Are you an innovator with a passion for security? Are you excited about securing high impact spaces like Azure, Windows, Xbox gaming and Surface businesses? Does it excite you to build class leading security solutions to secure end-to-end Supply Chain for Microsoft products and services? Are you passionate about Threat Hunting? If this sounds like you, the Threat Hunting team in the Edge, Platform, Devices, and Gaming (EDG) Security team is looking for you! 

We secure the Azure, Windows, Xbox, and Surface businesses. We drive security and product teams across Microsoft to ensure that we have the right tools and services to protect these key businesses with clear focus on end-to-end Supply Chain security. We are looking for a Security Engineer to help us advance our Threat Hunting services.

The ideal candidate is someone who loves security and craves creating a world where it is simple for every engineering team at Microsoft to build safe and secure systems / services in Azure.

Responsibilities

• Investigate, analyze, and learn from security researchers, attackers, and incidents to develop durable detective controls across the kill-chain.
• Execute day to day threat hunting for targeted attacks against Highly Sensitive Environments.
• The ideal candidate will also add business value by applying data and analytics to support incidents, business priorities, and operational issues while identifying or building appropriate datasets to address future needs.
• Collaborate with partner service teams, PMs, and developers to improve detection capabilities.

Qualifications

• At least 3+ years of experience in building detective controls for Highly Sensitive Environments.
• Basic understanding of Software Supply chain components such as SBOM, 3rd party code, Code crafting and build\release pipelines. 
• Data-centric mindset, comfortable drawing together signals from multiple sources and platforms to infer attacker behavior.
• Passions for Threat hunting, Incident response, and remediation from compromise and data breach events.
• One or more of the following information security-related qualifications, demonstrable equivalent experience, or capability to obtain certifications: GCIH, GPEN, GWAPT, GDAT, GNFA, GCFA, OSCP
• Experience in developing services or scripts for automation of analysis, response, or forensics.
• Understand how data and analysis contributes to broader business goals, and draw informed conclusions based on incomplete or conflicting information.

The following would be an advantage: 

• Previous experience performing Detection and Threat hunting within Cloud Service Provider (CSP) environments.
• Experience with Scripting in any language, AI, or ML.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.