Security Researcher

Job Description

Overview

With more than 45,000 employees and partners worldwide, the Customer Experience and Success (CE&S) organization is on a mission to empower customers to accelerate business value through differentiated customer experiences that leverage Microsoft’s products and services, ignited by our people and culture. We drive cross-company alignment and execution, ensuring that we consistently exceed customers’ expectations in every interaction, whether in-product, digital, or human-centered. CE&S is responsible for all up services across the company, including consulting, customer success, and support across Microsoft’s portfolio of solutions and products. Join CE&S and help us accelerate AI transformation for our customers and the world.

The Global Customer Success (GCS) organization, an organization within CE&S, is leading the effort to enable customer success on the Microsoft Cloud by harnessing leading, AI-powered capabilities and human expertise to deliver innovation solutions that accelerate business value, drive operational excellence and nurture long term loyalty.

Microsoft Incident Response offers comprehensive support for organizations before, during, and after cybersecurity incidents including removing bad actors and strengthening defenses. Resources include guides on threat hunting, incident response best practices, and digital forensics to enhance cybersecurity resilience while emphasizing the importance of incident response as part of security operations, focusing on investigating and remediating active threat campaigns quickly. The Microsoft Detection and Response Team (DART) is looking for a highly organized Security Researcher experienced in cybersecurity, with a specialized focus on incident response. In this role, you will drive IP Development and advanced incident response initiatives. You will analyze incident response processes, emerging threats and customer requirements.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Responsibilities

In this role you will:

• Research trends in Incident Response – from proactive to reactive, customer requirements and industry trends
• Propose and develop enhancements to solutions and incident management processes to meet customer needs
• Analyze detection and prevention portfolio gaps and document plans to address
• Collaborate across teams to address portfolio and customer engagement issues
• Maintain dashboards and metrics that provide transparency into backlog health, task assignments, and completion rates.
• Triage and address incoming requests – Quickly assess new tickets, change requests and triage them based on urgency and impact.
• Identify and remove inefficiencies and blockers – Proactively pinpoint dependencies, risks, or obstacles that could hinder project progress. Work with team members to resolve conflicts or resource constraints and escalate issues when necessary.
• Provide updates and reports to leadership – Monitor project status and prepare regular progress reports for team leads and senior management. Summarize key achievements, upcoming deliverables, and any risks or delays.

Qualifications

• A bachelor’s degree or an equivalent amount of practical, role related experience.
• Professional working experience in cybersecurity
• Proficient in guiding stakeholders and achieving agreement among individuals at all levels of experience.
• Flexibility to accommodate non-standard working hours as the job demands.

Additional Qualifications:

• Experience in Incident Management or the Incident Response sector, with a focus on enhancing the efficacy and efficiency of incident management operations.
• Resilience under stress, coupled with a readiness to occasionally operate beyond standard business hours to assist with incidents.
• Effective interpersonal and communication abilities, conducive to productive collaboration within diverse team structures.
  
• Proactive approach in initiating actions and advocating for improvements to establish more streamlined and effective incident management processes.

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

This position will be open for a minimum of 5 days, with applications accepted on an ongoing basis until the position is filled.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance with religious accommodations and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.