Senior Software Engineer

About the Role

Key Responsibilities

• Proactively identify and dissect diverse email-borne threats, including sophisticated phishing, Business Email Compromise (BEC), malware campaigns, and pervasive spam.
• Conduct in-depth technical analysis of email headers, content, sending infrastructure, URLs (particularly in the context of phishing and spam), and other message attributes to identify crucial patterns and characteristics of unwanted or malicious email.
• Develop, test, and maintain complex detection signatures and rules in antispam engines (e.g., Rspamd, SpamAssassin etc).
• Monitor threat trends and adapt detection logic to keep pace with evolving attack techniques.
• Collaborate with a global team of Threat Researchers to investigate complex campaigns, share insights, and collectively improve detection efficacy.
• Automate data extraction, in-depth analysis, and the reporting of detection performance and efficacy.
• Query and analyse large datasets utilizing platforms such as Clickhouse, AWS Athena etc., to identify detection gaps, measure scanner effectiveness, and drive data-informed improvements.
• Document observed Tactics, Techniques, and Procedures (TTPs) related to email-delivered threats and communicate them internally or externally.
• Participate in cross-functional projects with Product, Engineering, and Operations teams to enhance Mimecast's overall security posture and product capabilities.

Requirements

• Experience with email detection/filtering engines (Rspamd, SpamAssassin, MailScanner, or similar), including rule/signature development.
• Knowledge of the email threat landscape, their associated TTPs, and a strong curiosity to learn about the infrastructure and methodologies behind phishing and malicious email campaigns.
• Understanding of core email protocols (SMTP/POP/IMAP) and authentication standards (DKIM, SPF, DMARC).
• Experience in Python/Lua or other scripting languages, effectively applied to automation, data analysis, and tool development.
• Advanced SQL skills for querying, manipulating, and extracting insights from large, complex datasets.
• Excellent time management and ability to self-prioritize in a fast-paced environment.
• Able to collaborate effectively both in-office and remotely; strong written and verbal communication skills.
• A genuine eagerness to learn continuously, adapt to new challenges, and proactively share knowledge with colleagues.

Nice to Have

• Experience with platforms such as Clickhouse, AWS Athena, or similar data analysis tools.
• Familiarity with threat detection and security best practices.
• Experience working in a collaborative, cross-functional team environment.

Qualifications

• No specific formal educational qualifications are explicitly mentioned in the description.

Benefits & Perks

• Formal and on-the-job learning opportunities.
• Comprehensive benefits package supporting a healthy lifestyle for employees and their families.
• Hybrid working model providing flexibility with at least two days per week in the office.
• A dynamic environment that recognizes and celebrates achievements.