Security Operations Engineering IC4
Hyderabad, Telangana, India
Microsoft
Every company has a mission. What's ours? To empower every person and every organization to achieve more. We believe technology can and should be a force for good and that meaningful innovation contributes to a brighter world in the future and today.Are you excited about cyber security?
Are you passionate about protecting customer data?
Are you passionate about Invisible security at scale?
Are you interested in solving problems leveraging distributing computing, hybrid architectures and cloud technologies?
If so, the M65 Security Engineering at Microsoft have a great opportunity for you. We are looking for candidates to work on solutions that protect Microsoft services against cyberattacks. We are a team that values diversity of multiple fronts and believes in deep collaboration bringing the best side of technology. Our team consists of engineers with expertise in large-scale software systems, security analysis, big data, and machine learning. We delight in digging in deep to analyse the billions of events and terabytes of data generated each day by all Microsoft products and services (e.g., Azure, M365) services for evidence of suspicious activities. We ensure that critical security components are present throughout the infrastructure powering these services and that these components are kept up to date.
Responsibilities
- Research, develop, implement, and maintain detection rules and signatures to identify potential threats and anomalies.
- Analyse security threats to M365 and build monitoring components to address those threats.
- Collaborate with threat intelligence teams to integrate threat data and enhance detection capabilities.
- Continuously improve detection methodologies and maintain up-to-date knowledge of emerging threats and attack vectors.
- Conduct regular reviews and tuning of detection systems to minimize false positives and ensure high accuracy.
- Develop and implement automation scripts and tools to streamline detection processes and improve efficiency.
- Utilize automation frameworks to automate routine tasks and workflows related to threat detection and response.
- Provide on call support and monitor the health of services in production as part of DevOps culture.
- Execute the Dev-Sec-Ops approach to software delivery by designing, coding, testing, deploying and operating components of Microsoft 365 security monitoring system.
Qualifications
- 8+ year of proven experience in researching and building detection and working with security information and event management (SIEM) systems.
- 5+ years of professional software engineering experience designing, building, and running cloud services at large scale in C#, .Net or any high-level programming language.
- Experience with automation tools and frameworks (e.g., Ansible, Puppet, Chef, Jenkins, LogicApps, CICD).
- Solid understanding of cybersecurity principles, threat landscapes, and attack methodologies.
- Familiarity with various log sources, data formats, and log analysis techniques.
- Excellent problem-solving skills and the ability to think critically and analytically.
- Strong communication skills and the ability to work effectively in a team-oriented environment.
- Self-learner with passion for technologies.
- Must know Secure by Design principles.
- Outstanding ability to communicate complex ideas and concepts to a variety of cross-group stakeholders.
- Strong organization skills, a bias for action, and ability to deliver results.
- Excellent ability to work efficiently, prioritize workflow, ramp quickly, and meet demanding deadlines
Preferred Qualifications
- Certifications such as CISSP, CEH, GCIH, or similar.
- Proficient working knowledge of cloud-computing environments like Microsoft Azure, AWS, GCP - Azure preferred.
- Hands on experience in an object-oriented programming language such as C#, Java or Scala.
- Strong software design and problem-solving skills.
- Experience with modern software services engineering practices such as testing in production, live monitoring, data driven engineering.
- Experience with machine learning and data analysis techniques.
- Knowledge of other programming languages such as Python, Java, or JavaScript.
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Ansible Automation AWS Azure Big Data C CEH CISSP Cloud DevOps GCIH GCP Java JavaScript Jenkins Log analysis Machine Learning Monitoring Puppet Python Scala Security analysis SIEM Threat detection Threat intelligence
Perks/benefits: Career development Health care Medical leave Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Architect jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs