Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to perform threat hunts and develop intelligence to protect Microsoft customers.
- Company: Microsoft Security aims to make the digital world safer for everyone.
- Benefits: Enjoy industry-leading healthcare, educational resources, discounts, and generous time off.
- Why this job: Be at the forefront of cybersecurity, making a real impact on global safety.
- Qualifications: Experience in cybersecurity or a related field; advanced degrees preferred.
- Other info: Collaborative environment focused on growth, innovation, and inclusion.
The predicted salary is between 60000 - 84000 ÂŁ per year.
Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.
Do you have a passion for helping Microsoft’s clients defend themselves against targeted exploitation?
Are you interested in being intimately involved in the latest, cutting-edge developments in the security industry and having a direct impact on the security of all Microsoft customers?
Do you want to be on the front lines of helping our customers go toe-to-toe against advanced adversaries?
Are you interested in a fast-paced job full of new opportunities?
If so, you may be a fit for a Principal Security Researcher role for the Global Hunting, Oversight, and Strategic Triage (GHOST) team!
We are looking for an experienced Principal Security Researcher with a strong analytical background to join our team to perform threat hunts, assist with investigations, develop threat intelligence, and to cultivate investigation best practices into Microsoft tooling and products. Researchers will support a global team to identify and catalog new attacker TTPs, victims, and deliver customer notifications to protect worldwide enterprise customers and empower customers to protect themselves via constantly improving Microsoft products.
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.
Qualifications
Required/Minimum Qualifications:
Experience in software development lifecycle, large-scale computing, modelling, cybersecurity, threat hunting and/or anomaly detection
OR Master\’s Degree in Statistics, Mathematics, Computer Science or related field.
Microsoft Cloud Background Check:This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Additional or Preferred Qualifications:
- Proficient experience in software development lifecycle, large-scale computing, modeling, cybersecurity, threat hunting and/or anomaly detection
- OR Doctorate in Statistics, Mathematics, ComputerScienceor related field.
- Proven knowledge of security fundamentals across Microsoft platforms (Client, Server, Cloud)
- Strong understanding of malware and the modern threat landscape, especially identity-based attacks
- Familiarity and understanding of SQL or Kusto Query Language (KQL) queries (or experience with large database/SIEM query languages such as Splunk/Humio/Kibana, etc.)
- Familiarity and understanding of Jupyter Notebooks, or building equivalent threat hunting automations with scripting languages
- Consulting background
- Active Directory subject matter expertise
- Experience with sophisticated threat actor evidence including familiarity with typical Indicators of Compromise (IOCs), Indicators of Activity (IOAs) and Tools, Techniques and Procedures (TTPs)
- Microsoft Azure and/or Office365 platform knowledge and experience
- Experience with various forensic log artifacts found in SIEM logs, web server logs, AV logs, protection logs such as HIDS and NIDS logs
- Familiarity with Microsoft Defender 365 security stack (for Endpoints, Identity, Cloud, etc), especially with Advanced Hunting query writing
- Excellent understanding of Windows internals and where trace evidence can be found
- Knowledge of third-party cybersecurity solutions, especially EDR and SIEM solutions
- Linux and/or macOS forensic analysis and threat hunting skills
- Technical certifications based on domain (e.g., Azure, SharePoint)
- Project Management certifications (e.g., PMP, Scrum)
- Ability to obtain and maintain a Security Clearance.
Responsibilities
Responsibilities:
This role is part of a collaborative team, assisting our customers with:
- Performing deep analysis of attacker activity in on-premises and cloud environments
- Identifying potential threats, allowing for proactive defence before an actual incident
- Notifying customers regarding imminent attacker activity
- Providing recommendations to improve customers’ cybersecurity posture going forward and performing threat intelligence knowledge transfer to prepare customers to defend against today’s threat landscape
- Building proof-of-concept and prototype threat hunting tools, automations, and new capabilities
- Driving product and tooling improvements by conveying learnings from threat hunting and incident response at scale to engineering partner teams
- Identifying, prioritizing, and targeting complex security issues that cause negative impact to customers. Creating and driving adoption of relevant mitigations and providing proactive guidance
- Working with others to synthesize research findings into recommendations for mitigation of security issues. Sharing across teams. Driving change within team based on research findings.
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
Industry leading healthcare
Educational resources
Discounts on products and services
Savings and investments
Maternity and paternity leave
Generous time away
Giving programs
Opportunities to network and connect
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations .
#J-18808-Ljbffr
Principal Security Researcher employer: Microsoft Corporation
Contact Detail:
Microsoft Corporation Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Principal Security Researcher
✨Tip Number 1
Familiarise yourself with the latest trends in cybersecurity and threat hunting. Follow industry leaders on social media, read relevant blogs, and participate in online forums to stay updated. This knowledge will not only help you during interviews but also demonstrate your passion for the field.
✨Tip Number 2
Network with professionals already working in security roles, especially those at Microsoft or similar companies. Attend industry conferences, webinars, or local meetups to make connections. These contacts can provide valuable insights and potentially refer you to open positions.
✨Tip Number 3
Engage in hands-on projects that showcase your skills in threat hunting and cybersecurity. Contribute to open-source projects or create your own tools to demonstrate your technical abilities. Having tangible examples of your work can set you apart from other candidates.
✨Tip Number 4
Prepare for technical interviews by practising common cybersecurity scenarios and problem-solving exercises. Use platforms like LeetCode or HackerRank to sharpen your coding skills, particularly in languages relevant to the role, such as Python or SQL.
We think you need these skills to ace Principal Security Researcher
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cybersecurity, threat hunting, and software development. Use specific examples that demonstrate your analytical skills and familiarity with Microsoft platforms.
Craft a Compelling Cover Letter: In your cover letter, express your passion for security and how your background aligns with the role. Mention any specific projects or experiences that showcase your ability to tackle complex security issues.
Highlight Relevant Qualifications: Clearly outline your qualifications, especially if you have a Master's or Doctorate in a related field. Include any technical certifications and your experience with tools like SQL, KQL, or Microsoft Defender 365.
Showcase Your Growth Mindset: Reflect on your growth mindset in your application. Share examples of how you've embraced challenges, learned from failures, and contributed to team success in previous roles.
How to prepare for a job interview at Microsoft Corporation
✨Showcase Your Analytical Skills
As a Principal Security Researcher, you'll need to demonstrate strong analytical abilities. Prepare examples from your past experiences where you've successfully identified threats or anomalies, and explain your thought process in detail.
✨Familiarise Yourself with Microsoft Security Tools
Make sure you have a solid understanding of Microsoft’s security stack, including Defender 365 and Azure. Be ready to discuss how you've used similar tools in the past and how they can be applied to enhance security measures.
✨Understand the Modern Threat Landscape
Brush up on current trends in cybersecurity, especially identity-based attacks and common Indicators of Compromise (IOCs). Being able to discuss recent incidents or developments will show your passion and knowledge in the field.
✨Prepare for Technical Questions
Expect technical questions related to threat hunting, anomaly detection, and software development lifecycles. Review relevant concepts and be prepared to solve problems on the spot, as this will demonstrate your expertise and problem-solving skills.
