The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.
Microsoft Threat Intelligence Center has unique optics into end-to-end cyberattacks and how different stages manifest across our telemetry. By partnering across the company, we build proof-of-concept solutions that showcase new detection capabilities, through novel correlation and analysis methodologies. Our work contributes directly to the customer-facing security tools provided by Microsoft, achieving large scale global impact.
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Responsibilities
- Identify and lead new areas where our team can contribute and deliver impact.
- Work with our threat hunters and analysts to develop novel approaches to tracking and monitoring threat actors that target Microsoft customers by applying machine learning / statistics.
- Deliver end to end solutions for processing large scale data that originates from users, services, or other automated systems.
- Partner across Microsoft Threat Intelligence to deliver end to end solutions to our products and services.
Qualifications
- Bachelor's Degree in Statistics, Mathematics, Computer Science or related field AND 4+ years related experience (e.g., statistics predictive analytics, research) o
Strong programming skills in Python with an understanding of cloud architectures and distributed computing such as Apache Spark.
- Track record of prototyping new innovative ideas and seeing them through to production.
- Curiosity and passion for problem solving; ability to learn new skills quickly and apply them to real world problems.
- A strong interest in applying data science to security and threat intelligence problems.
Preferred qualifications:
- Demonstrable experience in applying machine learning and statistical approaches to telemetry in the security domain to detect and track malicious activity.
- Knowledge of threat actor TTPs across the kill chain and how they manifest themselves in telemetry sources.
- Experience developing AI/ML solutions using large language models (LLMs).
This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
#MSFTSecurity MSecR
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.