Microsoft Senior Security Operations Engineer 

Taiwan, Taoyuan City 

433295450

Microsoft runs on trust, and our trusted cloud was built on the foundational principles of security, privacy, compliance, and transparency.looking for people to help us keep that promise every day.Security Operations Engineerto help protect our customers and services from those who try to abuse and misuse our services.In this role, you willa mix ofdata analytics, engineeringskills, on-line services experience, and collaboration skills to help create automated detection and response systems to protect our cloud services from those who try to abuse them.

As aSecurity Operations Engineerfor the Microsoft Centralized Fraud Abuse Risk team (CFAR), you will work closely with other cloud and security experts across Microsoft to investigate abuse of our platform and services.  You will also work with data science team members to apply big data analytic skills to proactivelyattack patterns and automate our detection and response capabilities. You will work to understand how adversaries misuse and abuse our platform and disrupt their activities.We work in a DevOps model within the security business, so we are looking for someone who has a passion for applying data analytics to scale to millions of users, hosts, and operations. Working as a part of the Centralized Fraud Abuse Risk team (CFAR), you will work to solve issues related to the latest fraud and abuse trends and early warning indicators, as well as help design solutions for emerging threats. CFAR is a fast-paced team that constantlynew opportunities to learn and grow.

Microsoft to work in a dynamic team, taking on complex challenges in the business.Come and bring your technical

Required Qualifications:

• + years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response

• Bachelor's Degreein Statistics, Mathematics, ComputerScienceor related field.

• + years of experience in anti-abuse/anti-fraud/anti-cybercrime space OR in a field that hastransferrablehands-on technical skillssuch as:cyber security threat intelligence, security research, etc.

• 3+ years of experience in applying big data analytics techniques to solve security problems.

Other Requirements:

to meet Microsoft, customer and/or government security screening requirementsfor this role. These requirements include, but are not limited to the following specialized security screenings:

• . This position will berequiredto pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter

Preferred Qualifications:

• + years of experience in softwaredevelopment lifecycle, large-scale computing, modeling, cyber security, and anomaly detection

• Master's Degreein Statistics, Mathematics, ComputerScienceor related field.

• CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, and/or Security+ certification.

• Experience working in large scale cloud products: Azure, Microsoft 365, or similar competitive products in the industry.

• Exposure to security-related subjects and trends such as digital forensics, reverse engineering, penetration testing, and malware analysis.

• Prior experience working with large data sets analytics to answer complex and ambiguous questions using tools and languages like: SQL, KQL/Azure Data Explorer,JupyterNotebook, Spark, R, U-SQL, Azure Synapse, Azure Machine Learning, Azure Data Lake, Python, orPowerBI.

• Experience in creating and improving process automation and tools/systems/API integration using Python or PowerShell.

• Perform investigation on suspected compromised assets and services and analyze log data and other artifacts todeterminewhat occurred.

• Apply big data analytics toidentifyhow to detect adversary attacks and work closely with data science and engineering teams to implement detections at scale.

• Participate in and contribute to:

• Cyber threat intelligence sharing forums and platforms

• Organizing and curating threat intelligence

• Forming macroscopic perspective on adversaries, actors, and campaigns

• Partner with other teams across Microsoft to ideate, implement, and evolve systems and features to combat fraud.