Information Security Engineer

Please find details for this position below:

Job Title: Information Security Engineer

Location: Charlotte, NC (Hybrid - 3 days onsite)

Duration: 18 Month - W2 only

Top Three Skills:

• Proof Point Knowledge
• CrowdStrike Knowledge
• FireEye Knowledge

• Application Support & Engineering
• Engineer and support endpoint security platforms across Windows, macOS, and Linux environments, including:
• CrowdStrike
• Microsoft Defender
• BitLocker
• Eclypsium
• Symantec Endpoint Protection
• WinMagic, SecureDoc

Engineer and support enterprise email security solutions, including:

Proofpoint (Email Protection, TAP, DLP, Threat Response)

• FireEye/Mandiant Email Security (NX/EX or equivalent threat detection platforms)
• Assist in the development of automation and integrations to enhance operational efficiency, telemetry analysis, and threat response capabilities across endpoint and email security systems
• Provide security consulting on medium to large-scale projects to ensure alignment with corporate security policies, standards, and architecture
• Apply subject matter expertise in endpoint and email security to implement controls supporting availability, integrity, confidentiality, threat modeling, monitoring, access management, and business continuity

Threat Detection, Monitoring & Incident Response

• Lead and participate in endpoint and email-related security incident response, including investigation, containment, and recovery
• Investigate phishing, malware delivery, and email-based attacks, including analysis of headers, payloads, URLs, and attachments
• Conduct technical investigations and post-incident digital forensics to identify root causes and recommend mitigation strategies
• Review and correlate endpoint telemetry, email logs, and security alerts to identify anomalies and threats
• Identify vulnerabilities, perform risk assessments, and evaluate remediation strategies across endpoint and email ecosystems
• Collaborate with incident response, threat intelligence, SOC, and infrastructure teams to investigate and remediate threats
• Perform advanced troubleshooting and root cause analysis across endpoint and email security platforms
• Continuously improve security posture through policy tuning, detection engineering, and proactive threat hunting

Collaboration & Leadership

• Mentor junior engineers and analysts, providing technical guidance and fostering professional development
• Partner with peers, colleagues, and leadership to resolve issues, drive initiatives, and achieve team goals
• Coordinate with email security teams, SOC, and messaging infrastructure teams to ensure cohesive threat defense

Documentation, Standards & Continuous Improvement

• Create and maintain technical documentation, security standards, and training materials
• Translate complex security requirements into actionable, scalable technical solutions
• Stay current with emerging threats, particularly phishing, business email compromise (BEC), and advanced malware campaigns
• Promote a security-first mindset and contribute to a culture of continuous improvement and operational excellence

Required Qualifications

• 4 years of Information Security Engineering experience, or equivalent demonstrated through work experience, training, military experience, or education
• 2 years of Windows Administration experience
• 2 years of hands-on experience with EDR tools (CrowdStrike, Defender, etc.)
• Experience supporting enterprise email security platforms (Proofpoint, FireEye, or similar)
• 2 years of PowerShell or Python experience
• 2 years of SDLC experience
• 1 year of Splunk experience
• Experience analyzing email threats (phishing, malware, URL-based attacks)
• Flexibility to support implementations outside of standard business hours
• Ability to deliver high-quality technical artifacts and engineering solutions aligned with business objectives

Desired Qualifications

• Experience working with REST APIs
• Experience with Network Routing
• Bachelor’s or higher degree in Computer Science, Information Security, or related field
• Certifications such as CISSP, GIAC, OSCP, or Microsoft Certified: Security Operations Analyst
• Familiarity with cloud security (AWS, Azure, GCP) and hybrid environments
• Experience integrating email security, EDR/XDR, and SIEM platforms
• Knowledge of Zero Trust architecture, secure device onboarding, and network segmentation
• Understanding of security frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK)
• Experience with phishing detection, email authentication (DMARC, DKIM, SPF), and BEC prevention strategies
• Ability to collaborate across technical and non-technical teams and clearly document technical requirements

“Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of – Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.”