Sr SOC Automation Engineering Lead
 Microsoft | |
 United States, Washington, Redmond | |
 Feb 15, 2025 | |
|
OverviewSecurity represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers' heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Cyber Defense Operations is an organization led by Microsoft's Chief Information Security Officer and enables Microsoft to deliver the most trusted devices and services. CDO's vision is to ensure all information and services are protected, secured, and available for appropriate use through innovation and a robust risk framework. In support of this mission, we are looking for a Senior SOC Automation Engineering Lead who will work on installation, maintenance, support and optimization of all security-related components the team is responsible for. You will work with other teams to ensure platform hardening, security maintenance, and vulnerability remediation procedures are followed. Do you love the excitement and learning opportunity to study, analyze and deal with the complex threats to digital security in today's world? Do you have the "learner" mindset, are willing to un-learn old skills and learn new ones every day? Are you excited by the potential of influencing the state of security of our entire company, every day? If yes, then this opportunity is for you. Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.
ResponsibilitiesYou will guide teams on customer and partner experience expectations and support efforts to improve this experience. You'll also direct your team to identify security issue trends and patterns by analyzing key metrics.Build automation solutions to increase the efficiency and effectiveness of the analysts in the Security Operations Center (SOC).You will lead the team on continuous research to identify potential threats and develop automated response actions and data enrichments to strengthen our cloud defenses.You will automate data handling, security asks and automated responses to increase SOC efficiency using scripts, Logic Apps, Python and various Azure-based tools.Collaborate with detection engineering teams across the company to drive innovation and continuous improvement.Technical Insight: Provides technical insight on incident analysis and management, threat mitigation, forensics, malware analysis, and automation.KRA and KPI Management: Ensures strong Key Result Areas (KRA) and Key Performance Indicators (KPI) management. | |