Microsoft Principal Security Research Lead 

United States 

920061854

Required/Minimum Qualifications:

• 7+ years of computer security industry experience with knowledge of adversary tradecraft, security operations, incident response, threat hunting, and of emerging threats and techniques for attacks against modern enterprise environments.
  • OR Doctorate in Statistics, Mathematics, Computer Science or related field
• 1+ years of experience managing people and projects.
• 2+ years of experience hunting for and investigating security incidents at scale with one or more of the following: Azure Synapse, Azure Data Lake, SQL, Cosmos, Kusto, or similar systems.

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check

Additional or Preferred Qualifications

• 8+ years of computer security industry experience with knowledge of adversary tradecraft, security operations, incident response, threat hunting, and of emerging threats and techniques for attacks against modern enterprise environments.
  • OR Doctorate in Statistics, Mathematics, Computer Science or related field
• 2+ years people management experience.
• 3+ years of experience designing, prototyping, and driving engineering requirements for threat protection systems.
• Experience applying MITRE ATT&CK to assess threat scenarios and protection coverage across both cloud and hybrid (cloud + on prem) attacks.
• Experience with endpoint, identity, cloud application, cloud infrastructure, email, network and/or other threat detection, and prevention technologies
• Experience with security orchestration, automation, and response (SOAR) technologies that span investigation and response automation across diverse security tool integrations.
• Experience with one or more of the following: Azure Functions, Azure Static Web Sites, Azure Containers, Azure DevOps pipelines, Github actions, Github Codespaces, and Jupyter Notebooks
• Experience within coding with languages such as C#, Python and/or PowerShell AND language independent data formats such as JSON/ YAML/XML.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:Microsoft will accept applications for the role until June 15, 2024.

• Help define and execute a security research agenda and vision that is at the forefront of automated attack disruption.
• Guide a team of security researchers to collaboratively build practical solutions towards quantifiable impact against in-progress attacks.
• Work with data from many different security domains across email, identity, endpoint, and cloud to build the most accurate and precise automated protection capabilities.
• Collaborate closely with partner engineering and product management teams to push the boundaries of innovation.
• Demonstrate leadership principles of model, coach, and care for team members.
• Foster diverse perspectives and inclusive behaviors.

Other

• Embody our and