Security Researcher II

Microsoft Corporation Atlanta , GA 30301

Posted 2 months ago

The Microsoft Threat Experts team is looking for threat hunters! No matter how sophisticated attacker behaviors become, Microsoft Threat Protection (MTP) will help enterprises detect, investigate, and respond to advanced attacks and data breaches on their networks.Our team uses deep knowledge of the attacker landscape and rich telemetry from our sensors to perform root-cause analysis and generate custom alerts, ensuring that MTP customers are well equipped to quickly respond to human adversaries identified in their unique environments.

Ensuring that no human adversary can operate silently begins with experts harnessing the powerful optics provided by MTP, across the attacker kill-chain, coupled with world-class detections. We're looking for a skilled hunter to harness the power of Microsoft's trillions of security signals to quickly identify and report the latest human adversary behaviors, drive critical context-rich alerts, build new tools and automations in support of hunting objectives, and drive innovations for detecting advanced attacker tradecraft.




Minimum requirements include:

  • 3+ years of experience in a technical role in the areas of Security Operations, Threat Intelligence, Cyber Incident Response, or Penetration Testing/Red Team

  • Experience using analysis tools (e.g. file/network/OS monitoring tools and/or debuggers)

  • Knowledge of operating system internals and security mechanisms

  • Understanding of attacker techniques that leverage email and cloud-service tactics

  • Skilled working with extremely large data sets, using tools and scripting languages such as: Excel, SQL, Python, Splunk, and PowerBI

  • Excellent cross-group and interpersonal skills, with the ability to articulate business need for detection improvements

  • Strong ability to use data to 'tell a story'

The following additional experiences are favorable, but not required:

  • Technical BS degree preferred in Computer Science, Computer Engineering, Information Security, Mathematics, or Physics

  • Experience developing software or tools using C++, C#, Python, Ruby, or similar

  • Experience with reverse engineering, digital forensics (DFIR) or incident response, or machine learning models

  • Experience with system administration in a large enterprise environment including

Windows and Linux servers and workstations, network administration, cloud administration

  • Experience with offensive security including tools such as Metasploit, exploit development, Open Source Intelligence Gathering (OSINT),and designing ways to breach enterprise networks

  • Experience with advanced persistent threats and human adversary compromises

  • Additional advanced technical degrees or cyber security based certifications such as CISSP, OSCP, CEH, or GIAC certifications

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

#microsoftatl #mtejobs

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

  • Explore and correlate large data sets to uncover novel attack techniques, monitor and catalog changes in activity group tradecraft, and generate custom alerts for enterprise customers.

  • Work with customer support teams to support investigation and response during an enterprise's time of need.

  • Collaborate with our data science and threat research teams to develop and maintain accurate and durable cloud-based detections.

  • Build hunting tools and automations for use in the discovery of human adversaries.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Security Researcher II

Zscaler, Inc.

Posted 3 months ago

VIEW JOBS 8/16/2020 12:00:00 AM 2020-11-14T00:00 Position: Senior Security Researcher Location: Atlanta, GA + Surrounding Areas US Citizen is a must For over 10 years, Zscaler has been disrupting and transforming the security industry. Our 100% purpose built cloud platform delivers the entire gateway security stack as a service through 150 global data centers to securely connect users to their applications, regardless of device, location, or network in over 185 countries protecting over 3,500 companies and 12M employees. We work in a fast paced, dynamic and make it happen culture. Our people are some of the brightest and passionate in the industry that thrive on being the first to solve problems. We are always looking to hire highly passionate, collaborative and humble people that want to make a difference. We process over 60 billion transactions a day in our cloud and protect our customers from over 125 million security threats daily. Security Researcher II will report to the Manager, "Internal Security." Responsibilities: * Performs vulnerability assessments, including development of risk mitigation strategies. * System/network security monitoring with Security Information Event Management (SIEM) tools * Active participation in incident investigations * Provide data and root cause analysis of incidents with corrective actions for improvement. * Continuously review security bulletins and related news; stay apprised of current threats and trends. Qualifications: * Must have hands-on experience of a Security Information Event Management tool, such as Splunk, ElasticSearch. * Experience in endpoint security, malware sandbox, antivirus engines. * Proficient in performing a web application security assessment. * Must be able to validate findings, perform root cause analysis, and deliver recommendations for fixes. * Must have strong fundamentals in security concepts, cryptography, Unix architecture, and networking. * Must be able to read and understand popular programming languages (C/C++, Java, Javascript, etc.) and identify security weaknesses. * Must have good scripting knowledge to automate repetitive tasks. * Must have excellent reporting and analytical skills. * In-depth knowledge of Operating Systems such as Windows, macOS, iOS or Android and the security protections that these platforms offer, would be an added advantage. What You Can Expect From Us: * An environment where you will be working on cutting edge technologies and architectures * A fun, passionate and collaborative workplace * Competitive salary and benefits, including equity * The pace and excitement of working for a Silicon Valley Unicorn Why Zscaler? * Zscaler is the world's leading software-as-a-service security platform * We deliver best of breed security services with unprecedented scale * We protect 15 million users, in 3,250 organizations, across 185+ countries * Blue Chip Customers (200 of Global 2,000 in our portfolio) * Glassdoor rating of 4.7/5.0 + 98% CEO Approval = Exceptional place to work! People who excel at Zscaler are smart, motivated and share our values. Ask yourself: Do you want to team with the best talent in the industry? Do you want to work on disruptive technology? Do you thrive in a fluid work environment? Do you appreciate a company culture that enables individual and group success and celebrates achievement? If you said yes, we'd love to talk to you about joining our award-winning team! Learn more at or follow us on Twitter @zscaler. Additional information about Zscaler (NASDAQ : ZS ) is available at All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. #LI-LG1 Zscaler, Inc. Atlanta GA

Security Researcher II

Microsoft Corporation