Security Incident Response Analyst

BoxLos Angeles, CA
$78,500 - $95,000Hybrid

About The Position

Box is committed to protecting the security and privacy of its customers, employees, and partners. As a Security Incident Response Analyst, you will be central to this mission by detecting, investigating, and responding to security threats that could impact the Box platform and the organizations that rely on it. You will collaborate with a high-performing security team to enhance incident response capabilities, ensuring Box remains a trusted partner for enterprises globally.

Requirements

  • 3+ years of experience in security operations, incident response, or a related cybersecurity discipline.
  • Hands-on experience with SIEM platforms (e.g., Splunk, Chronicle, or similar) and endpoint detection and response (EDR) tools.
  • Proficient in log analysis, digital forensics, and network traffic analysis.
  • Solid understanding of common attack frameworks such as MITRE ATT&CK and ability to apply them to real-world investigations.
  • Clear and concise communication skills, both in written incident reports and in cross-functional conversations with technical and non-technical stakeholders.
  • Hold or be actively pursuing a relevant certification such as GCIH, GCFE, GCFA, CEH, or equivalent.

Nice To Haves

  • Approach work with a growth mindset and find ways to leverage AI to help make faster, smarter decisions that will 10X your impact at Box.

Responsibilities

  • Monitor security alerts and events across Box’s environment using SIEM and other detection tools to identify potential threats and anomalies.
  • Lead and coordinate the end-to-end response to security incidents, from initial triage through containment, eradication, and post-incident review.
  • Conduct in-depth forensic analysis of endpoints, logs, and network traffic to determine the scope and root cause of security events.
  • Develop and refine incident response playbooks, runbooks, and procedures to improve response speed and consistency.
  • Collaborate with Engineering, Legal, and Compliance teams to ensure incidents are handled in accordance with regulatory requirements and internal policies.
  • Identify trends and patterns in security data to proactively surface emerging threats and recommend improvements to detection and prevention capabilities.
  • Contribute to threat intelligence programs by researching adversary tactics, techniques, and procedures (TTPs) relevant to Box’s threat landscape.
  • Participate in our on-call rotation, available at all times while on-call to help respond to and triage any issues that arise.

Benefits

  • Equity and benefits
  • Check out our benefits and perks for more information.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service