Threat Response Analyst I

Responsibilities

• Analyze phishing/malicious email campaigns to identify IOC's
• Categorize email threats and determining the best means of updating detection
• Provide email security advice, expertise, and remediation to our customers
• Understand security policies within the Mimecast Administration Console and providing configuration suggestions to customers
• Research and investigate the latest security threats and their potential impact to Mimecast customers
• Work with security vendors around threat detection techniques and remediation
• Identifying opportunities for improved processes and systems
• Handle escalations from the Associates team and provide quick turnaround response or escalate to the Threat Response Analyst II team when necessary
• Participating in a 24/7 rotational shift schedule to ensure continuous threat monitoring and response
• Leveraging AI tools to enhance threat detection, analysis, and response processes

Requirements

• Experience and understanding of email security technologies.
• Working knowledge of messaging (email traffic management) and routing.
• Strong understanding of Domain Name System (DNS).
• Strong understanding of SMTP, SSL/TLS, POP3, IMAP, TCP/IP.
• Experience working with email/malware detection and blocking techniques.
• Experience working in a Security Operation Center (SOC).
• Knowledge of cybersecurity principles and best practices, with certifications such as CompTIA Security+ or equivalent, being advantageous.
• Curiosity about the infrastructure of phishing/malicious email campaigns.
• Experience working with threat intelligence platforms.
• Ability to learn from real-world incidents and apply knowledge to improve future risk handling.
• Familiarity with AI tools and their application in cybersecurity workflows.
• Experience working within SaaS environments.
• 1+ years' experience working with the Mimecast platform will be advantageous.
• Ability to handle escalations from the Associates team and provide quick turnaround response or escalate to the Threat Response Analyst II team.
• Provide mentoring and buddy-pairing support system to the Associates and Graduates.
• Actively contribute to team performance metrics by ensuring timely and accurate case handling, thorou

Additional Information

Threat Response Analyst I About Mimecast Mimecast is a leading cybersecurity company protecting organizations' people, data, and communications. Trusted by over 42,000 customers worldwide, it's recognized as a Leader in the Gartner Magic Quadrant for Digital Communications Governance and Archiving. Focusing on Human Risk Management, Mimecast addresses the human factor in cybersecurity through advanced threat detection, awareness training, risk management, and data governance. Its solutions ensure communication data is archived, compliant, and discoverable, helping businesses reduce risks tied to human actions. Mimecast is an AI-First engineering organization. Our teams actively leverage AI-powered development tools across all facets of engineering, from code development to testing, documentation, and operations. We're looking for leaders who don't just use AI tools but champion their adoption and establish new ways of working. Our AI leadership extends beyond how we build to what we build. Our Mihra AI agent delivers 7x faster threat response for customers, and we're recognized as "Agents of Change" in Human Risk Management. Engineers here work at the intersection of cutting-edge AI tooling and AI-powered security products that protect organizations worldwide. As a Threat Response Analyst, you will be joining the Mimecast Messaging Security organization and be responsible for supporting a service for on-demand threat resolution. The service is designed to provide customers with prompt feedback and intelligence on email-borne threats, remediate these threats from their email environment to reduce dwell time, and put the appropriate detections in place to prevent further incidents from occurring. Messaging Security ensures that our security-focused solutions are performing accurately and efficiently. We verify that Mimecast can detect the latest email-borne threats amidst a rapidly evolving threat landscape. Through threat research and customer feedback, we identify where Mimecast can be improved and update detection at our spam, URL, and attachment security layers. We strive for proactive, rather than reactive, approaches to threat detection. We are a global team dedicated to ensuring Mimecast maintains an exceptional sending reputation by identifying compromised email addresses, senders with poor mailing practices, and threats such as Business Email Compromise (BEC). Threat Response Operations (TRO) team collaborates closely with Threat Research team and Customer Support, to ensure our solutions remain effective in combating email-borne threats. The role requires flexibility to work afternoon/evening shifts and participate in a 24/7 rotational schedule, including nights, weekends, and holidays, to ensure continuous threat response.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at mimecast? Share your experience