Job Description

The Cloud & AI organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers' heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world. Microsoft Threat Intelligence Center (MSTIC) is focused on discovering and tracking threats to customers. Create a more secure environment through the Secure Future Initiative. MSTIC focuses on reducing global harm and protecting Microsoft and its customers using threat intelligence. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. The External Attack Surface Intelligence (EASI) team within MSTIC focuses on creating an outside-in view of Microsoft's cyber-attack surface. We combine an attacker's view with internal data to enable security organizations to mitigate risk and identify gaps in security programs. We are looking for a **Security Researcher II** who can work with a team to write signatures to identify specified web components in our scanning database and develop Attack Surface Insights in order to inform Microsoft and our customers where vulnerabilities have been discovered across their digital estate. _Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond._ _In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day._ **Responsibilities** As you Security Research II, you will: + With guidance from other team members, evaluate infrastructure scan and crawl results to identify technology signatures. + Write and deploy rules to identify and label components in attack surface data. + Write Attack Surface Insights to provide context and relevant intelligence to Microsoft and our customers. + Support additional functions related to attack surface intelligence including attack surface maintenance, delivery of insights to internal partners, and support for incident response teams. + Understand interplay across Microsoft technologies and how they give rise to attacker opportunities. + Work with others to synthesize findings into recommendations for mitigation of security issues. **Qualifications** **Minimum Qualifications:** + Bachelor's Degree in Statistics, Mathematics, Computer Science or related field. + OR 3+ years experience in software development lifecycle, large-scale computing, modeling, cybersecurity, and/or anomaly detection. + 1+ years experience in: Regex, Kusto and/or SQL. + Working knowledge of web development technologies and the protocol. + Ability to read (and preferably write) code in at least one language such as: PowerShell, Bash, Python, Ruby, .Net, Java, etc. + Technical Writing: Ability to incorporate intelligence from multiple sources to help internal partners and customers understand why specific discoveries are important. **Other Requirements:** Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: + This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter. **Preferred Qualifications:** + Master's Degree in Statistics, Mathematics, Computer Science or related field. + OR 4+ years experience in software development lifecycle, large-scale computing, modeling, cyber-security, and/or anomaly detection. + 4+ years experience cybersecurity, threat intelligence, security operations, and/or IT operations. + Experience as an end user with git-based repositories and CI/CD pipelines - ADO preferred. + Experience developing and managing detection signatures. (Examples: SIEM, vulnerability scanners, AV, WAF, YARA, Emerging Threats, etc.) + Sysadmin experience with non- services like SMB, SMTP, RDP, LDAP, etc Security Research IC3 - The typical base pay range for this role across the U.S. is USD $100,600 - $199,000 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $131,400 - $215,400 per year. Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: Microsoft will accept applications for the role until August 12, 2025. **\#MSRC #MSFTSecurity #scjobs #scrjobs** Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Job Tags

Local area,

Similar Jobs