Dropbox
Our mission is to design a more enlightened way of working. Join us!
Austin, TX
Remote

Product Security Engineer, HelloSign - Location Flexible

Sorry, this job was removed at 5:08 a.m. (CST) on Wednesday, November 17, 2021
Find out who’s hiring remotely
See all Remote jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

Role Description 

The Dropbox team is growing, and we’re looking for security engineers to support this growth. In this role, you'll be a part of a team of  5-10 engineers, working closely with technical program managers, peer security teams and leads, and other engineering teams to build the future of Dropbox, with a focus on HelloSign. As part of this role, you will mainly perform product security consulting, threat modeling, secure code reviews and help manage our bug bounty platform for HelloSign. You will work with the team to ensure our products are designed securely and all known issues are timely triaged and remediated. Our team culture rewards a bias for action, engineering partnership in building security into our DNA, and discipline in how we develop. You’ll thrive in our team if you love chasing impact, working through ambiguity, and developing a culture of innovation.

Responsibilities

  • Maintain and improve the high security bar of HelloSign in order to protect customer data
  • Perform structured security risk assessment to identify, prioritize, and provide recommendations or solutions for issues found
  • Perform security reviews of the web applications, source code, and infrastructure deployed 
  • Deploy, build, and/or operate security solutions to help scale the security program
  • Automate security controls using scripting 
  • Perform penetration testing and vulnerability assessments against the company’s products and services as well as lead and coordinate third-party penetration testing efforts
  • Perform security consulting for all products and services
  • Triage issues reported by external researchers via the bug bounty program
  • Perform dynamic & static application security testing using open source and commercial tools
  • Classify, prioritize, collaborate, develop, and implement solutions to ensure all security findings are appropriately remediated
  • Help engineer new security features that enhance our customer’s security
  • Perform source code reviews of the web applications and infrastructure deployed by us
  • Participate in 24x7 on call rotation for security related events

Requirements

  • BS in Computer Science or a related technical field, or equivalent work experience
  • 2+ years in a security engineering or operations role
  • Deep understanding of common web application vulnerabilities
  • Strong understanding of modern web applications and frameworks
  • Good understanding of Linux/UNIX based systems
  • Technical domain knowledge in areas adjacent to Application security. For example, Infrastructure  security, Cloud/IaaS products (e.g. AWS, GCP, Azure), Linux, Windows, or MacOS based systems, Networking, Reliability, Software development
  • Proficiency using one or more scripting or high-level languages to automate tasks, manipulate data, or build small systems. E.g.: Bash, Python, Go, Rust, Ruby, NodeJS, C/C++, or Java
See More
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.

What are Dropbox Perks + Benefits

Dropbox Benefits Overview

We’re proud to offer benefits that help all Dropboxers take care of their holistic selves, so they can keep flowing at work.

Culture
Volunteer in local community
Partners with nonprofits
Open door policy
OKR operational model
Team based strategic planning
Pair programming
Employee resource groups
Employee-led culture committees
Flexible work schedule
Remote work program
Diversity
Documented equal pay policy
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity manifesto
Diversity employee resource groups
Hiring practices that promote diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Wellness programs
Team workouts
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
Company equity
Performance bonus
Charitable contribution matching
Child Care & Parental Leave Benefits
Childcare benefits
Generous parental leave
Family medical leave
Adoption Assistance
Restricted work hours
Return-to-work program post parental leave
Vacation & Time Off Benefits
Unlimited vacation policy
Generous PTO
Paid volunteer time
Sabbatical
At Dropbox, this is called 'Recharge'
Paid holidays
Office Perks
Company-sponsored outings
Free snacks and drinks
Some meals provided
Company-sponsored happy hours
Recreational clubs
Relocation assistance
Fitness stipend
Home-office stipend for remote employees
Professional Development Benefits
Job training & conferences
Tuition reimbursement
Lunch and learns
Promote from within
Mentorship program
Continuing education stipend
Continuing education available during work hours
Online course subscriptions available
Customized development tracks

Additional Perks + Benefits

In order to be successful in our Virtual First environment we needed to make changes that would allow employees to have more control over both where and how they work. Therefore, we embrace “non-linear workdays” with defined core collaboration hours that overlap across time zones. Beyond that, we encourage employees to design their own schedules to balance collaboration with needs for individual focus. We’ve also moved from “all day syncs” to an “async by default” culture, reserving meetings for discussion, debate, and decision-making, and handling all other work in our deep focus hours.

More Jobs at Dropbox

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about DropboxFind similar jobs like this