Note: The job is a remote job and is open to candidates in USA. Microsoft is committed to cultivating an inclusive work environment, and they are seeking a Network Security Service Engineer. In this role, you will deliver core infrastructure and foundational technologies for Microsoft's online services, implement cybersecurity controls, and support team members in their learning journey.
Responsibilities
- Proactively identify and investigate potential issues and patterns in security controls and drive mitigation strategies, while also implementing automation to improve efficiency and effectiveness across the network
- Install, upgrade, and maintain security hardware, operating system and software
- Identify gaps in security policy and administration, recommend solutions, and implement new and revised security standards, while working with partner teams to drive consistency and awareness
- Maintain standards and drive improvements for our customer and partner experience, responding appropriately to emerging issues and advocating for our customer experience through development and analyzation of key metrics, performance indicators, and other data sources (e.g. bugs, unhealthy data pipeline). Respond to escalations and recommend improvements as appropriate to address gaps
- Participate in on-call rotation to support security services
- With minimal guidance, analyze attempted or successful efforts to compromise systems security and, alongside partner teams, create recommendations to limit exposure, implement response plans, and take action
- Analyze potential or actual intrusions identified from monitoring activities and create detections based on available data (e.g., Indicators of Compromise [IOC] and Tools Tactics Procedures [TTP])
Skills
- Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 1+ year(s) experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 2+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response OR equivalent experience
- Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter
- Doctorate in Statistics, Mathematics, Computer Science, or related field OR Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 5+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection OR equivalent experience
- Build, tune, and maintain detections in Azure Sentinel (and partner XDR signals) using a detection-as-code workflow; map coverage to the MITRE ATT&CK framework across network, cloud, and identity stacks; partner with detection engineering to reduce false-positive rate and improve fidelity of high-confidence alerts
- Author and maintain TSGs and response runbooks for owned detections; partner with the SOC during P0/P1 cybersecurity incidents, contribute to blameless postmortems within SLA, and drive action items to closure - including SOAR / automation playbooks that reduce analyst toil and mean-time-to-triage
- CISSP CISA CISM SANS OSCP Security+
Benefits
- This is a flexible work opportunity for you to work from home partially or fully if desired.
- As a group, CO+I is focused on personal and professional development for all employees and offers trainings and growth opportunities including Career Rotation Programs, Diversity & Inclusion trainings and events, and professional certifications.
- Certain roles may be eligible for benefits and other compensation.
Company Overview
Company H1B Sponsorship