ProofPoint Email Security Engineer
Key Responsibilities
Deploy, and scale Proofpoint Email Protection, TAP (Targeted Attack Protection), and DLP modules across the enterprise.
Design mail flow topologies, routing rules, and failover configurations for high availability and resilience.
Engineer email authentication infrastructure (SPF, DKIM, DMARC) including policy enforcement and ongoing alignment validation.
DLP Engineering
Develop and maintain sophisticated DLP policies, content classifiers, smart identifiers, and dictionaries to protect sensitive data (PII, PCI, PHI, IP).
Build policy frameworks that balance security controls with business workflow requirements.
Engineer automated remediation workflows for DLP violations in collaboration with IT and Compliance.
Define data classification schemas and integrate them into enforcement logic within Proofpoint.
Integrations & Automation
Build and maintain integrations between Proofpoint and downstream systems — SIEM (XSIAM), SOAR platforms, ticketing systems (ServiceNow, Jira), and threat intelligence feeds.
Develop automation pipelines using Proofpoint APIs and scripting (Python, PowerShell) to streamline alert triage, reporting, and policy management.
Integrate Proofpoint with Microsoft 365 / Google Workspace environments, including hybrid mail flow configurations.
Cross-functional Collaboration
Partner with Security Architecture, SOC, and Compliance to ensure email security controls meet regulatory and business requirements (GDPR, HIPAA, SOX, CCPA).
Provide engineering guidance during audits, RFPs, and third-party assessments.
Mentor junior security team members on email security concepts and platform internals.
Preferred Qualifications
5+ years of experience in security engineering, with significant hands-on ownership of Proofpoint in an enterprise environment.
Experience with Proofpoint TAP, TRAP, CASB, or Proofpoint Information and Cloud Security (PICS).
Proofpoint Certified Administrator or Engineer certification.
Experience with Microsoft 365 Defender for Office 365 or Google Workspace security in hybrid environments.
Familiarity with cloud-native security architectures (AWS SES, Azure Communication Services).
Exposure to zero-trust email security models and advanced header analysis.
Security certifications: CISSP, GCIA, GPEN, or equivalent.
Work model: Hybrid
We strive to provide flexibility wherever possible. Based on this role’s business requirements, this is a hybrid position open to qualified applicants in Canada. Regardless of your working arrangement, we are here to support a healthy work-life balance though our various wellbeing programs.
The working arrangements for this role are accurate as of the date of posting. This may change based on the project you’re engaged in, as well as business and client requirements. Rest assured; we will always be clear about role expectations.
We're excited to meet people who share our mission and can make an impact in a variety of ways. Don't hesitate to apply, even if you only meet the minimum requirements listed. Think about your transferable experiences and unique skills that make you stand out as someone who can bring new and exciting things to this role.
*Please note, this role is not able to offer visa transfer or sponsorship now or in the future*
私たちについて:
コグニザント(NASDAQ: CTSH)は、AI builderおよびテクノロジーサービスプロバイダとして、AI投資を企業価値へとつなげるフルスタックのAIソリューションを提供しています。業界、業務プロセス、エンジニアリングに関する深い専門性を強みに、各企業固有のコンテキストをテクノロジーシステムに組み込み、人の力を最大限に引き出すとともに、具体的な成果の創出と、急速に変化する世界におけるグローバル企業の競争力維持を支援します。詳しくは、当社ウェブサイト www.cognizant.com をご覧ください。
雇用に関する追加情報
本募集に記載されている報酬情報は、掲載日時点で正確なものです。Cognizantは、適用される法令に従い、いつでも本情報を変更する権利を留保します。
応募者は、対面またはビデオ会議による面接への参加を求められる場合があります。また、各面接の際に、現在有効な州政府または政府発行の身分証明書の提示を求められる場合があります。
Cognizantは機会均等雇用主です。応募および選考において、人種、肌の色、性別、宗教、信条、性的指向、性自認、国籍、障がい、遺伝情報、妊娠、退役軍人の地位、その他連邦法・州法・地方自治体の法律により保護されるいかなる特性に基づく差別も行いません。
