Role Description
Dropbox Threat Intelligence leverages data-driven insights to understand and counteract potential threats to Dropbox and its users. By analyzing attack patterns and threat actors, we provide actionable intelligence that supports the business in fortifying defences and enhancing security resilience.
In this role you will investigate critical threats to Dropbox and our customers, profiling threat actors and uncovering the actions, techniques and objectives of these malicious actors. We ensure trust in the Dropbox platform by protecting all users interactions with our products. You will analyze telemetry data to identify signals indicative of malicious activity and abuse. You will help enhance our capabilities by formulating new analytic techniques and working across teams to drive the supporting capabilities. You’ll leverage your understanding of current cybercrime and fraud actor TTPs, experience working with API, network, and host based indicators and scripting expertise to help automate recurring tasks.
Our Engineering Career Framework is viewable by anyone outside the company and describes what’s expected for our engineers at each of our career levels. Check out our blog post on this topic and more here.
Responsibilities
- Research and analyze evolving threats to anticipate future risks.
- Provide deep analytic reports to help business units anticipate and mitigate risks.
- Build and maintain strong partnerships with internal stakeholders and external threat intelligence networks to facilitate the exchange of critical information.
- Pursue actionable intelligence on cybercrime threats as they relate to Dropbox.
- Build and support team automation and investigation tools.
Many teams at Dropbox run Services with on-call rotations, which entails being available for calls during both core and non-core business hours. If a team has an on-call rotation, all engineers on the team are expected to participate in the rotation as part of their employment. Applicants are encouraged to ask for more details of the rotations to which the applicant is applying.
Requirements
- 2-4 years of combined experience in either incident response, threat intelligence, threat hunting, or cybercrime investigations
- Experience in one or more information security domains: threat Intelligence analysis and research - security monitoring/detection and incident response - security architectures, principles, and assessment methodologies - network and operating systems security - development of security tooling
- Technical domain knowledge with Linux, Windows, or MacOS based systems - network infrastructure - cloud products (e.g. AWS, GCP, Azure)
- Proficiency using Python or Go
Preferred Qualifications
- Malware analysis and digital forensics
- Experience with deep/dark web forums, malware, threat modeling, security vulnerabilities, exploitation techniques, and methods for remediation
- Strong demonstrated knowledge of common offensive techniques, and an in-depth knowledge of UNIX tools and architecture
Total Rewards
US Zone 1
This role is not available in Zone 1
US Zone 2
$183,600—$248,400 USD
US Zone 3
$163,200—$220,800 USD
Top Skills
What We Do
Dropbox is a special place where we are all seeking to fulfill our mission to design a more enlightened way of working. We’re looking for innovative talent to join us on our journey. The words shared by our founders at the start of Dropbox still ring true today. Wouldn’t it be great if our working environment—and the tools we use—were designed with people’s actual needs in mind? Imagine if every minute at work were well spent—if we could focus and spend our time on the things that matter. This is possible, and Dropbox is connecting the dots. The nearly 3,000 Dropboxers around the world have helped make Dropbox a living workspace - the place where people come together and their ideas come to life. Our 700+ million global users have been some of our best salespeople, and they have helped us acquire customers with incredible efficiency. As a result, we reached a billion dollar revenue run rate faster than any software-as-a-service company in history. Dropbox is making the dream of a fulfilling and seamless work life a reality. We hope you’ll join us on the journey.
Why Work With Us
Our remote work model is a deliberate shift to provide greater flexibility, create a level-playing field, and evolve our culture to focus on people over places. Being a Virtual First company has allowed us to focus on our impact and effectiveness, by making investments in our employees according to what they need to do their best work.
Gallery
Dropbox Teams
Dropbox Offices
Remote Workspace
Employees work remotely.
While remote work is the primary experience for our employees, we also prioritize opportunities for quarterly in-person collaboration knowing that connection is vital to a thriving workforce. We focus on how we work, not where we work.