Top Three Skills:
Proof Point Knowledge
CrowdStrike Knowledge
FireEye Knowledge
Application Support & Engineering
Engineer and support endpoint security platforms across Windows, macOS, and Linux environments, including:
CrowdStrike
Microsoft Defender
BitLocker
Eclypsium
Symantec Endpoint Protection
WinMagic, SecureDoc
Engineer and support enterprise email security solutions, including:
Proofpoint (Email Protection, TAP, DLP, Threat Response)
FireEye/Mandiant Email Security (NX/EX or equivalent threat detection platforms)
Assist in the development of automation and integrations to enhance operational efficiency, telemetry analysis, and threat response capabilities across endpoint and email security systems
Provide security consulting on medium to large-scale projects to ensure alignment with corporate security policies, standards, and architecture
Apply subject matter expertise in endpoint and email security to implement controls supporting availability, integrity, confidentiality, threat modeling, monitoring, access management, and business continuity
Threat Detection, Monitoring & Incident Response
Lead and participate in endpoint and email-related security incident response, including investigation, containment, and recovery
Investigate phishing, malware delivery, and email-based attacks, including analysis of headers, payloads, URLs, and attachments
Conduct technical investigations and post-incident digital forensics to identify root causes and recommend mitigation strategies
Review and correlate endpoint telemetry, email logs, and security alerts to identify anomalies and threats
Identify vulnerabilities, perform risk assessments, and evaluate remediation strategies across endpoint and email ecosystems
Collaborate with incident response, threat intelligence, SOC, and infrastructure teams to investigate and remediate threats
Perform advanced troubleshooting and root cause analysis across endpoint and email security platforms
Continuously improve security posture through policy tuning, detection engineering, and proactive threat hunting
Collaboration & Leadership
Mentor junior engineers and analysts, providing technical guidance and fostering professional development
Partner with peers, colleagues, and leadership to resolve issues, drive initiatives, and achieve team goals
Coordinate with email security teams, SOC, and messaging infrastructure teams to ensure cohesive threat defense
Documentation, Standards & Continuous Improvement
Create and maintain technical documentation, security standards, and training materials
Translate complex security requirements into actionable, scalable technical solutions
Stay current with emerging threats, particularly phishing, business email compromise (BEC), and advanced malware campaigns
Promote a security-first mindset and contribute to a culture of continuous improvement and operational excellence
Required Qualifications
4+ years of Information Security Engineering experience, or equivalent demonstrated through work experience, training, military experience, or education
2+ years of Windows Administration experience
2+ years of hands-on experience with EDR tools (CrowdStrike, Defender, etc.)
Experience supporting enterprise email security platforms (Proofpoint, FireEye, or similar)
2+ years of PowerShell or Python experience
2+ years of SDLC experience
1+ year of Splunk experience
Experience analyzing email threats (phishing, malware, URL-based attacks)
Flexibility to support implementations outside of standard business hours
Ability to deliver high-quality technical artifacts and engineering solutions aligned with business objectives
Desired Qualifications
Experience working with REST APIs
Experience with Network Routing
Bachelor’s or higher degree in Computer Science, Information Security, or related field
Certifications such as CISSP, GIAC, OSCP, or Microsoft Certified: Security Operations Analyst
Familiarity with cloud security (AWS, Azure, Google Cloud Platform) and hybrid environments
Experience integrating email security, EDR/XDR, and SIEM platforms
Knowledge of Zero Trust architecture, secure device onboarding, and network segmentation
Understanding of security frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK)
Experience with phishing detection, email authentication (DMARC, DKIM, SPF), and BEC prevention strategies
Ability to collaborate across technical and non-technical teams and clearly document technical requirements.
EEO:
“Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of – Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.”