Associate Threat Response Analyst-2

Associate Threat Response Analyst – Threat Response Operations
 

The driving force behind Security Response at Mimecast
 

As a Threat Response Analyst, you will be joining the Mimecast Threat Response Operations team and will be responsible for supporting on-demand threat resolution for our customers. The service is designed to provide customers with prompt feedback and intelligence on email-borne threats, remediate these threats from their email environment to reduce dwell time, and put the appropriate detections in place to prevent further incidents from occurring. The role may require working afternoon/evening shifts and being part of a rotation for holiday support.

Threat Response team ensures that our security-focused solutions are performing accurately and efficiently, thereby keeping our customers safe amidst a rapidly evolving threat landscape. Through threat research and customer feedback we identify where our security products can be improved for better detection of security threats.

Threat Response works closely with research and development, as well as customer support. We are a global team that spans three continents.
 

Why Join Our Team?

“If you’re interested in detecting and solving real-world security problems, the Threat Response Operations team is for you. At Mimecast, we process over a billion emails and collaboration events each day. We use customer feedback, data from Threat Research and advancements in AI to keep our customers safe from threat actors, with speed and precision! With our focus on proactive, rather than reactive, approaches to threat detection, we play a key role in maintaining Mimecast’s exceptional reputation as a leading email and collaboration security provider.” – Hiring Manager
 

What You’ll Do

• Analyze phishing/malicious email campaigns to identify IOCs
• Categorize email threats and determine the optimal methods to update detection
• Provide email security advice, expertise, and remediation to our customers
• Understand security policies within the Mimecast Administration Console and provide configuration suggestions to customers
• Research and investigate the latest security threats and their potential impact on Mimecast customers
• Work with security vendors on threat detection techniques and remediation
• Identify opportunities to improve processes and systems.
   

What You’ll Bring:

• Experience and understanding of email security technologies: SPF, DKIM, DMARC
• Strong understanding of SMTP, SSL/TLS, POP3, IMAP, TCP/IP
• Working knowledge of messaging (email traffic management) and routing
• Strong understanding of Domain Name System (DNS)
• Strong understanding of URL structure, including components like protocols, domains, subdomains, paths, and query parameters
• Experience working with email/malware detection and blocking techniques
• Experience working with threat intelligence platforms
• Ability to translate complex technical capabilities into customer-friendly responses
• Curiosity about the infrastructure of phishing/malicious email campaigns
• Working within SaaS environments
   

Nice to have:

• Experience working in a Security Operations Centre (SOC)
• Experience with Mimecast products as an administrator
   

What We Bring

Join our Threat Reporting and Response team to accelerate your career journey, working with cutting-edge technologies and contributing to projects that have real customer impact. You will be immersed in a dynamic environment that recognizes and celebrates your achievements.

Mimecast offers formal and on-the-job learning opportunities, maintains a comprehensive benefits package that helps our employees and their family members sustain a healthy lifestyle, and importantly - working in cross-functional teams to build your knowledge!

We believe in ‘growth that’s good, we have ‘a culture that cares’ and we are on a ‘mission that matters’.
 

Our Hybrid Model: We provide you with the flexibility to live balanced, healthy lives through our hybrid working model that champions both collaborative teamwork and individual flexibility. Employees are expected to come to the office at least two days per week, because working together in person:

• Fosters a culture of collaboration, communication, performance and learning
• Drives innovation and creativity within and between teams
• Introduces employees to priorities outside of their immediate realm
• Ensures important interpersonal relationships and connections with one another and our community!
  
  #LI-GK1

Belonging at Mimecast

Cybersecurity is a community effort. That’s why we’re committed to building an inclusive, diverse community that celebrates and welcomes everyone – unless they’re a cybercriminal, of course.

We’re proud to be an Equal Opportunity and Affirmative Action Employer, and we’d encourage you to join us whatever your background. We particularly welcome applicants from traditionally underrepresented groups.

We consider everyone equally: your race, age, religion, sexual orientation, gender identity, ability, marital status, nationality, or any other protected characteristic won’t affect your application.

Due to certain obligations to our customers, an offer of employment will be subject to your successful completion of applicable background checks, conducted in accordance with local law.

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment.