Senior Product Security Engineer - Location Flexible

San Francisco, CA; Remote - US

Company Description

Dropbox is now a Virtual First company, which means work outside of an office will be the primary experience for all employees. Being Virtual First also means the location of our employees is targeted but flexible. If “Location Flexible” is listed in the job title of a role, the role can be located in any of the states where Dropbox is authorized to do business.** Some roles (including those which do not have “Location Flexible” in the job title), however, may have to be co-located with their teams in certain locations. Please work with your recruiter and your hiring manager to understand any location constraints of a particular role and to communicate your location preferences. **Dropbox is authorized to do business in many, but not all, states. If you are not located in or able to work from a state where Dropbox is registered, you will not be eligible for employment. Please speak with your recruiter to learn more about where Dropbox is registered.

Dropbox is one place to keep life organized and keep work moving. With more than 600 million registered users across 180 countries, we’re on a mission to design a more enlightened way of working. Dropbox is headquartered in San Francisco, CA, and has offices around the world. For more information on our mission and products, visit dropbox.com.

Team Description

Our Engineering team is working to simplify the way people work together. They’re building a family of products that handle over a billion files a day for people around the world. With our broad mission and massive scale, there are countless opportunities to make an impact.

Role Description 

Dropbox’s Product Security team partners with engineering and product teams to ship awesome products securely and agilely.  Product security engineers drive security impact on all Dropbox product initiatives by championing security principles during the software development lifecycle and by building scalable, cleverly engineered 'paved roads' which give strong security assurances by default. In this role, you will own whole domains of high-impact engineering work, working cross-functionally to see them through from concept to completion.

Responsibilities

  • Act as a subject matter expert on information security and partner with business units to identify, measure, report and address security and privacy risks
  • Work closely with product managers and product engineering teams to prioritize roadmap initiatives and to enable shipping awesome products with cutting-edge security solutions
  • Operate and improve Secure Development Lifecycle that measurably monitors and controls security risks across products
  • Design and implement automation to enable security operation at scale
  • Conduct security consultations on new and existing products and perform code reviews to proactively identify potential vulnerabilities
  • Empower secure-by-default development by shipping cleverly engineered, scalable application security mechanisms that address classes of vulnerabilities at scale

Desired background

  • 5+ years experience in application security engineering
  • Strong communication skills, relationship building skills, and fast learning
  • Experience in building and scaling secure development lifecycle
  • Significant proficiency in architecting and building application security on modern tech stacks across multiple platforms (web, mobile, desktop)
  • Strong software development skills, ideally with Python, Golang, Ruby on Rails.
  • Experience with pentesting and threat modeling
  • Experience partnering with cross-functional engineering and product team
 
Dropbox is an equal opportunity employer. We are a welcoming place for everyone, and we do our best to make sure all people feel supported and connected at work. A big part of that effort is our support for members and allies of internal groups like Asians at Dropbox, BlackDropboxers, Latinx, Pridebox (LGBTQ), Vets at Dropbox, Women at Dropbox, ATX Diversity (based in Austin, Texas) and the Dropbox Empowerment Network (based in Dublin, Ireland).
Dropbox is an equal opportunity employer. We are a welcoming place for everyone, and we do our best to make sure all people feel supported and connected at work. A big part of that effort is our support for members and allies of internal groups like Asians at Dropbox, BlackDropboxers, Latinx, Pridebox (LGBTQ), Vets at Dropbox, Women at Dropbox, ATX Diversity (based in Austin, Texas) and the Dropbox Empowerment Network (based in Dublin, Ireland).

Benefits and Perks

  • Generous company contribution toward individual medical, dental, & vision insurance coverage
  • 401k + company match
  • Market competitive total compensation package
  • Free Dropbox space for your friends and family
  • Wellness Reimbursement
  • Generous vacation policy
  • 10 company paid holidays
  • Volunteer time off
  • Company sponsored tech talks (technology and other relevant professional topics)

Other open positions