Sub-Saharan AfricaThe mission of Microsoft Security Response Center (MSRC) is to enable Microsoft to build the most trusted devices and services, while keeping our company safe and our data protected. As part of the Microsoft Security organization, and a steward of Microsoft and our customer’s data, a core function of MSRC is ensuring the security of every aspect of the business. MSRC is responsible for company-wide information security and compliance, with a strategic focus on information protection, assessment, awareness, governance, and enterprise business continuity. As customer zero, we deploy and secure these services inside Microsoft and then share best practices with enterprise customers at scale across the globe.?We have exciting opportunities for you to innovate, influence, transform, inspire and grow within our organization and we encourage you to apply to learn more!

Sub-Saharan AfricaDo you want to join the Microsoft GHOST team as a Senior Security Researcher?Sub-Saharan Africa

Sub-Saharan AfricaDo you have an interest in helping Microsoft’s clients defend themselves against targeted exploitation? Are you interested in being intimately involved in the latest, cutting edge developments in the security industry and having a direct impact on the security of all Microsoft customers? Do you want to be on the front lines of helping our customers go toe-to-toe against advanced adversaries? Are you interested in a fast-paced job full of new opportunities? If so, you might be a candidate for the Global Hunting, Oversight, and Strategic Triage team (GHOST).Sub-Saharan Africa

Sub-Saharan AfricaWe are looking for an experienced Senior Security Researcher with required analytical background to join our team to perform threat hunts, assist with investigations, develop threat intelligence, and to cultivate investigation best practices into Microsoft tooling and products. Researchers will support a global team to identify and catalog new attacker Tools, Techniques and Procedures (TTPs), victims, and deliver customer notifications to protect worldwide enterprise customers and empower customers to protect themselves via constantly improving Microsoft products.Sub-Saharan Africa

Sub-Saharan AfricaWe are looking to fill multiple roles across levels.Sub-Saharan Africa

Sub-Saharan AfricaOur culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.Sub-Saharan Africa

Sub-Saharan AfricaMicrosoft’s mission is to empower every person and every organization on the planet to achieve more.Sub-Saharan Africa

Sub-Saharan AfricaResponsibilitiesSub-Saharan Africa

Sub-Saharan AfricaThis role is part of a collaborative team, assisting our customers with:Sub-Saharan Africa

• Performing deep analysis of attacker activity in on-premises and cloud environmentsSub-Saharan Africa
• Identifying potential threats, allowing for proactive defence before an actual incidentSub-Saharan Africa
• Notifying customers regarding imminent attacker activitySub-Saharan Africa
• Providing recommendations to improve customers’ cybersecurity posture going forward and performing threat intelligence knowledge transfer to prepare customers to defend against today’s threat landscapeSub-Saharan Africa
• Building proof-of-concept and prototype threat hunting tools, automations, and new capabilitiesSub-Saharan Africa
• Driving product and tooling improvements by conveying learnings from threat hunting and incident response at scale to engineering partner teamsSub-Saharan Africa
• Identifying, prioritizing, and targeting complex security issues that cause negative impact to customers. Creating and driving adoption of relevant mitigations and provide proactive guidanceSub-Saharan Africa
• Collaborating with others to synthesize research findings into recommendations for mitigating security issues and sharing them across teams. Driving change within the team based on the research findings.Sub-Saharan Africa
  
  

Sub-Saharan AfricaQualificationsSub-Saharan Africa

Sub-Saharan AfricaRequired Qualifications:Sub-Saharan Africa

• Sub-Saharan Africa5+ years experience in large-scale computing, modeling, cybersecurity, and/or anomaly detectionSub-Saharan Africa
• Sub-Saharan AfricaOR Experience with threat hunting/ digital forensics/reverse engineering/incident response etc.Sub-Saharan Africa
• Sub-Saharan AfricaOR Master's Degree in Statistics, Mathematics, Computer Science or related fieldSub-Saharan Africa
  

Sub-Saharan AfricaOther RequirementsSub-Saharan Africa

• Sub-Saharan AfricaAbility to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.Sub-Saharan Africa
  
  

Sub-Saharan AfricaPreferred QualificationsSub-Saharan Africa

• Sub-Saharan AfricaInvestigation/Cybersecurity/Digital Forensics/DFIR (Digital Forensic Incident Response) certifications (e.g. Certified Information Systems Security Professional (CISSP), SysAdmin, Audit, Network and Security (SANS), Global Information Assurance Certification (GIAC) etc.)
• Sub-Saharan AfricaTechnical certifications based on domain (e.g., Azure, SharePoint)Sub-Saharan Africa
• Sub-Saharan AfricaExperience with Active Directory and/or cloud identitySub-Saharan Africa
• Sub-Saharan AfricaExperience with sophisticated threat actor evidence including familiarity with typical Indicators of Compromise (IOCs), Indicators of Activity (IOAs) and Tools, Techniques and Procedures (TTPs)Sub-Saharan Africa
• Sub-Saharan AfricaUse of forensic analysis tools such as X-Ways Forensics®, WinHex®, Encase®, FTK®, etc. Microsoft Azure and/or Office365 platform knowledge and experienceSub-Saharan Africa
• Sub-Saharan AfricaExperience with various forensic log artifacts found in Security Informationa and Event Management (SIEM) logs, web server logs, Antivirus (AV) logs, protection logs such as Host-based Intrusion Detection Systerm (HIDS) and Network Intrusion Detection System (NIDS) logsSub-Saharan Africa
• Sub-Saharan AfricaFamiliarity with Microsoft Defender 365 security stack (for Endpoints, Identity, Cloud, etc), especially with Advanced Hunting query writingSub-Saharan Africa
• Sub-Saharan AfricaUnderstanding of Windows and Azure internals and where trace evidence can be foundSub-Saharan Africa
• Sub-Saharan AfricaKnowledge of third-party cybersecurity solutions, especially Extended Detection and Response (EDR) and Security Information and Event Management (SIEM) solutionsSub-Saharan Africa
• Sub-Saharan AfricaExperience working with consulting companies is a plusSub-Saharan Africa
• Sub-Saharan AfricaLinux and/or macOS forensic analysis and threat hunting skillsSub-Saharan Africa
  
  

Sub-Saharan Africa#GHOST #DSR #MSFTSecuritySub-Saharan Africa

Sub-Saharan AfricaMicrosoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about Sub-Saharan Africarequesting accommodationsSub-Saharan AfricaSub-Saharan Africa.Sub-Saharan AfricaSub-Saharan Africa