Email Security Engineer
firstPRO, Inc - watertown, MA
Apply NowJob Description
FirstPro is now accepting resumes for an Email Security Engineer position. This role will focus on email systems security, data and communication security solutions, and design processes to enable and deliver resilient email and data security services. This is a permanent, direct-hire role that can offer benefits.ResponsibilitiesEmail Security:Email Security Technology Design: Designing and implementing secure email architectures, including the selection and configuration of email gateways, filtering systems, and encryption technologiesAnti-Phishing Measures: Implementing anti-phishing solutions to detect and prevent phishing attacksSpam and Malware Protection: Configuring and managing spam filters and antivirus solutionsEncryption and Data Loss Prevention (DLP): Deploying encryption mechanisms to protect sensitive information within emails and implementing DLP solutions to prevent unauthorized disclosure of confidential dataAuthentication Protocols: Configuring and enforcing email authentication protocols such as SPF (Sender Policy Framework), DKIM (DomainKeys Identified Mail), and DMARC (Domain-based Message Authentication, Reporting, and Conformance)Incident Response: Developing and implementing incident response plans to quickly identify and mitigate email security incidents, including the investigation of security breaches and the recovery of compromised accounts. Includes integration with SIEMSOAR platformsSecurity Awareness Training: Providing training and awareness programs for users to recognize and respond to email-based threats, promoting a security-conscious culture within the organizationPolicy Development and Compliance: Developing and enforcing email security policies to ensure compliance with industry regulations and standards, as well as internal security requirementsContinuous Monitoring and Analysis: Implementing tools and processes for continuous monitoring of email traffic, analyzing logs, and staying informed about emerging threats to proactively adapt security measuresCollaboration with IT and InfoSec Teams: Working closely with IT teams, email administrators, and the InfoSec team to integrate email security measures with overall organizational security strategiesData Security:Data Security: Implementing and maintaining data security controls to ensure compliance with relevant regulations and industry standardsData Security Best Practices: Collaborating with other IT teams and the business to integrate data security best practices into development and operations processesMicrosoft Information Protection: Configuring and deploying Microsoft Information Protection in a hybrid environment to enable data discovery, classification and labelingData Loss Prevention: Deploying, managing, and maintaining endpoint and network data loss prevention solutionsContinuous Security Assessments: Performing security assessments and identifying vulnerabilities in data systemsData Encryption Solutions: Developing and implementing data encryption strategies across all critical systems and networkOngoing Documentation: Designing and documenting data flow charts and security diagrams for existing and future solutionsData Security Liaison: Acting as a subject matter expert by responding to internal and external customer inquiries regarding the company's information security systems, incidents, and issuesRequirementsAt least 5 years of experience in Information Security.Strong knowledge and understanding of email, data security architecture, protocols, and controlsDeep knowledge of email and data security investigationsExpertise in implementing and managing email-based data loss prevention (CrowdStrike or Proofpoint preferred)Expertise with threat detection and response tools including Microsoft 365 advanced threat protection and Proofpoint or similar technologiesAbility to stay positive, and adapt quickly to changing business requirementsAbility to think through problems and visualize strategic solutions
Created: 2024-10-03