It's fun to work in a company where people truly BELIEVE in what they're doing!

We're committed to bringing passion and customer focus to the business.

The Role

We are looking for an intelligent, passionate person to join our Security Operations Center (SOC) team. The SOC is responsible for the day-to-day accuracy of our products, monitoring customer data for new threats and reacting quickly when such threats occur. The team uses a follow-the sun-model and works closely with the Engineering, Support and Technical Services teams who highly value a close working relationship with the SOC. As a member of this team, you will be working with some of the largest Internet Service Providers and Mobile Operators to ensure the highest level of threat detection, analysis and high-quality response.

Your day-to-day

No two days are alike within the SOC as you react to attacks and work on broader research into our data but you can expect to:

• Participate in the monitoring and adjustment of detection systems for new and emerging threats

• Use best practices to develop innovative automation and tooling that can improve our resilience to new and emerging threats

• Work closely with our Engineering, Support, Threat Operations and Technical Services teams to provide customers with a multipronged approach to efficacy

• Document threats and trends for internal and external communication

• Provide support for users submitting CSI remediation requests

• Operate within a 24x7 follow-the-sun environment, and you will be expected to be part of a rotation to cover weekends

What you bring to the team

We’re looking for people who don’t just see an email or text message but instead see patterns or abusive behaviour and understand how our products see those messages. We’re looking for people with a curious mind to find ways to improve our products to detect and stop threats quickly. Additionally, we’re looking for someone:

• With a minimum of 2 years’ experience within the anti-abuse email deliverability, threat or other security research fields

• Who is a naturally curious person that can work independently yet fully integrate with worldwide remote teams

• That demonstrates analytical and creative problem-solving abilities

• That communicates clearly both verbally and in writing in English, within the team and external groups

• With a good understanding of the Internet and how malicious actors use available resources

• With technical experience with email, mobile, DNS or other messaging technologies

• Who is comfortable writing regular expressions and shell scripting

• Who is comfortable with SQL

• Who is comfortable using SIEM tools such as Splunk or Kibana

It would be a bonus if you also have any of these skills or experiences:

• Previous Internet Service Provider, Email Service Provider or Mobile Operator experience

• Conveying research via written reports and in person presentations

• An understanding of operating systems and network protocols

• Perl, Python and/or Go skills

• Proficiency in a non-English language

Why Proofpoint

As a customer focused and driven-to-win organization with leading edge products, there are many exciting reasons to join the Proofpoint team. We believe in hiring the best the brightest and cultivating a culture of collaboration and appreciation. As we continue to grow and expand globally, we understand that hiring the right people and developing great teams is key to our success! We are a multi-national company with locations in many countries, with each location contributing to Proofpoint’s amazing culture!

#LI-AN1

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!