Expoint - all jobs in one place

Finding the best job has never been easier

Limitless High-tech career opportunities - Expoint

Microsoft Principal Security Research Lead 
United States 
920061854

11.06.2024

Required/Minimum Qualifications:

  • 7+ years of computer security industry experience with knowledge of adversary tradecraft, security operations, incident response, threat hunting, and of emerging threats and techniques for attacks against modern enterprise environments.
    • OR Doctorate in Statistics, Mathematics, Computer Science or related field
  • 1+ years of experience managing people and projects.
  • 2+ years of experience hunting for and investigating security incidents at scale with one or more of the following: Azure Synapse, Azure Data Lake, SQL, Cosmos, Kusto, or similar systems.

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check

Additional or Preferred Qualifications

  • 8+ years of computer security industry experience with knowledge of adversary tradecraft, security operations, incident response, threat hunting, and of emerging threats and techniques for attacks against modern enterprise environments.
    • OR Doctorate in Statistics, Mathematics, Computer Science or related field
  • 2+ years people management experience.
  • 3+ years of experience designing, prototyping, and driving engineering requirements for threat protection systems.
  • Experience applying MITRE ATT&CK to assess threat scenarios and protection coverage across both cloud and hybrid (cloud + on prem) attacks.
  • Experience with endpoint, identity, cloud application, cloud infrastructure, email, network and/or other threat detection, and prevention technologies
  • Experience with security orchestration, automation, and response (SOAR) technologies that span investigation and response automation across diverse security tool integrations.
  • Experience with one or more of the following: Azure Functions, Azure Static Web Sites, Azure Containers, Azure DevOps pipelines, Github actions, Github Codespaces, and Jupyter Notebooks
  • Experience within coding with languages such as C#, Python and/or PowerShell AND language independent data formats such as JSON/ YAML/XML.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:Microsoft will accept applications for the role until June 15, 2024.


Responsibilities
  • Help define and execute a security research agenda and vision that is at the forefront of automated attack disruption.
  • Guide a team of security researchers to collaboratively build practical solutions towards quantifiable impact against in-progress attacks.
  • Work with data from many different security domains across email, identity, endpoint, and cloud to build the most accurate and precise automated protection capabilities.
  • Collaborate closely with partner engineering and product management teams to push the boundaries of innovation.
  • Demonstrate leadership principles of model, coach, and care for team members.
  • Foster diverse perspectives and inclusive behaviors.

Other

  • Embody our and