Finding the best job has never been easier
Microsoft Senior Security Researcher Taiwan, Taoyuan City 707861326
Share
• Relevant years of computer security industry experience with knowledge of adversary tradecraft, security operations, incident response, threat hunting, and of emerging threats and techniques for attacks against modern enterprise environments. • Adequate years of experience designing, prototyping, and driving engineering requirements for threat protection systems. • Relevant years of experience hunting for and investigating security incidents at scale with one or more of the following: Azure Synapse, Azure Data Lake, SQL, Cosmos, Kusto, or similar systems.
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check:
- This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Experience within coding with languages such as C#, Python and/or PowerShell AND language independent data formats such as JSON/ YAML/XML. • Experience applying MITRE ATT&CK to assess threat scenarios and protection coverage across both cloud and hybrid (cloud + on prem) attacks. • Experience with endpoint, identity, cloud application, cloud infrastructure, email, network and/or other threat detection, and prevention technologies. • Experience with security orchestration, automation, and response (SOAR) technologies that span investigation and response automation across diverse security tool integrations. • Experience with cross-group and interpersonal skills, with the ability to articulate the business need for product improvements and a desire to engage directly with customers. • Research and delivery of security product features to general availability. • Demonstrated experience in conducting data studies, including the ability to work with available telemetry and drive improvements with engineering teams for previously unexplored data sources. • Experience with one or more of the following: Azure Functions, Azure Static Web Sites, Azure Containers, Azure DevOps pipelines, Github actions, Github Codespaces, and Jupyter Notebooks.
• Collaborate closely with cross-functional teams, including security analysts, data scientists, and product teams, to enhance Microsoft Sentinel and Microsoft Defender’s alert correlation and incident management capabilities. • Design and develop AI-driven solutions that automate threat investigation and response processes, optimizing the efficiency of security operations centers (SOCs). • Develop and implement scalable solutions to reduce alert noise and deliver unified incident queues for enhanced visibility and faster incident resolution. • Design and develop research-driven innovations that empower SOCs with end-to-end views of attacks and actionable insights. • Analyze and synthesize data across multiple security domains—including email, identity, endpoint, and cloud—to enhance automated protection with precision and accuracy.
These jobs might be a good fit
