Microsoft Security Researcher II 

India, Karnataka, Bengaluru 

98547157

• Bachelor's Degree in Statistics, Mathematics, Computer Science or related field and experience in software development lifecycle, large-scale computing, modeling, cybersecurity, and/or anomaly detection
• In-depthexperience in working as a security engineer
• Experience in identifying common vulnerability types (OWASP top 10, CWE top 25) in software and services written in C#, JavaScript/HTML, C++, C, etc
• Ability to debug and root cause vulnerabilities in software, services, and cloud platforms
• Excellent written and verbal communication skills

Preferred Qualifications:

• Public track record of vulnerability research and discovery
• Familiarity with cloud service architectures (Azure etc), design, and implementations
• Familiarity with operating system internals for Windows and/or Linux Familiarity with exploitation techniques and mitigations
• Experience developing software using C#, python, HTML/JS, C++/C, Rust, Go, etc
• Familiarity with hardware architectures such as x86-64 and AArch64
• Experience with reverse engineering binaries and exploits, though this role is mostly web/cloud/api focused

• Analyzing vulnerabilities in software and services to determine their root cause, severity, and security impact Identifying variants of vulnerabilities and discovering new vulnerabilities
• Building tools and inventing new approaches to automate the discovery & analysis of vulnerabilities
• Analyzing trends in vulnerabilities being discovered to spot patterns
• Researching, developing, and deploying mitigations for common patterns of vulnerabilities
• Performing penetration testing, offensive security research, and red teaming activities
• Engaging with and contributing knowledge back to the security research community
• Mentoring and contributing to the growth of individuals within the team and across Microsoft
• Supporting a healthy and inclusive culture within the team and across Microsoft