Security Operations Researcher

hace 6 meses


San José, Costa Rica Microsoft A tiempo completo

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end-to-end, simplified solutions.

The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

The Defender Experts for XDR group is looking to hire a **_Security Operations Researcher - Defender _**to help us harness the power of Microsoft’s trillions of security signals to quickly identify and report the latest human adversary behaviors, drive critical context-rich alerts, build new tools and automations in support of helping customers identify threats, and drive innovations for detecting advanced attacker tradecraft.
- This position is on-site only and will requiere to be on rotation for weekends._

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

**Responsibilities**:

- Identifies potential issues with detection (e.g., false positives, noise). Engages others to escalate appropriately. Analyzes potential or actual intrusions identified as a result of monitoring activities. Creates detections based on available data (e.g., Indicators of Compromise [IOC] and Tools Tactics Procedures [TTP]). Continues to drive automation of detection and response.
- With mínimal guidance, analyzes attempted or successful efforts to compromise systems security. Identifies potential next steps to resolve. Works with partner teams on recommendations to limit exposure. Implements appropriate response plans. Continues to develop ability to analyze independently and make recommendations. Influences others to take action.
- Identifies potential threats based on external trends and recommends prioritization for defense-building capabilities.
- Explore and correlate large data sets to uncover novel attack techniques, monitor and catalog changes in activity group tradecraft, and investigate alerts for enterprise customers.
- Work directly with customers at all levels of their security organization from analyst to CISO to support investigation and response.
- Collaborate with our data science and threat research teams to develop and maintain accurate and durable detections.
- Embody our culture and values.

**Qualifications**:
**Required/Minimum Qualifications**
- 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
- OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
- 3+ years of experience in a technical role in the areas of Security Operations, Threat Intelligence, Cyber Incident Response, or Penetration Testing/Red Team.
- 3+ years of experience of working with extremely large data sets, using tools and scripting languages such as: Excel, KQL, Python, Splunk, and PowerBI.
- Fluent in reading, writing and speaking English.

**Other Requirements**
- Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.

**Additional or Preferred Qualifications**
- 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection
- OR Master's Degree in Statistics, Mathematics, Computer Science or related field.
- CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, and/or Security+ certification.
- 3+ years of experience in software development lifecycle, large-scale computing, modeling, cybersecurity, and/or anomaly detection.
- Advanced knowledge of operating system internals and security mechanisms. Experience analyzing attacker techniques.
-



  • San Jose, Costa Rica Microsoft A tiempo completo

    Overview Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with...


  • San José, San José, Costa Rica Microsoft A tiempo completo

    At Microsoft, we're committed to making the world a safer place for all. Our Security Operations Researcher role is a critical part of this mission, and we're looking for talented individuals to join our team.Key Responsibilities:• Identify and analyze potential security threats and intrusions• Develop and implement detection and response strategies•...


  • San José, San José, Costa Rica Intel A tiempo completo

    Job OverviewWe are seeking a skilled Governance Product Security Engineer to join our team at Intel. This role involves working with developers to integrate security assurance practices into their workflows, collaborating with stakeholders to establish security requirements, and addressing security risks.Key ResponsibilitiesContribute to emerging security...


  • San José, San José, Costa Rica Microsoft A tiempo completo

    OverviewAt Microsoft, we're committed to making the world a safer place for all. Our Security organization is at the forefront of this mission, and we're seeking a highly skilled Security Operations Lead to join our team. As a Security Operations Lead, you'll play a critical role in helping us identify and respond to emerging threats, driving innovation in...


  • San José, Costa Rica Microsoft A tiempo completo

    Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end-to-end, simplified...


  • San José, San José, Costa Rica Cloudpay A tiempo completo

    Job OverviewYou will be part of a team led by a security operations lead, acting as the first line of defense for Cloudpay's security operations centre. Key responsibilities include monitoring cyber information, researching current threats, evaluating intelligence, providing security assurance, responding to tickets, and supporting incident response...


