Resumen del rol

Response Engineer- PhishGuard

Requisitos y responsabilidades

Contenido del rol extraído en secciones para revisar más rápido.

About INTERDICT

  • PhishGuard: Managed email threat detection and response service
  • Cloudflare Managed Defense (CMD): Network and application security monitoring for 'Under Attack' mitigation support.
  • Detection Engineering: ML model development and detection optimization

Role Responsibilities

  • Conduct continuous, real-time monitoring of email threat queues to review and analyze sophisticated attacks flagged by Cloudflare Email Security automated systems.
  • Investigate customer-reported submissions, execute proactive threat hunts targeting emerging patterns, and perform manual retraction or quarantine of verified malicious emails.
  • Provide critical feedback to Detection Engineering to update machine learning models and contribute novel campaign data to global intelligence repositories.
  • Identify nuanced threat patterns by correlating technical telemetry with behavioral indicators, generating detailed threat dossiers for impending organizational risks.
  • Deliver direct crisis intervention and proactive phone notifications to customers regarding high-dollar BEC threats and active insider risks.
  • Lead technical onboarding sessions for new customers, configuring internal system instances with bespoke detection rules, thresholds, and custom allow/block lists.
  • Guide customers through their multi-year DMARC implementation journey toward strict "Reject" policy enforcement by conducting SPF and DKIM alignment audits.

Role Requirements (Must-Have Skills)

  • Undergraduate degree in Computer Science, Information Security, Information Systems, or equivalent practical experience.
  • 5+ years of experience tracking and analyzing complex cyber campaigns utilizing technical indicators such as Domains, IP Addresses, and email headers.
  • Proven expertise analyzing, investigating, and defending against highly targeted phishing, invoice fraud, and Business Email Compromise (BEC) attacks.
  • Deep working knowledge of core email authentication protocols (SPF, DKIM, DMARC) and aggregate/forensic data interpretation.
  • Hands-on experience utilizing AI LLM tools (such as OpenCode or Windsurf) to develop automations for daily analysis and productivity workflows.
  • Excellent verbal and written English communication skills, with a strong ability to translate complex technical threats into actionable business intelligence for executive stakeholders.

Nice-to-Have Skills

  • Relevant industry certifications such as GCIH, GCIA, CEH, Security+, or equivalent.
  • Technical familiarity with regular expressions, YARA rules, SQL query formulation, and malicious file format analysis (e.g., Microsoft Office Documents, Adobe PDFs).
  • Prior experience working within managed security services (MSSP) or customer-facing security consulting environments.
  • Familiarity with the broader Cloudflare ecosystem, including Cloudflare Email Security, WAF, and Zero Trust architectures.
Roles similares

Mantén una lista de respaldo.

Ver stack
FocoSecurityÁrea del rol
Señal de seniorityNivel abiertoNivel del candidato
StackSQLSkills principales
Ubicación1 país aceptadoElegibilidad

Stack

Usa estas tags para comparar roles remotos similares.

Elegibilidad de ubicación

Candidatos deberían aplicar solo cuando el país del perfil aparece aquí.

Tu perfilPaís no definidoInicia sesión para comparar tu país con este rol.

Flujo de contratación

WithMira muestra el rol y luego envía candidatos a la aplicación de la empresa.

1Revisa fit del rol, stack y elegibilidad de ubicación en WithMira.
2Abre la página de aplicación de la empresa desde el link rastreado.
3Guarda el rol o suscríbete a oportunidades similares antes de salir.
Aplicar en el sitio de la empresaSitio de la empresaAbrir link