Microsoft Security Researcher – Microsoft Defender 

Taiwan, Taoyuan City 

622526828

solutions that outpace even the most sophisticated threat actors.

hunt throughacross on-premises,and cloud environments,

• Bachelor's Degree in Statistics, Mathematics, ComputerScienceor related field, or equivalent experience.

• At least 5 years of hands-on experience in security research,withpracticalexpertiseincloud security andhybrid environments.

• Knowledge of the cybersecurity threat landscape, and modern attacker kill-chains, as mapped in frameworks like MITRE ATT&CK.

• inanalyzing large-scalesecurity telemetry todetect and investigatemalicious attack

• in at least one programming language, such as C#, Python, with ability to develop production-ready detection logic.

• Excellent verbal and written communication skills, with the ability to present complex research findings to technical and cross-functional stakeholders.

Preferred Qualifications

• xperience in offensiveor adversary simulationresearch,particularly inhybrid or cloud-native environments

• projects

• knowledge of Windows internals, orrelevant operating system security concepts.

• Investigate and analyze advanced attack techniques, ransomware operations, and extortion tactics to developa deepunderstanding of adversary tradecraft and TTPs (Tactics, Techniques, and Procedures).

• Proactively hunt throughdiversesignalsourcesacross on-premises, hybrid, and cloud environments to uncover sophisticated threats before they cause damage.

• Design and implement innovative detection algorithms and automated disruption capabilities that can autonomouslyidentifyand neutralize threats across the entire kill-chain.

• Drive forward-thinking approaches to cybersecurity challenges, continuously exploring new methodologies to enhance Microsoft's autonomous protection capabilities.

• Work closely with security research, engineering, and product teams to share insights, collaborate on complex investigations, and develop comprehensive protection strategies.

• Author technical blogs and present in security conferences thatestablish