Senior Cyber Threat Intelligence Analyst

Overview

We are the Operational Threat Intelligence Center (OpTIC) responsible for delivering cyber threat intelligence to internal security teams across the company to help protect Microsoft and reduce risk.

We are looking for a Senior Cyber Threat Intelligence Analyst that can help us develop and manage innovative services and products that provide timely and actionable intelligence to our internal customers.

If you enjoy researching and analyzing cyber threats to help security teams make informed decisions and reduce risk, then we would love to talk to you. We are a small agile team with a successful track record demonstrating how threat intelligence can be used across internal security teams to identify, protect, detect, and respond to threats impacting our environment.

Responsibilities

• Collect, process, and analyze data from internal and external sources to produce actionable intelligence products based on requirements from Microsoft Security teams and leadership.
• Develop partnerships with security teams across Microsoft to provide data-driven insights into existing and emerging threats.
• Create impactful threat intelligence products that aid prioritization of preventative controls and mitigations to improve Microsoft's internal security posture.
• Support response to internal incidents by managing intelligence collected during investigations and building a common understanding of threat activities.

Qualifications

Required/Minimum Qualifications

• 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response

o OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field

• 3+ years of experience with Reverse Engineering, malware analysis, vulnerabiilty research or attack simulation

Other Requirements

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

Microsoft Cloud Background Check. This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Preferred Qualifications

• Practical Application of Cybersecurity Frameworks like Mitre ATT&CK, STIX, Dimond Model, Cyber Kill Chain, etc.
• Experience with Jupyter Notebooks
• Experience with adversary emulation and offensive security

Security Operations Engineering IC4 - The typical base pay range for this role across the U.S. is USD $112,000 - $218,400 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $145,800 - $238,600 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

#DSR

#MSFTSecurity

#MSRC