  • San José, San José, Costa Rica Microsoft A tiempo completo

    Job Description:We are seeking a highly skilled Security Operations Researcher to join our team at Microsoft. As a key member of our Defender Experts for XDR group, you will play a crucial role in harnessing the power of Microsoft's trillions of security signals to quickly identify and report the latest human adversary behaviors.Responsibilities:Analyze...


  • San José, San José, Costa Rica Intel A tiempo completo

    Role OverviewYou will collaborate with Intel developers to incorporate security assurance practices into their development workflows and contribute to innovation in emerging security areas.ResponsibilitiesWork with stakeholders in Intel Product Assurance and Security (IPAS) to ensure security assurance requirements are established and communicated in...


  • San José, San José, Costa Rica Cloudpay A tiempo completo

    Cloudpay SecOps Analyst Role OverviewWe are seeking a highly skilled Senior Security Operations Analyst to join our team at Cloudpay. In this role, you will be responsible for monitoring and analyzing security events, identifying potential threats, and developing strategies to mitigate them.


  • San José, Costa Rica cloudpay A tiempo completo

    As a security analyst you will form part of a team which is led by a security operations lead you will be the first point of defense for the company’s security operations Centre as a fast growing company we face growing threats every day the role of the analyst will be important as they will be the first in dealing with incoming security alerts of threats....


  • San José, Costa Rica CloudPay A tiempo completo

    As a security analyst you will form part of a team which is led by a security operations lead you will be the first point of defence for the company’s security operations Centre as a fast growing company we face growing threats every day the role of the analyst will be important as they will be the first in dealing with incoming security alerts of...


  • San Jose, Costa Rica Microsoft A tiempo completo

    Overview Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with...


  • San José, San José, Costa Rica Cloudpay A tiempo completo

    Job OverviewCloudpay is seeking a highly skilled Senior Security Operations Analyst to join our team. This role is perfect for someone with 3-5 years of security experience, working with SIEM tools like Qradar, Splunk, Arcsight, or Open Source tools like Wazuh.Key ResponsibilitiesMonitor cyber information, events, alerts, and ticketing queues to identify...


  • San José, Costa Rica Equifax A tiempo completo

    As a Security Analyst, you will have the opportunity to collaborate to monitor, detect and respond to security threats along the global organization. While interacting with other teams across Cyber Security you will conduct security investigations and be able to learn and get experience with each incident. The level 1 Security Operations Center (SOC)...


  • San José, Costa Rica Equifax A tiempo completo

    Equifax is where you can power your possible. If you want to achieve your true potential, chart new paths, develop new skills, collaborate with bright minds, and make a meaningful impact, we want to hear from you. As a Security Analyst, you will have the opportunity to collaborate to monitor, detect, and respond to security threats along the global...


  • San José, Costa Rica GSB A tiempo completo

    We are seeking a motivated professional to join its information security operations team as a **Security Analyst **focused on managing risks and vulnerabilities of a modern technology cloud first environment. The Security Analyst will play a critical role in safeguarding the integrity and resilience of Experian’s modern cloud-based infrastructure. **Key...


  • San José, Costa Rica INTEL A tiempo completo

    You will work with developers to determine the best ways of integrating security assurance practices into their development workflows. - You will have the opportunity to contribute and innovate in emerging areas requiring security assurance. - You will work with stakeholders in Intel Product Assurance and Security (IPAS) to ensure the appropriate security...


  • San José, Costa Rica INTEL A tiempo completo

    Key responsibilities: - You will work with developers to determine the best ways of integrating security assurance practices into their development workflows. - You will have the opportunity to contribute and innovate in emerging areas requiring security assurance. - You will work with stakeholders in Intel Product Assurance and Security (IPAS) to ensure...


  • San José, Costa Rica Microsoft A tiempo completo

    **Responsibilities**: **Qualifications**: **Required/Minimum Qualifications**: 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations...


  • San Francisco, Heredia, Costa Rica Experian A tiempo completo

    Job DescriptionWe are seeking a skilled Information Security Operations Specialist to join our team at Experian. As a key member of the Global Security Office, you will play a critical role in maintaining and supporting security reporting systems and tools.Key Responsibilities:Support the maintenance, testing, and operational support of security reporting...