aicareerspace
Back to jobsJob overview

About the role

Senior Security Operations Engineer at Microsoft

Required Skills

kqlazure cosmos dbsiemincident responsesecurity operationsdata pipelinesthreat analyticsazure access control

About the Role

Senior Security Operations Engineer role at Microsoft focusing on centralizing and curating critical security data. Responsibilities include data-driven analysis, incident response, and collaborating with IT/DevOps teams to enhance security controls. Requires extensive experience in security operations, KQL, and Azure technologies.

Key Responsibilities

  • Data-Driven Analysis - Analyzes metrics and KPIs to identify security trends and recommend improvements.
  • Technical Insight - Provides technical insight on incident analysis and threat mitigation, translating into platform requirements.
  • Operational Rigor - Demonstrates operational rigor in cyber security operations and incident response.
  • Stakeholder Management - Manages critical stakeholder calls during security incidents, including non-business hours.
  • Data Engineering & Management - Administers data source access and availability, defining controls and policies.

Required Skills & Qualifications

Must Have:

  • Bachelor's Degree in Statistics, Mathematics, Computer Science or related field OR 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, SOC detection, threat analytics, SIEM, IT, and operations incident response.
  • 3+ years of hands-on experience with Microsoft Kusto clusters (KQL), Azure Cosmos DB, Azure Access Control methods.
  • 3+ years assisting in tuning and optimizing data source and data pipeline availability rules and alerts.
  • 3+ years developing and maintaining incident response playbooks and standard operating procedures (SOPs).

Nice to Have:

  • Master's Degree or Doctorate in Statistics, Mathematics, Computer Science or related field OR 10+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.
  • 8+ years of security operations work experience, with 5 years of experience collaborating with IR/SOC.
  • Proficient conducting root cause analysis and post-incident reviews.

Benefits & Perks

  • Industry leading healthcare