全部面试
Dropbox logo

Dropbox

Senior

Senior Infrastructure Security Engineer securing Dropbox's AI and agentic infrastructure — identity, authZ, and guardrails for non-human actors

Dropbox is hiring a Senior Infrastructure Security Engineer (9+ years, IC4) to design and operate infrastructure-level security controls for Dropbox's AI and agentic infrastructure, spanning cloud, Kubernetes, and data stores. The JD is unusually specific about AI-native security: identity and authorization for non-human agents (SPIFFE/SPIRE, OAuth 2.1, OIDC), defenses against prompt injection and model poisoning, and multi-agent trust boundaries — this card is built entirely around that specificity rather than generic cloud security.

走进这场面试

免费 · 一场按这个岗位校准的真语音模拟

练这场面试

这场面试考什么

  • Identity and authZ for non-human agents (SPIFFE/SPIRE, OAuth 2.1, OIDC)
  • AI-specific vulnerabilities: prompt injection, model/data poisoning, supply-chain risk
  • Multi-agent security: trust boundaries, signed messaging, circuit breakers
  • Policy-as-code and infrastructure-as-code for cloud/AI platforms
  • Kubernetes and cloud infrastructure hardening (AWS/GCP/Azure)

常见提问方向

How would you design authentication and authorization for AI agents acting as non-human actors

Walk through securing a system against prompt injection or data/model poisoning in production

How do you establish trust boundaries and signed messaging between agents in a multi-agent system

Describe implementing policy-as-code to enforce security controls across cloud infrastructure at scale

How would you review an upcoming Kubernetes or cloud infrastructure change for hardening opportunities

What's your experience securing MCP-based systems or similar AI tool-use protocols

查看原始招聘页

相关面试