Incident Response Engineer - CIRT
Description For Incident Response Engineer - CIRT
Microsoft's Customer Experience & Success (CE&S) organization, with over 17,000 employees worldwide, is seeking a Senior Incident Response Engineer for their Customer Service & Support (CSS) team. This role is crucial in building trust and confidence through delivering seamless support experiences.
As a Senior Incident Response Engineer, you'll be an elite member of a customer-facing security support team leading incident response investigations for Microsoft's enterprise customers. The position requires expertise in analyzing, triaging, scoping, containing, and determining root causes of security incidents. You'll work with Microsoft's AI technology to help customers resolve issues quickly and securely.
The role offers significant flexibility with up to 100% work-from-home options. You'll be part of Microsoft's mission to empower every person and organization on the planet to achieve more. The position involves working with enterprise-level security systems, cloud platforms, and requires deep technical knowledge in incident response and security operations.
Key aspects of the role include:
- Leading complex security incident investigations
- Working with Microsoft's enterprise customers
- Utilizing advanced threat analytics tools
- Collaborating with Security and Threat Intelligence teams
- Developing and implementing incident response procedures
- Maintaining expertise in emerging security threats
The ideal candidate will combine technical expertise in security incident response with strong customer service skills. This role offers excellent growth opportunities in Microsoft's global security operations, with access to cutting-edge technology and the chance to work with enterprise-level security challenges.
Benefits include industry-leading healthcare, educational resources, investment options, parental leave, and opportunities for professional development. The position requires participation in on-call rotation and offers exposure to diverse security challenges in a dynamic, global technology environment.
Responsibilities For Incident Response Engineer - CIRT
- Scope customer security incidents
- Understand and identify indicators of attack and compromise
- Analyse incident data from threat analytics tools
- Collaborate with Security and Threat Intelligence teams
- Coordinate security incident response
- Develop and implement incident response runbooks
- Perform security triage and analysis
- Investigate root cause of complex security incidents
- Participate in on-call rotation
Requirements For Incident Response Engineer - CIRT
- Bachelor's degree in Computer Science, IT, or related field AND 5+ years experience
- 2+ years Security Incident Response experience
- 2+ years Cloud investigations experience with Entra ID, Microsoft 365 and Microsoft Defender
- 2 years customer facing experience
- Experience with large enterprise environments (1000+ users)
- Experience in Network Security Administration and Systems Administration
- Kusto Query Language knowledge
- Cloud security experience
- Automation skills (PowerShell, Python, Java)
- Relevant certifications preferred (SANS GCIH, CISSP, CEH, etc.)
Benefits For Incident Response Engineer - CIRT
- Medical Insurance
- Education Budget
- Parental Leave
Jobs Related To Microsoft Incident Response Engineer - CIRT
