DevSecOps Engineer

The DevSecOps Engineer will work with cross-functional teams to solve complex Security Engineering challenges and directly impact the experience of Box’s 85 million users. They will research, evaluate and implement new cloud technologies and tools, work closely with DevOps teams and other engineering groups, and deliver designs, analysis, architecture and automation to improve risk posture and secure Box infrastructure and processes. The ideal candidate will have at least 3-5 years in a DevOps role, security experience, proven interest in the InfoSec field, and expertise in at least one major cloud platform. They should also have familiarity with DevSecOps toolbox and technologies, expertise in building cloud services and distributed systems, and proficiency in developing and/or extending solutions in Python and Bash.

• Research, evaluate and implement new cloud technologies and tools
• Work closely with the DevOps teams and other engineering groups on designing and implementing new solutions and be a trusted advisor for security-related aspects
• Deliver designs, analysis, architecture and automation to improve risk posture and to secure Box infrastructure and processes
• Develop secure architecture patterns and provide prescriptive guidance on securing networks, operation systems, services, etc.
• Support and grow a high performing organization that is building the services that stop attackers and help drive preventative measures throughout Box's systems and production environment
• Be a part of on-call rotation

• At least 3-5 years in a DevOps role, Security experience a plus
• Proven interest in the InfoSec field (Security+, SSCP, GCP Professional Cloud Security Engineer, AWS Certified Security Specialty, etc)
• 3+ years of experience working with with Kubernetes and Compute instances with IaC in Puppet and Terragrunt
• Expertise in at least one major cloud platform (AWS, GCP, Azure), GCP preferred
• Familiarity with DevSecOps toolbox and technologies
• Expertise in building cloud services and distributed systems
• Working knowledge of data tagging and identification
• Experience with high-availability operations management, including deployment automation, patching and rollback strategies
• Demonstrated creative, critical and independent thinking capabilities and troubleshooting skills
• Proficiency in developing and/or extending solutions in Python and Bash.
• Hands-on experience in Linux
• Can demonstrate knowledge of the security aspects of images, containers and Kubernetes
• Previous experience in deploying hardening protections at the endpoint
• Passionate about engineering perfection, performance, and quality
• Enthusiasm for new technologies and growth