Senior Manager, Security Assurance Engineering

About The Position

Requirements

• An engineering leader passionate about building secure products and enabling developers through practical, scalable security solutions.
• Experienced in leading application security functions with a strong foundation in offensive security practices and secure software development.
• Skilled at balancing security rigor with product velocity, delivering pragmatic and impactful risk mitigation strategies.
• Adept at managing distributed teams, fostering collaboration, and driving results in ambiguous, fast-paced environments.
• Excellent communicator who can translate complex security concepts into clear, actionable guidance for both technical and non-technical audiences.
• Deep knowledge of modern application architectures, cloud environments, and security testing methodologies.
• Has hands-on experience with penetration testing, threat modeling and conducting secure design reviews.

Nice To Haves

• Experience with developing and shipping secure software components
• Familiarity with emerging technologies including AI-assisted security and software development tooling.
• Proven track record of partnering effectively with product and engineering teams to embed security as a foundational element of product development.

Responsibilities

• Lead and grow a talented, hybrid team of security engineers focused on embedding application security into the product lifecycle through engineering rigor and automation.
• Develop deep expertise in Box’s diverse product platforms and collaborate closely with product and engineering leaders to prioritize high-impact security initiatives aligned with business goals.
• Drive right-sized, actionable security guidance and support that empowers engineering teams to reduce risk without slowing velocity.
• Champion automation and tooling to streamline security assurance activities such as design reviews, threat modeling, penetration testing, and vulnerability management.
• Navigate ambiguity and open-ended challenges inherent in securing fast-evolving AI-native applications and services.
• Foster a culture of continuous learning, mentorship, and technical excellence within your team.
• Build and maintain strong cross-functional partnerships across Product, Engineering, Security Architecture, and external security researchers to amplify impact.
• Own and evolve metrics and KPIs and KRIs that demonstrate the effectiveness of security assurance efforts and inform strategic decisions.

Benefits

• Box lives its values, with community and in-person collaboration being a core part of our culture. Boxers are expected to work from their assigned office a minimum of 3 days per week, with a focus on Tuesdays, Wednesdays, and Thursdays.
• Box is committed to fair and equitable compensation practices.
• This role is also eligible for equity and benefits.
• For more information on benefits, check out our healthcare benefits and additional Box Benefits + Perks.
• In accordance with OFCCP compliance, here is the Pay Transparency Provision.