run Services with on-call rotations, which entails being available for calls during both core and non-core business hours.

If a team has an on-call rotation, all engineers on the team are expected to participate in the rotation as part of their employment.

Applicants are encouraged to ask for more details of the rotations to which the applicant is applying.

Requirements

• 2-4 years of combined experience in either incident response, threat intelligence, threat hunting, or cybercrime investigations
• Experience in one or more information security domains : threat Intelligence analysis and research - security monitoring / detection and incident response - security architectures, principles, and assessment methodologies - network and operating systems security - development of security tooling
• Technical domain knowledge with Linux, Windows, or MacOS based systems - network infrastructure - cloud products (e.g. AWS, GCP, Azure)
• Proficiency using Python or Go

Preferred Qualifications

• Malware analysis and digital forensics
• Experience with deep / dark web forums, malware, threat modeling, security vulnerabilities, exploitation techniques, and methods for remediation
• Strong demonstrated knowledge of common offensive techniques, and an in-depth knowledge of UNIX tools and architecture

Total Rewards

Canada Pay Range$134,300 $181,700 CAD

The range listed above is the expected annual salary / OTE for this role, subject to change.

Salary / OTE is just one component of Dropbox’s total rewards package. All regular employees are also eligible for the corporate bonus program or a sales incentive (target included in OTE) as well as stock in the form of Restricted Stock Units (RSUs).

Benefits

Dropbox is committed to investing in the holistic health and wellbeing of all Dropboxers and their families. Our benefits and perks programs include, but are not limited to :

• Competitive medical, dental and vision coverage*
• Retirement savings through a defined contribution pension or savings plan
• Flexible PTO / Paid Time Off policy in addition to statutory holidays, allowing you time to unplug, unwind, and refresh
• Income Protection Plans : Life and disability insurance*
• Business Travel Protection : Travel medical and accident insurance*
• Perks Allowance to be used on what matters most to you, whether that’s wellness, learning and development, food & groceries, and much more
• Parental benefits including : Parental Leave, Fertility Benefits, Adoptions and Surrogacy support, and Lactation support
• Mental health and wellness benefits

Additional benefits details are available upon request.

Where group plans are not available, allowances may be provided

Benefit, amount, and type are dependent on geographical location, based upon applicable law or company policy

Dropbox is an equal opportunity employer. We are a welcoming place for everyone, and we do our best to make sure all people feel supported and connected at work.

A big part of that effort is our support for members and allies of internal groups like Asians at Dropbox, BlackDropboxers, Latinx, Pridebox (LGBTQ), Vets at Dropbox, Women at Dropbox, ATX Diversity (based in Austin, Texas) and the Dropbox Empowerment Network (based in Dublin, Ireland).