Email Security Engineer
Location: Sydney, NSW (Hybrid / Flexible working available)
Role Overview
We are seeking an experienced Email Security Engineer to protect and strengthen the organisation's email ecosystem against phishing, malware, data loss, and fraud. In this role, you will design, implement, and operate email security controls while working closely with security operations, IT, and engineering teams to ensure secure and reliable email communications.
Key Responsibilities
* Design, implement, and manage email security solutions and controls
* Monitor and respond to email-based security threats including phishing, spoofing, malware, and BEC attacks
* Implement and maintain email authentication and anti-spoofing standards (SPF, DKIM, DMARC)
* Tune and optimise email security gateways and filtering platforms
* Investigate security incidents and support incident response activities
* Conduct root cause analysis and implement preventive controls
* Collaborate with SOC, IT, and platform teams on security improvements
* Develop and maintain documentation, policies, and runbooks
* Support security awareness initiatives related to email threats
Required Skills & Experience
* Proven experience in email security, messaging security, or cybersecurity roles
* Strong understanding of email protocols and standards (SMTP, MIME, IMAP)
* Hands-on experience with email security platforms (e.g. Proofpoint, Mimecast, Microsoft Defender for Office 365, Cisco Email Security)
* Strong knowledge of phishing techniques, social engineering, and email-borne threats
* Experience implementing and managing SPF, DKIM, DMARC, and TLS
* Familiarity with SIEM, logging, and alerting tools
* Experience with incident response and threat investigation
* Strong communication and stakeholder engagement skills
Nice to Have
* Experience with cloud email platforms (Microsoft 365, Google Workspace)
* Knowledge of data loss prevention (DLP) and compliance requirements
* Scripting or automation experience (Python, PowerShell, etc.)
* Security certifications (e.g. CISSP, GCIA, GCIH, SC-200)
* Experience in regulated or enterprise environments
What We Offer
* Competitive salary package including superannuation
* Flexible working arrangements
* Opportunity to own and improve a critical security domain
* Collaborative and security-focused team environment
Job Type: Full-time
Pay: $115,000.00 per year
Benefits:
* Extended annual leave
* Health insurance
* Professional development assistance
* Salary packaging
Work Location: In person