Microsoft

Helaas, deze vacature is niet langer actief

Originele vacaturetekst

Threat Intelligence Analyst - Endpoint

Are you interested in working on the cutting edge of enterprise security products? Do you want to combat evolving, advanced security threats? Do you want to help shape intelligence and analytics systems powering one of the most advanced security products Microsoft offers today?

Microsoft 365 Defender (M365D) is the unified suite that enables Microsoft’s enterprise customers to detect, investigate, understand, and respond to advanced threats on their networks via a combination of behavioral sensors, cloud security analytics, and threat intelligence. 

Our team’s mission is to prepare and protect Microsoft 365 (M365) customers by correlating product signals with curated intelligence insights and understanding of the emerging threat landscape.

We have an exciting and unique charter to work with threats that span targeted and commodity attacks across a variety of platforms via behaviors with a focus on providing Actionable Threat Intelligence to empower people and organizations across the world to be resilient against current and future cyberattacks. You’ll be part of a team of world class security experts from diverse technical backgrounds including threat hunting, threat intelligence, malware analysis, and security incident response – we value and seek diversity, so bring your unique self and skills to make us a better team. We deliver security research in the form of an intelligence service that ships continuously, and contributes directly to security protections that measurably protect people across the planet every day.

#SCMRJobs

#SCMJobs

Responsibilities

In this role, you will work with partners across Microsoft to innovate new approaches for detecting and tracking threats, adversaries, techniques, tools, and infrastructure in a rapidly evolving and cloud focused threat landscape. You will use threat research and data science to not only enhance our optics and capability but also hunt for real cyber threats while producing intelligence reports and analysis for cyber security stakeholders across Microsoft, our external partners, and our customers.

Qualifications

Required Qualifications

  • 3+ years of professional experience in either Threat Intelligence, Incident Response, IT Security, malware analysis, offensive security or tracking cyber threats with a demonstrated ability to leverage intelligence on attacker methodology, tools, and infrastructure to improve security posture

Preferred Skillsets and Experience:

  • Excellent written and verbal communication skills with an eye for detail and for simplifying the complex
  • In-depth security research experience with long running campaigns or attacks, with demonstrated security report or blog publication
  • Demonstrated knowledge of attacker tradecraft
  • Experience tracking or emulating adversaries and investigations that span on-premise and cloud-based compromises, including investigations into cloud-based email and infrastructure
  • Experience working with extremely large data sets using tools and scripting languages like SQL, Python, Splunk, KQL, Jupyter Notebooks, and Power BI
  • Demonstrated capability to analyze and coherently present and prioritize complex threat intelligence information
  • Ability to utilize data on attacker behavior uptake and global impact to prioritize security detection and remediation tasks
  • Deep and practical knowledge on one or more areas: Phishing and email security, Operating Systems, Cloud Platforms, network infrastructure/protocols, and/or Identity
  • Functional understanding of common threat analysis models such as the Diamond Model, Cyber Kill Chain, and MITRE ATT&CK and experience using them to track attacks
  • Previous experience working in a security company or security product is a plus.


Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

Dienstverband:
fulltime
Type vacature:
Intern

Vaardigheden

  • Er is geen minimale opleiding vereist

Wat wij bieden

Contract:
Fulltime