Senior Security Investigator - CTJ - Poly | Microsoft Careers

Microsoft

Actively hiring
San Francisco Bay area · New York City metropolitan area Posted 15 days ago $119,800$234,700 / year
View original post Log in to save

At a glance

AI generated

TL;DR

As a Senior Security Investigator on Microsoft’s Security Response Team (SRT), you will collaborate with cloud and security experts to tackle complex security challenges impacting petabytes of business-critical data. Your daily tasks include investigating threats, proactively hunting for malicious activities, automating capabilities, and developing security tooling using technologies such as SQL, KQL, Jupyter Notebook, Spark, Azure Synapse, R, U-SQL, Python, Splunk, and Power BI. You will analyze large datasets to identify vulnerabilities, false positives, and intrusions, while also creating detections based on available data and driving automation for efficiency. This role requires a strong background in software development lifecycle, threat modeling, anomaly detection, and experience with cloud services like Office 365 and Azure. Ideal candidates have expertise in OS security, encryption protocols, and digital forensics, along with the ability to work effectively in ambiguous situations and contribute to a fast-paced, innovative team environment.

Skills

SQL KQL Jupyter Notebook Spark Azure Synapse R U-SQL Python Splunk Power BI DevOps CI/CD Azure O365 SAML OAuth Linux Windows Digital Forensics Reverse Engineering Penetration Testing MALWARE ANALYSIS

What you'll do

  • Analyze large data sets to investigate complex security issues using SQL, KQL, Python, and other tools.
  • Investigate suspected compromised assets by analyzing log data and artifacts to determine security breaches.
  • Develop and automate detection capabilities based on threat intelligence and analysis of intrusions.
  • Conduct proactive adversary hunts for malicious activities across various log sources and network tools.
  • Analyze metrics and trends in security issues to recommend improvements and new KPIs.
  • Identify patterns in control weaknesses and propose mitigation strategies to enhance security measures.

What we're looking for

  • Doctorate or Master's degree in a relevant field plus 3+ years of experience in cyber security and software development.
  • Bachelor's degree in a related field plus 4+ years of experience in large-scale computing, threat modeling, and SOC detection.
  • Proficient in using tools like SQL, KQL, Jupyter Notebook, Spark, Azure Synapse, Python, Splunk, and Power BI for data analysis.
  • Experience identifying and mitigating security threats, creating detections based on available data, and automating response capabilities.
  • Deep knowledge of OS security internals for Linux and Windows, and familiarity with cloud app authorization protocols like SAML or OAUTH.
  • Ability to work effectively in ambiguous situations, drive automation, and contribute to a fast-paced DevOps environment.

Market check

Salary context

This $119,800–$234,700 range sits above 67% of similar postings on FindRole.

Peer median band

$113,950$200,596

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$137,700$184,912

Middle half of comparable postings.

Based on 240 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About Microsoft

Microsoft Corporation is a global technology leader producing software, hardware, and cloud services including Windows, Office 365, Azure cloud platform, Xbox gaming, and Surface devices. Industry: Software & Cloud Computing

Microsoft currently has 451 open roles on FindRole.

Listed pay typically runs $119,800–$234,700 across 417 roles with salary data.

Most-posted roles

View all roles at Microsoft

More like this

Similar roles

Security Consultant-CTJ-Poly

Microsoft

Washington, Dc,Us, US 11 days ago $77,900$156,200
Azure Microsoft Entra ID Conditional Access Privileged Identity Management (PIM) Identity Governance Entra Connect Certificate-Based Authentication (CBA) Enterprise PKI Microsoft Intune Microsoft Defender for Endpoint MDE EDR ASR MDM/MAM Secure Device Posture Enforcement Microsoft Defender XDR Microsoft Sentinel SIEM/SOAR Log Ingestion KQL-based Detection Threat Hunting Incident Response Workflows Security Automation/Playbooks Microsoft Defender for Cloud Defender for Cloud Apps (CASB) Azure Workload Protection NIST RMF DoD STIGs Secure Score Vulnerability and Exposure Management Continuous Monitoring Microsoft Purview Information Protection Data Loss Prevention (DLP) Insider Risk Management Compliance Capabilities

Senior Solution Engineer - Security | Microsoft Careers

Microsoft

US 39 days ago $106,400$203,600
Microsoft M365 Defender Defender for Cloud Sentinel Azure CI/CD XDR Zero Trust Cloud Security Python JavaScript PowerShell SQL Terraform Kubernetes Docker Prometheus Grafana

Senior Industrial Security Consultant - CTJ - Poly | Microsoft Careers

Microsoft

US 24 days ago $96,500$188,400
DISS NBIS Scattered Castles COMSEC ICD705 NISPOM DoDM 5205.07 CFR 32 Part 117 ICDs Threat Model Development Vulnerability Assessments Security Risk Analysis Physical Security Operations Security Top Secret (TS) Clearance SCI Eligibility FSP Polygraph

Senior Software Engineer- CTJ - Poly | Microsoft Careers

Microsoft

US 67 days ago $119,800$234,700
Azure Kubernetes Docker Python C# CI/CD GitHub Copilot Terraform C C++ Java JavaScript Problem-solving Debugging Automation Telemetry Resiliency Engineering Performance Optimization Security By Default

(USA) Senior Software Engineer, Information Security

Walmart

(Usa) Isd Office - Dgtc Ar Bentonville Home Office, US 101 days ago $90,000$180,000
Python Java Go Docker Kubernetes AWS CI/CD FIDO2 PKI PostgreSQL Redis Prometheus Grafana OAuth OpenID Connect SAML JSON Web Tokens LDAP Active Directory