Expoint - all jobs in one place

המקום בו המומחים והחברות הטובות ביותר נפגשים

Limitless High-tech career opportunities - Expoint

Microsoft Security Engineer II 
United States, Washington 
319852109

25.06.2024

In this role you will have the opportunity to work on cybersecurity issues as part of a dynamic and high-impact team. We use advanced security technologies, extensive automation and procedures to protect, detect and respond to security threats in real-time. In addition to day to day responsibilities, you will inform security initiatives across the company. You will analyze, contain and mitigate threats and escalations from multiple sources, both internal and external. You will be building and tuning a wide variety of advanced security detections, conducting detailed and comprehensive investigation and driving issues to closure. You will also contribute to developing innovative automation and orchestration solutions for detection and response. As part of the job, you will collaborate with security partners and Microsoft security product groups to improve our security posture.

Required/Minimum Qualifications

  • 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response

o OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.

  • 3+ years of hands-on experience in security operations, threat detection and analysis, and/or incident response.
  • 2+ years of professional software development life-cycle experience in one of the following - C#, JavaScript or Python.

Other Requirements

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

Microsoft Cloud Background Check. This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Additional Qualifications:

  • Experience in analyzing a wide variety of network and host security logs to detect and resolve security issues.
  • Understanding of common threat analysis model’s such as the Diamond Model, Cyber Kill Chain, and MITRE ATT&CK.
  • Deep understanding of system internals on MacOS, Windows, and Linux.
  • Background in malware analysis.
  • Experience developing on Azure PaaS technologies such as; Functions (and Durable Functions), Storage (blob, table, queues) and Logic Apps.
  • Experience automating and developing with Python, Jupyter Notebooks, PowerShell, Kusto, or R with RESTful APIs.
  • Experience correlating across very large and diverse datasets (Azure Data Lake, Azure Data Explorer, Cosmos DB).
  • 2+ years working with SQL-based databases.
  • Experience working within a diverse organization to gain support for your ideas.
  • Ability to effectively multi-task and prioritize in a fast-paced environment.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:

Microsoft will accept applications for the role until July 4, 2024.

Responsibilities
  • Detect and respond to advanced threats, actor techniques, anomalous or suspicious activity, combined with intelligence, to identify potential and active risks to systems and data.
  • Conduct detailed comprehensive triage and investigation on a wide variety of security events and implement containment and mitigation processes.
  • Collaborate with internal security partners and threat intelligence teams to derive indications and warnings of impending threat.
  • Build, deploy, tune scalable systems that automate security event detection, response and repeatable tasks through technical solutions and new security tools.
  • Work with analysts and engineers by observing gaps and opportunities to provide efficiencies in detection and response.
  • Keep up to date on emerging vulnerability, response, mitigation, threat landscape trends and use this knowledge to drive proactive threat monitoring.
  • Participate in creating innovative ways to use a wide range of security event data to advance detection methods.
  • Use security business intelligence to drive prioritization and improvements within Microsoft security programs.
  • Should have solid verbal and written communication skills; ability to communicate effectively and clearly to both technical and non-technical staff.
  • Demonstrated enthusiasm for learning new things and ability to pick up new ideas quickly.
  • We handle active security events and respond to threats from a variety of sources, you will be required to participate in shift and on call rotation.
Other:
  • Embody our and