We are seeking an experienced Email Security & Insider Threat Specialist to strengthen our organization’s defenses against phishing, business email compromise (BEC), malware, and insider-driven risks. The role focuses on monitoring, investigating, and optimizing email security controls using leading platforms such as Proofpoint and Forcepoint Email DLP, while ensuring robust protection for executives and critical business users. Key Responsibilities Monitor and manage Proofpoint Email Security to detect and respond to phishing, BEC, malware, and ransomware-based campaigns. Investigate quarantined, suspicious, and user-reported phishing emails, ensuring timely analysis and remediation. Fine-tune email security controls including email filtering, sandboxing, and DLP policies to improve detection accuracy and reduce false positives. Implement and maintain VIP and executive protection controls to safeguard senior leadership from targeted email-based threats. Analyze email threat trends and deliver monthly email threat intelligence and risk reports to stakeholders. Coordinate with SOC, incident response, and IT teams to contain and remediate email-related security incidents. Support awareness initiatives by providing insights into emerging email-based attack techniques. Required Skills & Experience3+ years of hands-on experience in Email Security, Insider Threat, or SOC operations. Strong hands-on expertise with Proofpoint Email Protection. Experience with Forcepoint Email DLP or similar data loss prevention technologies. Solid understanding of phishing, BEC, malware delivery techniques, and insider threat scenarios. Experience in investigating and responding to email-based security incidents. Ability to analyze security logs, alerts, and threat intelligence data. Strong reporting and communication skills for both technical and non-technical audiences. Preferred Qualifications Experience in banking, financial services, or large enterprise environments. Familiarity with email authentication standards such as SPF, DKIM, and DMARC. Knowledge of security frameworks and threat intelligence practices. Relevant security certifications (e.g., Security+, CEH, CISSP) are a plus. Location KSA / Middle East (as applicable)