Skill to Evaluate
Security, Policies, Incident Response,Troubleshooting,DNS,Investigations,Monitoring,Triage,Communication Skills
Job Description
Key Responsibilities
Email Security Management: Implement and manage ForcePoint Email Security solutions to safeguard against phishing, malware, and other email threats.
User-Specific Policy Configuration: Provide support on user-specific policy configurations to tailor security measures to individual needs.
Recipient Verification: Assist in configuring recipient verification processes to ensure the authenticity of email communications.
Domain/IP/Email Whitelisting & Blacklisting: Support the whitelisting and blacklisting of domains, IP addresses, and email addresses to enhance security.
Rule Creation & Modification: Perform creation and modification of rules as per service tickets.
Quarantine Policy Analysis: Analyse and modify quarantine policies to optimize email filtering and threat detection. Troubleshooting: Troubleshoot inbound and outbound email delay and routing issues to ensure smooth email operations.
Email Classification: Perform classification of emails for whitelisting and blacklisting to maintain a secure email environment.
Threat Analysis: Monitor and analyse email traffic for suspicious activity, identifying potential threats and vulnerabilities.
Domain Onboarding: Collaborate with Registration, DNS, M365 Teams to successfully Onboard new/acquired domains in the current setup.
Email Warning Tags: Configure banners for external emails and provide exceptions to the vendors/partners.
Regular Expressions: Should be well versed with Regular Expressions for creating/modifying Regular Expressions based on the requirements.
URL Rewrite: Understanding of scenarios for rewriting/un-rewriting of URLs and providing exceptions when needed. Incident Response: Respond to security incidents related to email, conducting investigations and remediating issues as necessary.
Policy Development: Develop and enforce email security policies.
Reporting: Generate reports on email security incidents, trends, and effectiveness of security measures.
FIM : Should have understanding on monitoring profiles and incident triage.
GENERAL SKILLS: · Experience of working in a SOC with good communication skills.
Good Understanding of Information security
Self-motivated and self-learning
