M+E Technology Job Board

Security Analyst

Box

Purpose
Box is doubling down its investments in security and we are building a brand new security team in the UK! Not familiar with Box? We power the future of work for some amazing organizations including GE, Coca-Cola, Virgin Trains and the London Metropolitan Police and 69% of the Fortune 500s. To support our rapid growth, we are looking for a Security Analyst for our London Office.

Why the team needs you?
Box is scaling at a rapid pace, and with innovation and speed comes interesting security challenges. Our customers demand world class security. We need your creativity and technical expertise to help us tackle these challenges.

Why Box needs you?
Box is growing fast. Real fast. Every business in the world is looking to modernize the way that they work. As the leader in cloud content management, Box is the only company that can help enterprises transform how people work together. Come help us continue to develop a forward-leaning security posture and an incredible team dedicated to detecting and responding to threats, keeping both Box and our customers safe.

Why you need Box?
Box presents a unique opportunity to be a part of building our global security team at massive scale. We have built a world-class group with some amazing talent and this is a unique opportunity to grow with us. We have the data, we have the corporate support and we’re looking to grow. All we need is you!

Requirements

Bachelor’s degree in a technical, engineering or IT related field or equivalent and 2+ years related experience.
A pulse on the tools, tactics and procedures the bad guys are using today and what they’ll be using tomorrow.
Experience in three or more of the following:
Cloud Security – we’re a cloud company!
System Security – MacOS\Linux\Windows
Application Security – OWASP Web Vulnerabilities
Network Security
Malware Analysis & Forensics
Signature\Alerting Creation
Tools of the trade including RegEx, YARA, Maltego, CRITS, MISP
Scripting – We like Python but other languages like Golang are cool too
SEIM\Log Aggregation\Data Analytics – Splunk\ELK
Query languages – Splunk SPL, Lucene, SQL, Elk DSL
Prior Security Operations Experience
Experience with formal security models like MITRE ATT&CK or CIS Critical Security Controls.
Strong written and verbal communication skills.

Nice to have

Industry Recognized Security Certifications like CISSP, CEH, GCIA, GCIH.
Experience with cloud deployments involving AWS, Docker, Hashicorp tools, Kubernetes and Serverless architectures like Lambda.
Prior work experiences in DevOps, software engineering or sys admin roles.
Visualization and machine learning experience.
Prior open source contributions.