DART, Lead Security Engineer - Location Flexible


San Francisco, CA, US
  • Job Type: Full-Time
  • Function: IT
  • Post Date: 03/27/2021
  • Website: dropbox.com
  • Company Address: , San Francisco, CA, 94107

About Dropbox

Dropbox is the world’s first smart workspace that helps people and teams focus on the work that matters. With more than 600 million registered users across 180 countries, we’re on a mission to design a more enlightened way of working. Dropbox is headquartered in San Francisco, CA, and has 12 offices around the world.

Job Description

Company Description

Dropbox is now a Virtual First company, which means work outside of an office will be the primary experience for all employees. Being Virtual First also means the location of our employees is targeted but flexible. If “Location Flexible” is listed in the job title of a role, the role can be located in any of the states where Dropbox is authorized to do business.** Some roles (including those which do not have “Location Flexible” in the job title), however, may have to be co-located with their teams in certain locations. Please work with your recruiter and your hiring manager to understand any location constraints of a particular role and to communicate your location preferences. **Dropbox is authorized to do business in many, but not all, states. If you are not located in or able to work from a state where Dropbox is registered, you will not be eligible for employment. Please speak with your recruiter to learn more about where Dropbox is registered.

Dropbox is one place to keep life organized and keep work moving. With more than 600 million registered users across 180 countries, we’re on a mission to design a more enlightened way of working. Dropbox is headquartered in San Francisco, CA, and has offices around the world. For more information on our mission and products, visit dropbox.com.

Role Description

The Detection and Response Team (DART) is looking for a Team Lead (non-manager), Detection Engineer with experience building and integrating detection infrastructure including log pipelines and enrichments, rule engines, and SIEM capabilities. You will be responsible for shaping the next generation of our detection platform, providing technical leadership, and keeping Dropbox worthy of trust!
We are a multi-disciplinary team with a wide variety of skills and responsibilities including Linux, macOS and Windows systems security, network security, and overall detection and response capabilities. We have many green field opportunities to apply your prior experience and vision to improve our Detection program!


  • Deliver the next generation of capabilities in our our detection program's SIEM tooling
  • Provide Detection and Response oncall services related to security incidents and system faults
  • Develop data-founded priorities for the detection programs efficacy, architecture, and scaleability
  • Drive the adoption of logging frameworks within our partner teams
  • Analyze data from disparate sources, correlating individual event logs into security events
  • Improve detection workflows with automation and enrichments
  • Write detection rules to identify threats specific to our environment

Minimum Qualifications

  • 5+ years experience as a security engineer in related domains, including 2+ years with hands-on technical management experience
  • Experience on-the-ground in operational teams or as a first responder to security incidents
  • Experience improving operational teams capabilities/KPIs and enacting change across teams
  • Knowledge of operating systems, file systems, or memory on macOS, Linux, Windows, or iOS/Android
  • Coding or scripting proficiency in one or more languages
  • Practical experience with attacker tactics, techniques and procedures

Preferred Qualifications

  • Previous individual contributor responsibilities performing incident response, threat intelligence, or digital forensics
  • Recent digital forensic experience including memory or live analysis of macOS, Linux, Windows, or iOS/Android systems
  • Experience as an incident responder to existential threats to the business
  • Experience and knowledge across multiple security domains, with strengths in two or more areas of detection engineering, digital forensics, incident response, threat intelligence, malware analysis
  • Demonstrated engagement in the security community through talks, papers, or code
  • Previous experience applying statistical and machine learning analysis in the detection domain
Dropbox is an equal opportunity employer. We are a welcoming place for everyone, and we do our best to make sure all people feel supported and connected at work. A big part of that effort is our support for members and allies of internal groups like Asians at Dropbox, BlackDropboxers, Latinx, Pridebox (LGBTQ), Vets at Dropbox, Women at Dropbox, ATX Diversity (based in Austin, Texas) and the Dropbox Empowerment Network (based in Dublin, Ireland).

Benefits and Perks

  • Generous company contribution toward individual medical, dental, & vision insurance coverage
  • 401k + company match
  • Market competitive total compensation package
  • Free Dropbox space for your friends and family
  • Wellness Reimbursement
  • Generous vacation policy
  • 10 company paid holidays
  • Volunteer time off
  • Company sponsored tech talks (technology and other relevant professional topics)

Related Jobs

Staff Software Engineer - Location Flexible

Dropbox - San Francisco, CA, US

Senior Software Engineer, HelloSign - Location Flexible

Dropbox - San Francisco, CA, USRemoteUnited States of America

Senior Site Reliability Engineer - Location Flexible

Dropbox - San Francisco, CA, USRemote

Software Engineer

Dropbox - Tel Aviv, IL

Director of Product Management, Business Platform

Dropbox - San Francisco, CA, US
Disclaimer: Local Candidates Only
This company does NOT accept candidates from outside recruiting firms. Agency contacts are not welcome.