Lead Information Security Engineer - Email Security

About The Position

Requirements

• 5+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• Hands‑on experience with enterprise email security solutions (e.g., MDO, Proofpoint, Mimecast, Ironscales, etc.).
• Strong understanding of email‑based attack methods and defensive controls.
• Experience supporting incident response and tuning security policies/rules.
• Ability to lead cross‑team initiatives and communicate clearly with technical and non‑technical audiences.

Nice To Haves

• Experience in large enterprise or public‑sector environments.
• Familiarity with identity platforms (Azure AD, conditional access).
• Relevant certifications (e.g., Microsoft Security, Security+, CySA+, GIAC).
• Scripting/automation experience (PowerShell, Python).

Responsibilities

• Lead detection, analysis, and mitigation of email‑based threats (phishing, malware, impersonation, BEC).
• Manage and optimize enterprise email security platforms and threat‑prevention technologies.
• Maintain and enforce email security policies, standards, and best practices.
• Coordinate with Messaging, Identity, Security Operations, and Incident Response teams.
• Deliver reporting on threat trends, system performance, and control effectiveness.
• Recommend improvements to strengthen email security posture.
• Lead computer security incident response activities for highly complex events
• Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
• Provide security consulting on large projects for internal clients to ensure conformity with corporate information, security policy, and standards
• Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
• Review and correlate security logs
• Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
• Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
• Collaborate and influence all levels of professionals including managers
• Lead a team to achieve objectives