Find More Than 10K+
United Kingdom Jobs

Responsibilities

• Responding to escalations to resolve detection effectiveness issues (misclassified spam/phish and false positives)
• Overseeing and optimizing outsourced team operating processes and driving improvements in tooling and documentation.
• Authoring rules and creating new ML features to thwart evolving email-based attacks.
• Conducting deep research on attacker campaigns and techniques to support durable detection investments and improve customer experience.
• Engaging and collaborating with diverse partner teams to drive great customer experiences and ensure holistic protection across the Microsoft Security stack.

Qualifications

• 1+ year(s) experience in software development lifecycle, large-scale computing, modeling, cyber security, and/or anomaly detection
• OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
• 1+ years of experience querying and analyzing large datasets (e.g. SQL, Python, KQL/Azure Data Explorer, Excel, PowerBI, etc.)

• Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

• 2+ years experience in software development lifecycle, large-scale computing, modeling, cybersecurity, and/or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
• Yara, RegEx, or comparable rule-writing experience
• Curiosity to learn about attacker patterns and behaviors, with a drive to build innovative detections and protections.
• Understand the cyber kill chain, especially attack scenarios originating from email or web sites.
• Understand email headers, email/web security protocols, and related analysis tools.
• Experience responding to customer escalations and reporting investigative findings.
• Experience working through ambiguity to drive innovations in detections, monitoring, and internal team processes.
• Solid understanding of attacker tradecraft associated with email and web-based threats.
• Familiarity with agile development practices
• Broad, general, familiarity with the threat landscape affecting our customers.
• Experience building automated reports, alerting, workflows, and/or business intelligence solutions (PowerBI).
• Ability to use data to “tell a story” and influence decision-making.
• Experience creating, using, or contributing to the development and validation of machine learning models.

Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.