I would like to have group admin to be able to receive the Shield alert and also be able to see the Shield dashboard.
This is because currently the security team is not a co-admin but just a group admin and they would like to see alert from Shield

When adding items to a folder with defined classification, there is a time lag (appx. 5 min) to reflect the classification to added items. (we know its 20min for 40K items but still we want to remove the time lag)
During the lag, a user can temporarily operate the items outside the policy defined on its classification.
This seems a critical defect in terms of its security, so please consider to fix the situation.
Thanks,

Due to Relay specifications, only "files that triggered the flow" can be selected.
In our business, we want to copy uploaded folders to another folder automatically, but it is time-consuming to manually select the destination folder each time.
Therefore, we would like to be able to set triggers for folders.
(Japan)
Relayの仕様上、「フローをトリガーしたファイル」しか選択できない。
業務上、アップロードしたフォルダを自動的に別フォルダへコピーしたいが手動で毎回コピー先をフォルダを選択するため手間が掛かってしまいます。
そのためフォルダを対象にトリガー設定できるようにしたい。

If malicious content is uploaded to Box, we would like the ability to hide the content as well as suppress downloads.
If possible, we would like the content to be hidden automatically.
*For example, if infected with ransomware, we would like to hide the infected file and the file with the threatening message.

This is because we want to take action on the administrator's side so as not to worry users.

It would be good to be able to delegate the update of Sheild lists so that someone can amend who is in a list without providing access to other shield functions.

For example, a list of people email addresses that can change because external parties that we collaborate change but we want to be able to remove/add people.

Ability to customize the email alerts that are sent for Box Shield Malware scan when detected. Would like the ability to customize the email alerts that are sent to end users when malware is detected on content uploaded.

Use Case: Customized messaging allows the customer to provide instructions or further details on what users need to do next when they receive the alert. Customer wants to notify end users on the internal process to ensure that the proper steps are taken.

We have a file stored in multiple (hundreds of) locations across our Box enterprise and it regularly gets falsely flagged as malicious. We mark it as safe each time, for each location. It would be nice if there was a way to mark the file as safe for ALL locations in our Box enterprise at once. The file is identical name, size, and hash in each location so marking it as safe once instead of hundreds of times would be very much appreciated.

Include complete incident information with the thread detection email alerts. This will make it easy to share the information with others who do not have access to Box Shield admin portal, and will also eliminate an extra step of logging into admin portal for those receiving and triaging the alerts.
Use case: infosec team receives a Box Shield malicious content alert, identifies it as needing action, and passes it to the endpoint management team for mitigation.

Would like the ability to add internal users in addition to external collaborators to Shield lists. Right now we can only apply the Shield access controls to external collaborators outside our EID. We would like the lists to be able to b applied to our internal users as well to create policies around specific users and groups. Would provide much needed guardrails for the business groups inside our instance

We are based out of the US but have a few users based out of other countries. As of now, every time they access Box we get an alert for a suspicious login location. We can exclude the entire country, which we do not wish to do or we can exclude a specific IP. It would be great if we could create a IF THEN statement. Example: IF user = *@specificdomain.com AND location=specific country THEN SuspiciousLocationAlert=False.

To summarize, additional configuration of alerts would be very beneficial.

Enable option with Shield Access Policy to break hard coded waterfall permissions (e.g. Editor --> View).

E.g. everybody who is not the owner of the content previously was an Editor, but after I overlay a "View Only" Access Policy and Classification Label to the content, then everyone who is not the Owner of the content is View Only.

Enable ability to use metadata as a trigger for Classification Tags for Box Shield

Will the 'Box Shield Add-on for Splunk' be updated to be compatible with jquery 3.5? Currently Splunk is running upgrade guidance that all apps should be and this seems to be an outlier. This is for version 1.1.1

We should be able to notify a user when the file he just uploaded is detected by shield as corrupted.
The notification could be sent by mail or by notification on the website, depending on the configuration given by the user.

This feature is relly important on a legal base, because each user should have the ability to correct his own mistake.

The Box Shield function is configured to ask for the reason for the invitation when inviting external users.
I would like to see a change in the wording of the pop-up when asking for the reason for the invitation.

[Current]
In conjunction with the pull-down display of the reason for the invitation.
"Remove one user instead and continue" will be displayed.

[Change Requested]
Along with the display of the invitation reason pull-down.
"Remove the user who is preventing the invitation from being invited instead and continue" is displayed.

~~Japanese~~
Box Shieldの機能により外部ユーザー招待時の招待理由を求める設定を行なっている。
招待理由を求める際のポップアップについて文言の変更を希望する。

[現在]
招待理由のプルダウンの表示と合わせて、
"代わりに1名のユーザーを削除して続行する"と表示される

[変更希望]
招待理由のプルダウンの表示と合わせて、
"代わりに招待の妨げとなっているユーザーを招待先から削除して続行する"と表示される

Box Shield: enable granular controls for Threat Detection anomalous download behavior alerts.

E.g. alert me when any file larger than xx GB is downloaded.

E.g. alert me when xx% more content is downloaded than normal.

E.g. alert me when xxxx file quantities are downloaded from yyyy folder.