Security Operations Engineering IC4

Are you excited about cyber security?   

Are you passionate about protecting customer data?  

Are you passionate about Invisible security at scale?  

Are you interested in solving problems leveraging distributing computing, hybrid architectures and cloud technologies?  

If so, the M65 Security Engineering at Microsoft have a great opportunity for you.  We are looking for candidates to work on solutions that protect Microsoft services against cyberattacks. We are a team that values diversity of multiple fronts and believes in deep collaboration bringing the best side of technology. Our team consists of engineers with expertise in large-scale software systems, security analysis, big data, and machine learning. We delight in digging in deep to analyse the billions of events and terabytes of data generated each day by all Microsoft products and services (e.g., Azure, M365) services for evidence of suspicious activities. We ensure that critical security components are present throughout the infrastructure powering these services and that these components are kept up to date.  

Responsibilities

• Research, develop, implement, and maintain detection rules and signatures to identify potential threats and anomalies. 
• Analyse security threats to M365 and build monitoring components to address those threats. 
• Collaborate with threat intelligence teams to integrate threat data and enhance detection capabilities. 
• Continuously improve detection methodologies and maintain up-to-date knowledge of emerging threats and attack vectors. 
• Conduct regular reviews and tuning of detection systems to minimize false positives and ensure high accuracy. 
• Develop and implement automation scripts and tools to streamline detection processes and improve efficiency. 
• Utilize automation frameworks to automate routine tasks and workflows related to threat detection and response. 
• Provide on call support and monitor the health of services in production as part of DevOps culture. 
• Execute the Dev-Sec-Ops approach to software delivery by designing, coding, testing, deploying and operating components of Microsoft 365 security monitoring system. 

Qualifications

• 8+ year of proven experience in researching and building detection and working with security information and event management (SIEM) systems. 
• 5+ years of professional software engineering experience designing, building, and running cloud services at large scale in C#, .Net or any high-level programming language. 
• Experience with automation tools and frameworks (e.g., Ansible, Puppet, Chef, Jenkins, LogicApps, CICD). 
• Solid understanding of cybersecurity principles, threat landscapes, and attack methodologies. 
• Familiarity with various log sources, data formats, and log analysis techniques. 
• Excellent problem-solving skills and the ability to think critically and analytically. 
• Strong communication skills and the ability to work effectively in a team-oriented environment. 
• Self-learner with passion for technologies. 
• Must know Secure by Design principles. 
• Outstanding ability to communicate complex ideas and concepts to a variety of cross-group stakeholders.  
• Strong organization skills, a bias for action, and ability to deliver results.   
• Excellent ability to work efficiently, prioritize workflow, ramp quickly, and meet demanding deadlines 

Preferred Qualifications  

• Certifications such as CISSP, CEH, GCIH, or similar. 
• Proficient working knowledge of cloud-computing environments like Microsoft Azure, AWS, GCP - Azure preferred. 
• Hands on experience in an object-oriented programming language such as C#, Java or Scala. 
• Strong software design and problem-solving skills. 
• Experience with modern software services engineering practices such as testing in production, live monitoring, data driven engineering. 
• Experience with machine learning and data analysis techniques. 
• Knowledge of other programming languages such as Python, Java, or JavaScript. 

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.