@HotCakeX thanks for your suggestion. I haven't removed the global certificate authorities from the built-in certificate store in Windows. I uninstalled Norton and re-booted, when I try to access the Box site I get the same error. The detail description is this:

app.box.com uses encryption to protect your information. When Microsoft Edge tried to connect to app.box.com this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be app.box.com, or a WiFi sign-in screen has interrupted the connection. Your information is still secure because Microsoft Edge stopped the connection before any data was exchanged.

You can't visit app.box.com at the moment because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later.

It's unlikely to be a website problem as all the other team members are using it, mostly on Windows, and no-one else has had an issue. Also it works fine on my Mac. 

Do you have any other suggestions, perhaps in Windows network settings? Years ago we used to set a website URL as "safe". Not sure you can do that nowadays.

@HotCakeX 

Thanks for your help. I experimented with your diagnostic and came across an issue by accident.

If I type the URL app.box.com I get ERR_TOO_MANY_REDIRECTS - the URL changes to app.box.com/www.vodafone.co.uk/contentcontrolpage/www.vodafone.co.uk..... (repeating)

I switched to a different router/BB supplier (Virgin Media) and I can get into the box folder OK using app.box.com/folder/....

So it's my broadband supplier vodafone that is interfering with the URL.  I had thought that my Mac was also connected to vodafone, but in fact it was Virgin Media which is why it was working.

I can now chase this up with vodafone.  Thanks again.

@KDkevindraper 

Oh, that's good to hear that, nice work finding that out too, hope they'll resolve this for you on time, before holidays :)