Job Description

The Cloud & AI organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers' heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world. Microsoft Threat Intelligence Center (MSTIC) is focused on discovering and tracking threats to customers. Create a more secure environment through the Secure Future Initiative. MSTIC focuses on reducing global harm and protecting Microsoft and its customers using threat intelligence. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. The External Attack Surface Intelligence (EASI) team within MSTIC focuses on creating an outside-in view of Microsoft's cyber-attack surface. We combine an attacker's view with internal data to enable security organizations to mitigate risk and identify gaps in security programs. We are looking for a **Senior Security Researcher** to work with the team to research emerging threats and vulnerabilities. The person in this role will be responsible for identifying detectable web technologies with potential for vulnerabilities. They will build high priority rules, mentor others in detection rule production, quality check other's work and identify opportunities to increase efficiency and throughput. _Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond._ _In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day._ **Responsibilities** As a Senior Security Reseracher, you will: + Keep up with current security events and publications to identify and prioritize web components requiring detection rules. + Evaluate infrastructure scan and crawl results to identify technology signatures. + Write and deploy rules to identify and label components in attack surface data. + Write Attack Surface Insights to provide context and relevant intelligence to Microsoft and our customers. + Mentor and teach analysts how to research and develop detection logic. + Provide periodic updates to leadership teams. + Support additional functions related to attack surface intelligence including attack surface maintenance, delivery of insights to internal partners, and support for incident response teams. + Understand interplay across Microsoft technologies and how they give rise to attacker opportunities. + Synthesize findings into recommendations for mitigation of security issues. + Communication and Teamwork: In an ever-changing environment the ability to communicate clearly and with respect is essential to team success and morale. + Flexibility: Competing priorities often cause shifts in focus and attention. Candidates for this role need to be open to shifting their focus as priorities change. **Qualifications** **Minimum Qualifications:** + Master's Degree in Statistics, Mathematics, Computer Science or related field. + OR 5+ years experience in software development lifecycle, large-scale computing, modeling, cybersecurity, and/or anomaly detection. + 3+ years experience in: Regex, Kusto and/or SQL. + 1+ years experience as a team or project lead. + Working knowledge of web development technologies and the protocol. + Ability to read (and preferably write) code in at least one language such as: PowerShell, Bash, Python, Ruby, .Net, Java, etc. + Technical Writing: Ability to incorporate intelligence from multiple sources to help internal partners and customers understand why specific discoveries are important. **Other Requirements:** Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: + This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter. **Preferred Qualifications:** + Doctorate in Statistics, Mathematics, Computer Science or related field. + OR 6+ years experience in software development lifecycle, large-scale computing, modeling, cybersecurity, and/or anomaly detection. + 6+ years experience cybersecurity, threat intelligence, security operations, and/or IT operations. + Experience as an end user with git-based repositories and CI/CD pipelines - ADO preferred. + Experience developing and managing detection signatures. (Examples: SIEM, vulnerability scanners, AV, WAF, YARA, Emerging Threats, etc.) + Sysadmin experience with non- services like SMB, SMTP, RDP, LDAP, etc. Security Research IC4 - The typical base pay range for this role across the U.S. is USD $119,800 - $234,700 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $158,400 - $258,000 per year. Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: Microsoft will accept applications for the role until August 12, 2025. **\#MSRC #MSFTSecurity #scjobs #scrjobs** Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Job Tags

Local area, Shift work,

Similar Jobs