We are the Operational Threat Intelligence Center (OpTIC) responsible for delivering cyber threat intelligence to internal security teams across the company to help protect Microsoft and reduce risk.

　　We are looking for a Senior Cyber Threat Intelligence Analyst that can help us develop and manage innovative services and products that provide timely and actionable intelligence to our internal customers.

　　If you enjoy researching and analyzing cyber threats to help security teams make informed decisions and reduce risk, then we would love to talk to you. We are a small agile team with a successful track record demonstrating how threat intelligence can be used across internal security teams to identify, protect, detect, and respond to threats impacting our environment.

　　Responsibilities

　　Collect, process, and analyze data from internal and external sources to produce actionable intelligence products based on requirements from Microsoft Security teams and leadership.

　　Develop partnerships with security teams across Microsoft to provide data-driven insights into existing and emerging threats.

　　Create impactful threat intelligence products that aid prioritization of preventative controls and mitigations to improve Microsoft's internal security posture.

　　Support response to internal incidents by managing intelligence collected during investigations and building a common understanding of threat activities.

　　Qualifications

　　Required/Minimum Qualifications

　　5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident responseo OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field

　　3+ years of experience with Reverse Engineering, malware analysis, vulnerabiilty research or attack simulationOther Requirements

　　Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

　　Microsoft Cloud Background Check. This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

　　Preferred Qualifications

　　Practical Application of Cybersecurity Frameworks like Mitre ATT&CK, STIX, Dimond Model, Cyber Kill Chain, etc.

　　Experience with Jupyter Notebooks

　　Experience with adversary emulation and offensive security

　　Security Operations Engineering IC4 - The typical base pay range for this role across the U.S. is USD $112,000 - $218,400 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $145,800 - $238,600 per year.

　　Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

　　#DSR

　　#MSFTSecurity

　　#MSRC

　　Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations (https://careers.microsoft.com/v2/global/en/accessibility.html) .