Microsoft Senior Technical Program Manager - Security Incident Response 

Taiwan, Taoyuan City 

106494466

and evict threat actor activities.

Required/Minimum Qualifications

• 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response

• ORBachelor's Degreein Statistics, Mathematics, Computer Science or related field.

• 3+ years of experience working in incident response

Other Requirements:

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

• Microsoft Cloud Background Check : This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Preferred Qualifications:

• 7+ years of experience working in cybersecurity fields like Security Response, Assurance, Security Operations, etc.

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field

• Hands-on experience with incident response in Azure or Microsoft 365

• Proficient with Kusto data query languages

• Ability to work under pressure, structure unstructured problems and provide clarity where ambiguity exists

• Ability to operate with autonomy, influence others & Bias for action

Microsoft will accept applications for the role until April 18, 2025.

Incident Commander

• Incident commander focused on containment and eviction for large or complex security incidents.

• Leads incident stakeholders including security architects, service engineers, investigators, and domain specific security engineering teams.

• Drives the planning and execution of a containment and eviction plan of record.

• Builds on existing systems, applies automation, and establishes self-service capabilities to scale response.

• Briefs executive stakeholders on containment and eviction plans and associated status.

• Maintains hands-on knowledge of mitigation steps for various asset types and contributes to self-service guidance for impacted engineering teams.

• Participate in an on-call rotation

Technical Program Manager

• Maintains an inventory of containment and eviction capabilities.

• Applies systems thinking to identify opportunities to improve efficiency, reduce time to mitigate, and reduce toil of containment and eviction activities.

• Generates lean business cases to garner support for initiative prioritization and engineering investment.

• Serves as the business stakeholder for engineering efforts andassistwith operationalization of said capabilities.

• Drives continuous improvement in process and tooling.

Other: Embody our