The mission of Microsoft Digital Security & Resilience (DSR) is to enable Microsoft to build the most trusted devices and services, while keeping our company safe and our data protected. ​As part of the Microsoft Security organization, and a steward of Microsoft and our customer’s data, a core function of Microsoft DSR is ensuring the security of every aspect of the business. Microsoft DSR is responsible for company-wide information security and compliance, with a strategic focus on information protection, assessment, awareness, governance, and enterprise business continuity. As customer zero, we deploy and secure these services inside Microsoft and then share best practices with enterprise customers at scale across the globe. We have exciting opportunities for you to innovate, influence, transform, inspire and grow within our organization and we encourage you to apply to learn more! 

The role of a Senior Security Incident Responder can be fast paced and high pressure, but the people are great, and the knowledge that you've had a hand in protecting Microsoft and its customers is satisfying. We're looking for someone that has great attention to detail, is comfortable learning new skills and technologies, and understands the balance between security and operational success.

The candidate will have experience in a highly collaborative team environment, experience in a Security Operations Center or equivalent experience in enterprise scale services and platforms, technical depth in highly dynamic, complex environment.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Responsibilities

• Incident response lead for high impact cyber security incidents

• Triage events, escalations and incidents to determine remediation and resolution actions

• Coordinate appropriate response activities across teams and geos, or directly with stakeholders to rapidly remediate potential threats

• Provide initiative and project-related support to provide Security Operations and Incident Response perspective and subject matter expertise

Other

• Embody our Culture (https://www.microsoft.com/en-us/about/corporate-values) and Values (https://careers.microsoft.com/us/en/culture)

Qualifications

Required/Minimum Qualifications

• 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response

o OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.

Other Requirements

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role.

These requirements include, but are not limited to the following specialized security screenings:

Microsoft Cloud Background Check : This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Citizenship & Citizenship Verification: This position requires verification of citizenship due to citizenship-based legal restrictions. Specifically, this position supports United States federal, state, and/or local government agency customers and is subject to certain citizenship-based restrictions where required or permitted by applicable law. To meet this legal requirement, and as a condition of employment, the successful candidate’s citizenship will be verified with a valid passport.

Additional or Preferred Qualifications

• Experience with large scale and complex incidents of all types, including Advanced Persistent Threat(APT), Distributed Denial of Service(DDoS), malicious insider, web and mobile applications, and data exfiltration.

• Demonstrated foundational knowledge in software engineering and/or cloud technologies including: identity management, cloud services, hardware, networking, architecture, protocols, file systems, and operating systems.

• Experience triaging security vulnerabilities and driving product and/or service response.

• Demonstrated communications, interpersonal awareness, attention to detail, and the ability to foster cooperation and trust across teams.

• Proven foundation in security with a proven track record in managing risk.

• Ability to work well under pressure while maintaining focus and a professional approach.

• Ability to communicate complex and technical issues to diverse audiences, orally and in-writing, in an easily understood, authoritative, and actionable manner.

• Certifications such as: GIAC Certified Intrusion Analyst (GCIA),GICA-Cloud Forensics Responder(GCFR), GIAC Incident Handler (GCIH), Certified Information Systems Security Professional(CISSP), Certified Ethical Hacker(CEH), etc.

Security Operations Engineering IC4 - The typical base pay range for this role across the U.S. is USD $112,000 - $218,400 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $145,800 - $238,600 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft will accept applications for the role until May 4, 2024.

Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations (https://careers.microsoft.com/v2/global/en/accessibility.html) .