Email Operations Manager (Cyber Security)

Skill: Cybersecurity Operations Lead Email Security & Splunk

Exp: 8-15 Years

Location: Bangalore / Pune

Key Responsibilities

• Lead and manage the Cybersecurity Operations team to ensure timely detection, investigation, and resolution of security incidents.
• Perform deep email analysis, including header inspection and authentication checks (SPF, DKIM, DMARC).
• Monitor and secure domains and sub-domains, identifying spoofing attempts, phishing campaigns, and malicious URLs.
• Investigate and respond to threats related to:
• Malicious URLs and URL redirection
• IP blocklisting and allowlisting
• Utilize tools such as Splunk, VirusTotal, and Proofpoint for threat analysis and incident investigation.
• Develop and optimize Splunk dashboards, alerts, and correlation searches to detect anomalies.
• Drive mitigation strategies for phishing and spam attacks, including proactive threat intelligence sharing.
• Collaborate with IT, network, and security teams to enforce policies and strengthen system security.
• Maintain detailed documentation of incidents, response actions, and best practices.
• Mentor and guide junior analysts on investigation techniques and email security protocols.

Required Skills & Expertise

Core Technical Skills (Weighted Focus)

• Splunk (30%) Advanced query building, dashboarding, and alerting
• Email Analysis (30%) Header analysis, phishing detection, spam investigation
• Linux Troubleshooting (15%) System-level debugging and log analysis
• SPF, DKIM, DMARC (15%) Email authentication and validation mechanisms
• Proofpoint (10%) Email security monitoring and threat response