CES /SMTP-EMAIL Security Engineer

Title : CES / SMTP-EMAIL Security Engineer

Location : Downey, CA, 90242 (Remote)

Duration : 12+ month contract

Position Description

• A Security Engineer serves as the security engineer of complex technology implementations in a product-centric environment;
• is comfortable with bridging the gap between legacy development or operations teams and working toward a shared culture and vision;

works to ensure developers create the most secure systems while enhancing the privacy of all system users; and has experience with white-hat hacking and fundamental computer science concepts.

The Security Engineer will perform security audits, risk analysis, application-level vulnerability testing, and security code reviews;

develop and implement technical solutions to help mitigate security vulnerabilities; and conduct research to identify new attack vectors.

Skills Required

• Security Engineers will possess knowledge and experience in safeguarding sensitive data from cyber-attacks.
• Managing and configuring on prem Virtual IronPort devices and Cisco Email Security in the cloud. Developing and implementing technical solutions to help mitigate security vulnerabilities.
• Domain Name Service (DNS), MX, A, TXT, PTR records and Simple Mail Transfer Protocol (SMPT).
• SPF, DKIM, DMARC standards to enhance email security and delivery. Understanding email blacklisting and reputation rating work, reading and interpreting email headers.

Managing advanced phishing environment and investigation.

• In-depth understanding of SMTP, DMARC, DKIM, and SPF to ensure the integrity and security of email communications. Proficiency in configuring and managing rules, policies, and features within various Secure Email Gateway (SEG) solutions.
• Ability to identify, analyze, and mitigate threats specific to email systems, including phishing, malware, and spam attacks.

Skilled in leading incident response related to email threats, including forensics and mitigation strategies. Understanding of compliance requirements related to email security, such as HIPAA.

• Ability to identify configuration and security anomalies and work effectively with technology vendors to resolve issues and update systems while adhering to change control policies.
• Advanced troubleshooting skills to quickly resolve complex issues within the email security infrastructure. Demonstration of leadership amongst a team of security professionals, fostering a collaborative and proactive security environment.

Experience Required

• Minimum of three (3) years experience working in an environment with Cyber Security Tools and Technologies, IDS / IPS / 2FA / MFA, SIEM, DLP, Log Correlation, SOCaaS, Incident Response, Retroactive Malware Analysis and RAW Logs, Cleanup and Restoration, Risk & Vulnerability Management.
• Minimum of three (3) years of experience and understanding of Penetration Detection (Blue Team), Security Solutions such as IronPort (CES), SecureX, Advanced Phishing Solutions : Cisco CMD, Dark Trace, Proof Point, Mimecast, Area1, SecureWorks + Red Cloak, Microsoft O365, Azure AD, Security, Compliance, Exchange Online, Monitoring with PRTG.
• Minimum of three (3) years’ experience integrating cloud-based email services with on-premises SEG solutions, ensuring a seamless security posture across platforms.
• Minimum of three (3) years experience in monitoring and optimizing the performance of email security systems to handle large volumes of email traffic efficiently.
• Minimum of three (3) years experience in planning and executing the migration of email security systems from one platform to another with minimal downtime.
• Minimum of three (3) years experience with Cloud Email Security (CES), email blacklisting and reputation rating work

Education Required

• This classification requires the possession of a bachelor’s degree in an IT-related or Engineering field. Additional qualifying experience may be substituted for the required education on a year-for-year basis.
21 hours ago