ITRMS – Security Operations Senior Email Security Engineer

Job Description

Company is an innovative, global healthcare leader that is committed to improving health and well-being around the world. Our product offering categories include heart and respiratory health, infectious diseases, and women's health. We continue to focus our research on conditions that affect millions of people around the world - diseases like Alzheimer's, diabetes and cancer - while expanding our strengths in areas like vaccines and biologics. We also devote extensive time and energy to increasing access to medicines and vaccines through far-reaching programs that donate and deliver our products to the people who need them.

The Security Operations are focused on Application and Process ITIL Operations. These Operations include such functional areas as Identify and Access Management, Corporate Directory and enterprise Cyber-Security tools and applications.

This organization was formed as a result of the increased risks in both the information security (e.g. cyber threats, malware, etc.) and the regulated areas have required that staffs possessing such skills are fully embedded within the IT organization. The enterprise is now dependent on these security and compliance experts for identifying, escalating and remediating such IT Risks in a timely and efficient manner. Also, emerging technologies like cloud, mobility and data analytics require strong IT Risk and Compliance early involvement.

Location: Romania (Hybrid)

Schedule: 10:00 – 19:00

Team: Security Operations (Platform Management)

Contract; Full-time

 

We are looking for a Senior Email Security Engineer to join our global Security Operations (Platform Management) team. This role is an opportunity to drive enterprise-level email security across a large-scale environment, shaping visibility, stability, and defensive controls for millions of messages daily.

 

You will work hands-on with email security & web domain management tools while collaborating with multiple engineering, architecture and operational teams.

 

Key Responsibilities:

• Administration and tuning of email security tools across a global tenant

• Own advanced configurations: transport rules, connectors, inbound/outbound filtering, impersonation protection, anti-phishing, anti-malware, and quarantine policies, including rule logic, integrations and reporting

• Perform advanced investigations on email-based threats

• Conduct message trace deep-dives, identify root causes, propose and implement durable corrective actions

• Collaborate with Cloud Security, SOC, Endpoint Security, and Architecture teams to align controls and detections

• Drive improvements in email security posture through rule hardening, automation, enrichment, and workflow enhancements

• Own complex incident response actions related to email threats and support major security initiatives

• Ensure high-quality handling of request and changes using SNOW and Jira, working fully aligned with ITIL processes

• Overseeing Company acquired Web Domains using the available domain management tools

Qualifications:

• Strong hands-on experience with email security tools, operating at enterprise scale

• Deep understanding of email authentication and flow (SPF, DKIM, DMARC, ARC, connectors and mail routing logic

• Proven experience investigating email security threats and applying effective mitigations

• Ability to read, interpret, and correlate logs from multiple sources (message traces, security alerts, telemetry)

• Solid understanding of phishing techniques, spoofing patterns, impersonation attacks, and threat actor behavior

• Experience with ITIL processes and working with SNOW/Jira

• Excellent troubleshooting skills and comfort with complex, distributed systems

• Strong communication skills in English and ability to work with global teams

• Ability to take ownership, challenge existing configurations, and influence security posture through data-driven decisions

Nice to have Skills:

• Experience with security tools beyond email (identity, endpoint, cloud)

• Scripting knowledge for automation, enrichment, or bulk configuration changes

• Familiarity with Web Domain Management tools

• Experience in large, regulated environments (pharma, finance, manufacturing)

• Exposure to Security Operations/SOC collaboration, threat intel workflows, or cloud-security initiatives

What we offer:

• A hybrid work environment with flexibility

• Competitive salary and benefits package

• Opportunities for professional growth and further training

• A dynamic and supportive team environment, collaborating on the latest in security technologies.

Our employees are the key to our company’s success. We demonstrate our commitment to our employees by offering a competitive and valuable rewards program. Our Company’s benefits are designed to support the wide range of goals, needs and lifestyles of our employees, and many of the people that matter the most in their lives.

Required Skills:

Anti-Phishing, Computer Science, Financial Advising, Information Security, IT Operation, IT Project Lifecycle, Security Management, Security Technologies, Service Delivery

Preferred Skills:

Current Employees apply HERE

Current Contingent Workers apply HERE

Search Firm Representatives Please Read Carefully 
Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company.  No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. 

Employee Status:

Regular

Relocation:

No relocation

VISA Sponsorship:

No

Travel Requirements:

No Travel Required

Flexible Work Arrangements:

Hybrid

Shift:

Not Indicated

Valid Driving License:

No

Hazardous Material(s):

n/a

Job Posting End Date:

01/12/2026

*A job posting is effective until 11:59:59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date.