Microsoft, a renowned global technology leader, has a distinguished profile for its pioneering solutions and its mission to empower individuals and organizations to achieve their full potential. With a rich legacy spanning several decades, Microsoft consistently drives technological advancement, delivering groundbreaking products and services that transform industries. The company’s unwavering commitment to research and development fosters a culture of collaboration, diversity, and inclusivity, attracting top talent from around the world. Microsoft offers a vibrant and inspiring work environment, where creativity and innovation thrive. By joining Microsoft, you become part of a passionate community dedicated to leveraging technology for positive global impact, collectively shaping a brighter future.

Job Description

Are you interested in an exciting chance to lead Microsoft’s efforts in safeguarding over a billion customers worldwide? If you have a passion for cybersecurity and are eager to be part of a dedicated security response team focused on protecting customers from emerging threats, then this role might be the perfect opportunity for you.

The Microsoft Security Response Center (MSRC) is seeking motivated and skilled security professionals to join their expanding team. In this position, you will be responsible for coordinating Microsoft’s response to the most critical security issues that impact their customers. Whenever you come across news about hackers, situations where the integrity of the products is compromised, or instances where zero-day exploits are used to target customers, the MSRC incident response team collaborates across Microsoft to swiftly defend the company and its customers against these threats.

Role Overview

This individual contributor position offers a distinctive opportunity for leadership. You will have regular interactions with Microsoft’s most senior leaders, including the CEO. Your responsibilities will involve managing and leading all stakeholders involved in security incidents, making critical risk decisions, and providing updates to executive leadership. Your overall objective will be to protect customers, enhance the security of the products and services, and safeguard the brands. Success in this role hinges on excellent communication skills, a keen interpersonal awareness, meticulous attention to detail, and the ability to cultivate collaboration and trust across teams. Additionally, strong program management skills to organize information, break down complex problems, and thrive in uncertain situations are essential requirements.

Responsibilities @ Microsoft

• Conduct thorough analysis of cyber defense incidents and/or vulnerabilities to assess their extent, urgency, and potential impact on risk.
• Make critical decisions that prioritize swift remediation to safeguard both customers and Microsoft.
• Monitor and document the entire lifecycle of cyber defense incidents, from initial escalation to ultimate resolution.
• Offer tactical security recommendations and coordinate efforts across the organization to effectively address incidents.
• Deliver timely and concise executive updates that clearly communicate the risks faced by customers and Microsoft.
• Provide guidance and validate customer notifications, as well as authoritative security advice.
• Perform incident analysis, generate reports, and deliver briefings that highlight emerging threat landscape trends and identify areas for future security enhancements.

Desired Skills

• A minimum of seven years of experience in various areas including software development lifecycle, large-scale computing, modeling, cybersecurity, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and/or operations incident response.
• Proven capability to effectively communicate complex and technical matters to a wide range of audiences, both verbally and in writing, in a manner that is clear, authoritative, and actionable.

Advantageous Skills

• More than seven years of hands-on experience in areas such as the software development lifecycle, large-scale computing, modeling, cybersecurity, and anomaly detection.
• Possession of certifications such as CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, and/or Security+.
• Proven ability to effectively manage high-pressure situations while maintaining a professional demeanor and approach.
• Preferred qualifications include:
  • Expertise in handling diverse and intricate incidents on a large scale, including APT, DDoS, malicious insider, web and mobile applications, and data exfiltration.
  • Strong foundational knowledge in information technology, encompassing cloud services, hardware, networking, architecture, protocols, file systems, and operating systems.

Apply

Check out other jobs:

• Security Analyst – Microsoft
• InfoSec Engineer – CoinDCX

Share: