Dropbox

Dropbox

Dropbox is a technology company that builds simple, powerful products for individuals and businesses. With over 700 million registered users worldwide, Dropbox offers file sync, sharing, online backup, cloud storage, collaboration tools, and more to st...

Internet Software & Services
1K-5K
Founded 2007

Description

  • Design, deploy, and operate security controls for Dropbox’s AI and agentic infrastructure, including model gateways, inference services, vector stores, retrieval systems, and supporting cloud and Kubernetes platforms.
  • Implement least-privilege and secure-execution patterns for AI agents, including per-tool authorization, sandboxing, human-in-the-loop approvals, and separation of policy validation from execution.
  • Lead security implementation for AI tool and agent connectivity layers, including MCP gateway deployments and controls for OAuth-based authorization, scope minimization, token audience validation, origin validation, replay protection, and secure isolation between trusted and untrusted tool domains.
  • Build and operate security infrastructure solutions that scale Dropbox’s security posture across on-prem and cloud infrastructure.
  • Automate security controls using scripting to reduce repetitive work and human involvement.
  • Collaborate with cross-functional teams to influence product decisions and improve security posture.
  • Own and drive security projects in a collaborative environment.

Requirements

  • 9+ years of security experience or related industry experience with impactful contributions to security strategies.
  • Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent experience, with coding proficiency.
  • Experience securing LLM, RAG, or agentic AI systems in production, including controls for prompt injection, sensitive-data disclosure, excessive agency, data or model poisoning, and AI supply-chain risk.
  • Experience designing identity and authorization for non-human workloads and agents using SPIFFE/SPIRE, OAuth 2.1 or OIDC, AWS IRSA, Google Workload Identity Federation, Azure managed identities, or equivalent patterns.
  • Experience integrating adversarial testing and release gates for AI systems into CI/CD, including regression coverage for prompt injection, tool abuse, memory poisoning, approval bypass, and multi-agent escalation scenarios.
  • Solid knowledge of Linux fundamentals, including system administration, security, networking, scripting, and troubleshooting.
  • Proficiency in one or more scripting or high-level languages such as Bash, Python, Go, Rust, Ruby, NodeJS, C/C++, or Java.
  • Experience securing MCP-based systems or similar AI agent and tool protocols is preferred.
  • Experience with multi-agent security controls such as trust boundaries, signed inter-agent messaging, and circuit breakers is preferred.
  • Familiarity with NIST AI RMF, NIST SP 800-218A, MITRE ATLAS, CSA AICM, and OWASP LLM and agentic security guidance is preferred.
  • Experience with security tools such as Teleport, CrowdStrike, Proofpoint, IPS/IDS, SIEM, or SOAR is preferred.
  • Certifications such as CISSP, CISM, or equivalent are preferred.
  • Participation in on-call rotations may be required for teams with services, including availability during core and non-core business hours.

Benefits

  • Canada pay range of $205,700 to $278,300 CAD.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Active Directory / Identity Engineer

Keywords Studios 10K-50K Internet Software & Services

Keywords Group is seeking an experienced Active Directory SME and Azure Identity Lead to guide company-wide identity architecture and support global IT across on-premises and cloud environments.

Active Directory Cybersecurity DHCP DNS PowerShell
14 hours, 56 minutes ago

Senior Frontend Infrastructure Engineer

Resident Home 251-1K Specialty Retail

Ashley Digital is seeking a Senior Front-End Infrastructure Engineer in Tel Aviv to build the foundational frontend systems that power e-commerce experiences across multiple brands and products.

CDN CI/CD Cypress Datadog Google Analytics Jest Next.js Node.js Playwright React TypeScript
15 hours, 11 minutes ago

Senior Security Compliance Engineer

Klaviyo 1K-5K IT Services

Klaviyo is seeking a Senior Security Compliance Engineer to help its Security Trust & Risk team automate and scale compliance operations, continuous monitoring, and GRC tooling across a fast-growing AI-first B2C CRM platform.

AWS CI/CD Go HIPAA Kubernetes Python REST API SQL
15 hours, 41 minutes ago

Website Security Engineer

PetDesk 51-250 Health Care Providers & Services

PetDesk is hiring a Website Security Specialist to protect its website portfolio by preventing vulnerabilities, responding to incidents, and maintaining secure technical operations across the full site lifecycle.

WordPress
15 hours, 41 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers