M365 & Email Security Engineer

M365 & Email Security Engineer

D&H is growing! Join 100+ year old Employee-Owned technology distributor, offering end-to-end solutions for today's resellers, retailers, and the clients they serve across the SMB and Consumer markets.

• We are empowered by our employee Co-Owners who provide the industry’s best service, and we promote a collaborative culture.
• We offer an Employee Stock Ownership Plan, 401k, Paid Time Off, Medical, Prescription, Dental and Vision benefits as well as Gym Reimbursement, Work from Home Reimbursement, Employee Purchase Program, Tuition Assistance and much more!
• As a D&H Co-Owner you receive numerous discounts on services.
• We feel strongly about giving back to the community and promoting sustainable, eco-friendly business practices.

SUMMARY

Responsible for protecting the organization’s email systems from threats such as phishing, malware, spoofing, and data breaches, while also ensuring dependable operation of Microsoft Exchange across both on-premises and cloud environments. In addition to leading email security strategy and implementation, this role provides secondary support for overall email system administration, including availability, configuration, and user support. The Microsoft 365 Security Engineer is expected to have a strong understanding of complex email systems both on-prem and cloud-based and stay up to date with the latest security standards, systems, and authentication protocols, as well as best practice security products.

ESSENTIAL DUTIES AND RESPONSIBILITIES

• Management, configuration, and tuning of hybrid Microsoft Exchange environment.

• Planning and execution of migration of on-prem email resources to cloud based systems.

• Design, implement, and maintain enterprise-grade email security systems such as anti-spam and anti-phishing systems, anti-malware controls and systems, and data loss prevention (DLP) controls.

• Configure, monitor, and continuously improve email authentication protocols such as SPF, DKIM, and DMARC.

• Integrate threat intelligence feeds and AI-based automation to enhance email threat detection and response capabilities.

• Perform triage and incident response for email security events; conduct root cause analysis and drive resolution.

• Implement and manage a modern cloud-based secure email gateway platform.

• Monitor and respond to evolving email-based attack vectors; apply recommended mitigation strategies and controls.

• Oversee security configuration and compliance settings for Microsoft Teams, OneDrive for Business, and Sharepoint Online or additional cloud-based communication and collaboration tools as needed.

• Maintain up-to-date system documentation on security configurations and protocols.

• Collaborate with GRC team, other security engineers, and leadership to align email security posture with overall risk management strategies.

ADDITIONAL DUTIES

• Administer and maintain a hybrid Microsoft Exchange environment (on-premises and cloud), ensuring availability, reliability, and performance.

• Plan and support migrations to Exchange Online, including tenant-to-tenant transitions.

• Troubleshoot and resolve mail flow, delivery, and user experience issues.

• Administer policies and tools for compliance and retention in systems such as Microsoft Purview, Veritas Enterprise Vault.

• Manage email related disaster recovery tools and processes.

• Provide patching, capacity planning, and participate in a rotating on-call schedule to provide after-hours support.

• Support configuration and health of authentication protocols (SPF, DKIM, DMARC) to improve email deliverability and marketing campaign performance.

• Assist in tracking and reporting metrics related to outbound marketing communication (e.g., delivery success, alignment, engagement rates).

QUALIFICATIONS

To perform this job successfully, an individual must have an understanding of securing and managing enterprise email systems and Microsoft 365 application environments. This individual should possess knowledge and experience managing Exchange server environments both on-prem and cloud-based. They should have in-depth knowledge and experience of email authentication protocols and email security technologies. They should have experience in securing and managing Microsoft 365 applications. The requirements listed below are representative of the knowledge, skill, and/or ability required.

KNOWLEDGE, SKILLS and/or ABILITIES

• Strong interpersonal skills for interactions with a diverse user base in quick response scenarios.

• In-depth understanding of email delivery architecture, including SMTP, DNS, email gateways, SPF, DKIM, and DMARC.

• Strong knowledge of securing and administrating Exchange Online, Microsoft Teams, OneDrive for Business, and Sharepoint Online

• Critical attention to detail and planning.

• Knowledge of cloud-based architecture and security principles.

• Knowledge of Active Directory, Entra ID, and familiarity with GPO management.

• Experience hardening/securing Microsoft 365 environments.

• Working knowledge of PowerShell scripting and leveraging this in an M365 environment.

• Experience in migration from On-premise to Office 365 and tenant to tenant.

• Experience with VMware and virtualization implementations.

• Thorough understanding of basic networking fundamentals.

• Familiarities of SAN of NAS devices.

• Solid written and documentation abilities.

• Experience with automation/configuration management.

• Willingness to learn new skills and applications as necessary.

• Exceptional problem-solving skills, attention to detail, and the ability to communicate complex technical concepts to both technical and non-technical audiences.

• Independent self-starter that can work effectively independently or in a team collaborative effort.

EDUCATION and/or EXPERIENCE

Education

o Associates Degree in Cybersecurity or similar area of study required or equivalent years of related work experience.

o Bachelor’s Degree in Cybersecurity or similar area of study preferred.

Experience

o At least 3-5 years of experience in cybersecurity

o At least 3-5 years of experience with Exchange administration

o At least 3-5 years of experience with Microsoft 365 administration

o Experience with on-prem to Exchange online migration preferred.