The Microsoft Threat Intelligence Center (MSTIC) is recruiting experienced nation-state threat hunters with highly honed threat intelligence analysis skills. MSTIC provides unique insight on threats to protect Microsoft and our customers and is responsible for delivering timely threat intelligence across our product and services teams.
In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees. Microsoft’s mission is to empower every person and every organization on the planet to achieve more.
Responsibilities
* As a senior threat intelligence analyst, track sophisticated adversaries and apply your technical knowledge of adversary capabilities, infrastructure, and techniques.
* Define, develop, and implement techniques to discover and track current adversaries and identify the attacks of tomorrow.
* Produce actionable intelligence and proactively drive hunting, detection, and Microsoft’s threat actor understanding.
* Collaborate with stakeholders from MSTIC and key security groups across Microsoft, working in partnership to protect both Microsoft and Microsoft’s customers.
* Strengthen existing partnerships and build new ones with key organizations to deliver benefits to Microsoft and its customers.
Qualifications
* Experience producing actionable Threat Intelligence on advanced persistent threat actors (APTs).
* Experience tracking APT campaigns using industry-standard models including the MITRE ATT&CK framework.
* Proven ability to document and communicate analytic findings to a wide range of stakeholders, from technical colleagues to executive readers.
* Experience collaborating within the wider threat intelligence community and participating in threat intelligence sharing groups.
* Demonstrated deep technical expertise in analyzing a wide spectrum of security telemetry, including network traffic, application logs, and host-based or Endpoint Detection and Response (EDR) data.
* Expertise with cloud telemetry is a plus. Hands-on experience analyzing and tracking complex APT campaigns using proprietary telemetry.
* Proven track record in producing actionable Threat Intelligence on APTs based on telemetry analysis.
* Ability to quickly adapt to a rapidly evolving telemetry landscape.
* Exceptional communication skills, with the ability to distill complex technical findings into clear, concise intelligence products for technical audiences, non-technical colleagues, and executive stakeholders.
Preferred Qualifications
* Experience working to support incident response investigations is a plus.
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.
#J-18808-Ljbffr