Security Service Engineer

Main Location
Redmond, WA, United States
Open jobs

Do you have a passion for cybersecurity and excitement about impacting some of the largest and most complex security challenges Microsoft is involved with today in hosting petabytes of business-critical customer data? We’re looking for a Security Service Engineer with the right mix of technical depth, engineering background, on-line services experience and collaboration skills to help grow and protect Microsoft 365 cloud services.  You will be a part of defending our customer base focused on identifying new attacks, correlating events, and investigating issues.   Your passion for data and security, comfort with ambiguity and acceptance of the need to deliver consistently exceptional performance under high pressure, combined with your proven ability to sift through data datasets to extract valuable insights will be critical in helping us continue to successfully achieve our mission. Come join a team supporting M365 infrastructure and customers and use your skills to protect hundreds of millions of users worldwide!

Responsibilities
  • Analyze and improve situational awareness, monitoring coverage, and incident response capabilities.
  • Detect and respond to sophisticated threats with information from a wide variety of sources.
  • Coordinate with internal and external business partners and security teams at a deeply technical level to improve our ability to protect, detect, respond.
  • Proactively hunt for and eradicate threats, and ensure similar scenarios are prevented in the future.
  • Detect and respond to sophisticated threats with information from a wide variety of sources, and ensure similar scenarios are prevented in the future.
  • Analyze and improve situational awareness, monitoring coverage, and incident response capabilities.
  • Design, develop, and deliver the required software engineering to serve and protect O365 government clouds.
  • Own deployment, availability, reliability, performance and customer escalation targets for sovereign environments

  • Collaborate with Engineering and Program Management partners to translate customer, business, and technical requirements into architectural designs and feature releases

  • Work within a highly skilled team of engineers to deliver revolutionary improvements to the cloud and scale them

Qualifications

Core Qualifications:

  • Bachelor’s degree or equivalent industry experience.
  • 3+ years of hands-on experience in security investigations, threat detection & analysis, security program management, and/or incident response.
  • Experience with security events (including large-scale breaches) is a must, as is the ability to identify themes and trends through large scale data analysis
  • Familiarity with various attack and detection frameworks like MITRE/Diamond Model, etc.
  • Awareness of modern security related subjects and trends such as threat hunting and modeling, digital forensics, reverse engineering, phishing, and penetration testing.
  • Strong comprehension of security trends and emerging threats to calculate risk and drive proper courses of action towards incident remediation.
  • Experience with common forensic toolsets such as: FTK, EnCase, KANSA, RedLine, Volatility, etc.
  • Proven success using data/anlytics and graph platforms like Splunk, Neo4j, ElasticSearch, Fluentd, ELK, Graylog, or others.
  • Familiarity with some or all of Microsoft Security set of technologies, and depth experience in at least one:

                •          Azure Security Center (ASC)

                •          Windows Defender Advanced Threat Protection (WDATP)

                •          Microsoft Cloud App Security Broker (CASB) Solutions - Microsoft Cloud App Security (MCAS) / Office 365 Cloud App Security (OCAS) / Azure AD Cloud App Discovery

                •          Office 365 Advanced Threat Protection (O365 ATP)

                •          Office 365 Threat Intel (O365 TI)

                •          Azure Advanced Threat Protection (Azure ATP) or  Advanced Threat Analytics (ATA)

  • A distaste for doing things manually more than once with a desire and ability to automate repeatable security tasks through scripts and logic apps and share it with wider group.
  • Some scripting experience, particularly those related to security and data science like Python, Jupyter Notebooks, R, PowerShell, Common Query languages (SQL, DAX, PowerQuery).
  • Ability to work collaboratively with engineering teams to drive architectural changes that improve the stability and security of each environment.
  • Demonstrated success and comfort working in a startup mode where there is lots of opportunity and ambiguity.
  • Excellent communications skills, both verbal and written with Demonstrated ability to understand and communicate technical details to varying levels of management.

Preferred Qualifications (but Not Required):

  • Experience with cloud-hosted services, web-based applications, and server/service management features
  • Strong scripting and/or coding skills (particular, PowerShell, Python, or C#).
  • BA/BS in Computer Science, Computer Engineering or related technical discipline, or in place of 4-year degree, an equivalent industry internship or industry software engineering experience
  • Familiarity with developer environment tools like Github/Visualstudio/TFS to share code, track work. etc. would be a plus.
  • Awareness of modern security related subjects and trends such as threat hunting and modeling, digital forensics, reverse engineering, phishing, and penetration testing.
  • Relevant industry certifications are a definite plus! (CISSP, Cisco CCNA, GIAC -GCIH/GCFA, CEH, etc, etc.)

 

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. 

 

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.


Help us maintain the quality of jobs posted on PowerToFly. Let us know if this job is closed.
Mission
We're a community of women leveraging our connections into top companies to help underrepresented women get the roles they've always deserved. Simultaneously, we work to build truly inclusive hiring processes and environments where women can thrive and not just survive.
Are you hiring? Join our platform for diversifiying your team
Security Service Engineer
Microsoft Corporation