Email Security Analyst

Responsibilities

• Manual Threat Analysis: Investigate and classify suspicious emails to identify phishing, malware, spam, and benign attempts from real-world attack scenarios using our internal tooling.
• IOC Extraction: Extract and document Indicators of Compromise-URLs, domains, file hashes, sender information-from email headers, body content, and attachments.
• Campaign Tracking: Research and monitor ongoing email-based threat campaigns, mapping attacker tactics, techniques, and procedures (TTPs) to MITRE ATT&CK.
• Intelligence Contribution: Build and maintain internal threat intelligence datasets, detection patterns, and research documentation.
• Collaboration: Partner with senior researchers and participate in threat reviews to share observations and enhance detection quality.
• Growth: Keep learning! Share discoveries, explore new analysis techniques, and raise the bar for the team.

Requirements

• Educational Background: A university degree is not required. We actively encourage applications from individuals with vocational IT training, technical diplomas, relevant certifications (e.g., CompTIA IT Fundamentals), or those returning to the workforce who possess strong digital literacy.
• 1-2 years experience in the field
• An understanding of common cybersecurity threats (e.g., domain spoofing, spear-phishing)
• Exceptional attention to detail and the stamina to maintain focus during highly repetitive analytical tasks
• Experience handling large datasets
• Our Fantastic Benefits
• Note: An applicant assessment and background check may be part of your hiring procedure.
• No recruitment agencies, please.

Benefits

Additional Information

KnowBe4 empowers the modern workforce to make smarter security decisions every day. Trusted by more than 70,000 organizations worldwide, KnowBe4 is the pioneer of digital workforce security, securing both AI agents and humans. The KnowBe4 Platform provides attack simulation and training, collaboration security, and agent security powered by AIDA (Artificial Intelligence Defense Agents) and a proprietary Risk Score. The platform leverages 15-years of behavioral data to combat advanced threats including social engineering, prompt injection, and shadow AI. By securing humans and agents, KnowBe4 leads the industry in workforce trust and defense. Please submit your resume in English. To learn more about our team and office culture in São Paulo, Brazil, visit the following links. Careers Page: https://www.knowbe4.com/careers/locations/sao-paulo Glassdoor : https://www.glassdoor.com/Location/KnowBe4-S%C3%A3o-Paulo-Location-EI_IE969384.0,7_IL[...]M_-C1lsxoZq7Cx8IriVE8MkrzuTmnJzqego77RAWZz9sqGt_55BflwYKpQeg LinkedIn : https://www.linkedin.com/company/knowbe4/life/brazil/ As an Email Security Analyst at KnowBe4's Threat Labs, you'll conduct hands-on analysis of real-world email-based cyber threats by investigating suspicious emails to identify phishing, malware, and social engineering attacks, extracting indicators of compromise (IOCs) like URLs, domains, and file hashes, tracking ongoing threat campaigns using OSINT tools and mapping them to MITRE ATT&CK frameworks, and contributing technical research blogs and intelligence documentation that helps protect users globally-all while working alongside experienced security researchers in a collaborative environment using industry-standard tools like VirusTotal, URLscan.io, and Python scripting to turn raw threat data into actionable cybersecurity intelligence

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at knowbe4? Share your experience