We are seeking a highly skilled Cybersecurity Infrastructure Engineer to join our team at Microsoft. As a key member of our Global Customer Success organization, you will play a critical role in helping our customers achieve their cybersecurity goals.

• Technical Delivery
  • Assist our top customers with containment and recovery efforts during security incidents.
  • Develop and execute recovery plans to mitigate the impact of ransomware and destructive adversarial campaigns.
  • Deploy forensic collection tooling across complex environments.
  • Identify potential security threats and provide proactive defense recommendations.
  • Perform knowledge transfer to prepare customers to defend against emerging threats.
• Research
  • Conduct research on security threats and response capabilities, sharing findings with the team.
  • Identify and analyze critical security areas, such as current attacks, adversary tracking, and academic literature.
  • Develop and document new solutions to mitigate security issues.
  • Recommend prioritization and validation methods for technical indicators, developing tools to automate analysis.
  • Lead efforts to clean, structure, and standardize data and data sources, ensuring timely and consistent access.
• Thought Leadership
  • Develop written content for publication on Microsoft blog platforms.
  • Develop presentations for delivery at internal and external conferences.
  • Use unique experiences to create compelling storytelling moments.
• Operational Excellence
  • Complete operational tasks and readiness with timeliness and accuracy.
  • Follow Microsoft policies, compliance, and procedures.
  • Lead by example and guide team members on operational tasks, readiness, and compliance.

• 5+ years of experience in software development lifecycle, large-scale computing, modeling, cybersecurity, and/or anomaly detection.
• 3+ years of experience with Threat Actor containment during an incident, rapid recovery of critical infrastructure, and eviction of a Threat Actor after an investigation.
• 3+ years of Active Directory and associated components experience.
• Proficiency in one or more query languages.
• Fluent in reading, writing, and speaking English.

• 6+ years of experience in software development lifecycle, large-scale computing, modeling, cybersecurity, and/or anomaly detection.
• Experience in PowerShell and bash scripting.
• Experience with third-party security products.
• Experience with Microsoft Public Key Infrastructure (PKI) implementations and Active Directory Federation Services (AD FS).
• Understanding and working knowledge of the Linux and MacOS platforms.
• Experience with two or more of Microsoft's portfolio of Artificial Intelligence (AI) products.
• Understanding of DevOps concepts.
• Experience with management of virtualization platforms.
• Experience with IP network management.