Microsoft Senior Security Researcher - Threat Desk Analyst GHOST 

Israel 

715275903

As aSenior Security Researcher, you willbe responsible for synthesizing analysis onand proactive engagements.They will act as a trusted advisor to investigators and customers identifying and communicating threats effectively to drive clarity. You will work closely with other internal stakeholders to ensure quality analysis.

• 6-12 years of experience producing tactical and strategic finishedthreat intelligencedeliverables for customers including written content and presentationson threat actors, campaigns, and tactics, techniques, and procedures

• Technical aptitude to translate technical analysis into polished deliverables independently

• Expert at creating and presenting threat intelligence tailored for a variety of audiences including analysts,responders, andsenior executives.

• 6+ years of experience supporting analysis and content delivery related to incident responseandinvestigations.

• Proven track record of collaborating across teams with threat hunters, analysts, incident responders, and customer representatives

• Experience creating and presenting polished technical deliverables in a fast-paced environment.

• Extensive knowledge ofadversary groups,DiamondModel,and MITRE ATT&CK

• Familiarity and understanding of SQL or Kusto Query Language (KQL) queries (or experience with large database/SIEM query languages such asSplunk/Humio/Kibana, etc.)

Other Requirements:

Candidates must be able to meet Microsoft, customer and/or government security screening requirements are required for this role.

• This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

• Government Security Clearance

Preferred Qualifications:

• Experience investigating APT groups including familiarity with Indicators of Compromise (IOCs), Indicators of Activity (IOAs) and attack Tools, Techniques and Procedures (TTPs)

• Expertise in providing dedicated actionable intelligence support to customers

• Excellent oral and written communication skills (Hebrew & English)

• Proven knowledge of security fundamentals across Microsoft platforms (Client, Server, Cloud)

• Knowledge of forensic and incident response processes and terminology

• Consulting background

• Understanding of technology and security principles and possess knowledge of the cyber threat landscape

• Experience with Microsoft Azure and/or Office 365 platforms

• Knowledge of third-party cybersecurity solutions

• A desire to learn and grow, as well as a desire to help others do so

• Identifying potential threats, allowing for proactivedefencebefore an actual incident

• Translating intelligence requirementsintocustomintelligence content.

• Notifying customers regarding imminent attacker activity

• Providing recommendations to improve customers’ cybersecurity posture going forward and performing threat intelligence knowledge transfer to prepare customers to defend against today’s threat landscape

• Identifies, prioritizes, and targets complex security issues that cause negative impact to customers. Creates and drives adoption of relevant mitigations and provide proactive guidance

• Works with others to synthesize research findings into recommendations for mitigation of security issues. Shares across teams. Drives change within team based on research findings.

• Creating reports and presentationsincorporating threat actor detail, threat detection and hunting guidance, and remediation recommendations.