Expoint - all jobs in one place

Finding the best job has never been easier

Limitless High-tech career opportunities - Expoint

Microsoft Security Researcher II 
United Kingdom, England 
32173968

17.12.2024

Required Qualifications

  • Bachelor's or Master's degree in Computer Science, Statistics, Mathematics, or a related field and in-depth experience in email/cyber security, software development lifecycle, large-scale computing, modeling, and/or anomaly detection
  • Experience conducting email-based response or threat hunting
  • Experience developing tools and automation using common DevOps toolsets and programming languages.

Preferred Qualifications

  • Proficiency in multiple programming and scripting languages: C, C++, C#, Java, Python
  • Proficient years of hands-on experience in email or cyber security related roles
  • In-depth understanding of detection engineering; and
  • Experience working in a geographically distributed operational team

Other Requirements

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

  • Microsoft Cloud Background Check : This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Responsibilities
  • Document and enrich the understanding of the threat landscape including attacker techniques, emerging trends, and patterns;
  • Design and develop novel threat detection techniques or methodologies from creating proof-of-concept to productizing the solution. Write generic and durable threat detections based on Static and Dynamic detection engines;
  • Conduct proactive and reactive threat hunting and identify detection issues such as misses or misclassifications from a large-scale dataset;
  • Develop and maintain effective monitoring and alerting to proactively identify and respond to emerging threat campaigns or detection anomalies;
  • Deep dive investigation of customer’s detection problems and provide an effective and timely mitigation and resolutions;
  • Develop and maintain incident response playbooks to improve process and team capabilities;
  • Experience working with cloud-based environments, building and maintaining tools/systems with a strong focus on security;
  • Build tools and automation to streamline security operations and optimize solutions for engineers;
  • Share learnings and knowledge through documentation, brownbag or team meetings to improve overall team’s expertise and capabilities; and
  • Availability and willingness to cover a periodic on-call rotation for the team.