ProofPoint Email Security Engineer
Key Responsibilities
Deploy, and scale Proofpoint Email Protection, TAP (Targeted Attack Protection), and DLP modules across the enterprise.
Design mail flow topologies, routing rules, and failover configurations for high availability and resilience.
Engineer email authentication infrastructure (SPF, DKIM, DMARC) including policy enforcement and ongoing alignment validation.
DLP Engineering
Develop and maintain sophisticated DLP policies, content classifiers, smart identifiers, and dictionaries to protect sensitive data (PII, PCI, PHI, IP).
Build policy frameworks that balance security controls with business workflow requirements.
Engineer automated remediation workflows for DLP violations in collaboration with IT and Compliance.
Define data classification schemas and integrate them into enforcement logic within Proofpoint.
Integrations & Automation
Build and maintain integrations between Proofpoint and downstream systems — SIEM (XSIAM), SOAR platforms, ticketing systems (ServiceNow, Jira), and threat intelligence feeds.
Develop automation pipelines using Proofpoint APIs and scripting (Python, PowerShell) to streamline alert triage, reporting, and policy management.
Integrate Proofpoint with Microsoft 365 / Google Workspace environments, including hybrid mail flow configurations.
Cross-functional Collaboration
Partner with Security Architecture, SOC, and Compliance to ensure email security controls meet regulatory and business requirements (GDPR, HIPAA, SOX, CCPA).
Provide engineering guidance during audits, RFPs, and third-party assessments.
Mentor junior security team members on email security concepts and platform internals.
Preferred Qualifications
5+ years of experience in security engineering, with significant hands-on ownership of Proofpoint in an enterprise environment.
Experience with Proofpoint TAP, TRAP, CASB, or Proofpoint Information and Cloud Security (PICS).
Proofpoint Certified Administrator or Engineer certification.
Experience with Microsoft 365 Defender for Office 365 or Google Workspace security in hybrid environments.
Familiarity with cloud-native security architectures (AWS SES, Azure Communication Services).
Exposure to zero-trust email security models and advanced header analysis.
Security certifications: CISSP, GCIA, GPEN, or equivalent.
Work model: Hybrid
We strive to provide flexibility wherever possible. Based on this role’s business requirements, this is a hybrid position open to qualified applicants in Canada. Regardless of your working arrangement, we are here to support a healthy work-life balance though our various wellbeing programs.
The working arrangements for this role are accurate as of the date of posting. This may change based on the project you’re engaged in, as well as business and client requirements. Rest assured; we will always be clear about role expectations.
We're excited to meet people who share our mission and can make an impact in a variety of ways. Don't hesitate to apply, even if you only meet the minimum requirements listed. Think about your transferable experiences and unique skills that make you stand out as someone who can bring new and exciting things to this role.
*Please note, this role is not able to offer visa transfer or sponsorship now or in the future*
What we offer
- The chance to work with impact. Here, you’re empowered to bring your biggest thinking to help our company and clients improve everyday life.
- Ownership over your career. Stay at the top of your game through our award-winning learning and development ecosystem. And when your ambitions change or we offer new opportunities, we help you pivot by providing reskilling, on-the-job learning and guidance to find new roles that might be a better fit.
- The opportunity to thrive on a high caliber team with heart. We celebrate each other’s experiences and perspectives and promote a sense of belonging through our affinity groups and diversity and inclusion initiatives.
- A comprehensive total rewards package, including a competitive salary and a pension plan with matching contributions.
- Flexible health and financial benefits to support you and your eligible dependents—from day one.
- True work-life balance. Be at your best through paid time off, flexible work arrangements, volunteering opportunities, social events, and so much more.
About us
Cognizant (Nasdaq: CTSH) is an AI Builder and technology services provider, building the bridge between AI investment and enterprise value by building full-stack AI solutions for our clients. Our deep industry, process and engineering expertise enables us to build an organization’s unique context into technology systems that amplify human potential, realize tangible returns and keep global enterprises ahead in a fast-changing world. See how at www.cognizant.com or @cognizant.
Other employment-related information
Cognizant is an equal opportunity employer. Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, provincial or local laws.
If you have a disability that requires reasonable accommodation to search for a job opening or submit an application, please email [email protected] with your request and contact information.
Language requirements vary depending on roles, but we ask that all candidates have basic English proficiency for company-wide communications purposes. For roles based in Quebec, professional English proficiency is required, as you’ll deliver services to and collaborate with stakeholders outside the province who may not speak French.