- Manage enterprise email security platform Proofpoint to protect against phishing, spam, malware, and BEC attacks
- Handle email security operations including alert monitoring, triage, and incident response coordination with SOC/IR teams
- Investigate security incidents, perform root cause analysis, and execute remediation actions
- Maintain and optimize email security policies to improve detection accuracy and reduce false positives
- Manage domain onboarding/offboarding and ensure secure email flow configuration
- Collaborate with vendors for platform tuning, support, and issue resolution
- Participate in pilot evaluation of Abnormal Security for AI-based email threat detection and account takeover prevention
- Drive continuous improvement in email security operations through automation and process enhancement Day in a Life Scenario
- Work on security tickets related to email threats, service requests, and user escalations.
- Monitor and manage email queues in Proofpoint (quarantine, spam, phishing alerts) and take appropriate action.
- Analyze phishing attempts, threat patterns, and prioritize incidents based on risk and business impact.
- Coordinate with Incident Response / SOC team during active security incidents and investigations.
- Block malicious indicators of compromise (IOCs), suspicious senders, and domains in Proofpoint.
- Attend internal security meetings and vendor calls for updates, tuning, and issue resolution.
- Support onboarding and offboarding of domains, including email authentication setup (DMARC, SPF, DKIM).
- Tune email security policies to reduce false positives and improve detection accuracy
Email Phishing Analysis,Proofpoint,Malware Analysis,Dkim,DMARC,SPF,Email Security
