Security Operations Engineer

Share job

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate.

We are seeking a Security Operations Engineer with experience in operational SOC environments along with experience of handling critical related to join our dynamic team within Regulated Industries Security. This role is pivotal in assessing security alerts and incidents, and contributing to the detection engineering within highly regulated industries. The ideal candidate will have the knowledge and ability to respond to critical infrastructure and privacy-related incidents, ensuring compliance with various regulatory standards, and will excel at hunting for adversarial threats within Azure Workloads.

Required Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Atleast 1 year experience working on cyber security and threat intelligence.
• Proven experience in a security operations role, with a strong understanding of incident response and threat intelligence.
• Excellent communication and coordination skills.
• Ability to work effectively under pressure and manage multiple incidents simultaneously.

Preferred Qualifications:

• Required communication skills, with the ability to clearly articulate complex issues to both technical and non-technical audiences.
• Required leadership abilities, particularly in high-pressure situations.
• Detail-oriented with problem-solving and analytical skills.

• Incident Assessment and Response: Analyze security alerts and incidents to determine their impact and scope.
• Respond to security incidents, ensuring appropriate containment, eradication, and recovery efforts are executed are executed efficiently.
• Document and report on incident findings, providing actionable insights to improve our security posture.
• Compliance and Regulatory Oversight: Collaborate with legal and compliance teams to align incident response processes with regulatory obligations.
• Communication and Coordination: Serve as the primary point of contact during security incidents, providing clear, accurate, and timely communication to stakeholders.
• Prepare and deliver incident reports to senior leadership, legal, compliance, and other relevant teams. Coordinate with other SOC (Security Operations Center) analysts, IT teams, and third-party vendors as necessary to ensure an effective response to incidents.
• Continuous Improvement: Participate in post-incident reviews and contribute to the development of detections, playbooks and standard operating procedures (SOPs) for security incidents.
• Identify gaps in security controls and make recommendations for improvements.
• Conduct training and awareness sessions for SOC team members and other stakeholders on security-related topics.
• Threat Intelligence and Monitoring: Monitor threat intelligence feeds and other sources to identify emerging privacy threats and vulnerabilities.
• Proactively hunt for indicators of compromise (IOCs) related to threats and regulatory concerns.