+ years of computer security industry experience with knowledge of adversary tradecraft, security operations, incident response, threat hunting, and of emerging threats and techniques for attacks against modern enterprise environments.OR Doctorate in Statistics, Mathematics, Computer Science or related field
3+ years of experience designing, prototyping, and driving engineering requirements for threat protection systems.
2+ years of experience hunting for and investigating security incidents at scale with one or more of the following: Azure Synapse, Azure Data Lake, SQL, Cosmos, Kusto, or similar systems.
Other Requirements
Experience within coding with languages such as C#, Python and/or PowerShell AND language independent data formats such as JSON/ YAML/XML.
Experience applying MITRE ATT&CK to assess threat scenarios and protection coverage across both cloud and hybrid (cloud + on prem) attacks.
Experience with endpoint, identity, cloud application, cloud infrastructure, email, network and/or other threat detection, and prevention technologies.
Demonstrated experience in conducting data studies, including the ability to work with available telemetry and drive improvements with engineering teams for previously unexplored data sources.
Experience with one or more of the following: Azure Functions, Azure Static Web Sites, Azure Containers, Azure DevOps pipelines,Githubactions,GithubCodespaces, andJupyter
Responsibilities:
Help define and execute a security research agenda and vision that is at the forefront of automated attack disruption.
Work with data from many different security domains across email, identity, endpoint, and cloud to build the most accurate and precise automated protection capabilities.
Collaborate closely with partner engineering and product management teams to push the boundaries of innovation.
Demonstrate leadership principles of model, coach, and care for team members.
Foster diverse perspectives and inclusive behaviors.