Principal Threat Researcher

You will be joining the Defender Experts (DEX) Research team within Microsoft Security, dedicated to advancing the company's threat protection strategy. As a Principal Threat Researcher, you will play a crucial role in researching and combating emerging cloud-based threats impacting both Microsoft and third-party security products. Your work will involve collaborating with a team of experts to develop innovative solutions that enhance threat detection and response capabilities within Microsoft Sentinel, contributing to the protection of enterprises worldwide. - Lead and execute advanced research on emerging cloud-based threats affecting Microsoft and third-party security products across diverse cloud environments. - Design and refine detection and response strategies using major SIEM platforms, with a focus on Microsoft Sentinel, to ensure comprehensive threat coverage and response capabilities. - Work closely with internal and external security teams to implement scalable solutions for multi-cloud threat intelligence, detection, mitigation, and response. - Translate complex security data into actionable intelligence to improve cloud security operations for a global customer base. - Mentor and guide researchers and detection engineers on advanced threat hunting and incident response practices across various SIEM ecosystems. - Contribute to industry knowledge and Microsoft's security posture by publishing research, developing threat models, and proactively identifying threats and attack trends in the cloud. - 10+ years of experience in security research, detection engineering, threat lifecycle, and cloud security in complex cloud environments. - Demonstrated expertise in designing and deploying advanced detection engineering solutions, particularly with Microsoft Sentinel. - Extensive hands-on experience with cloud platforms, such as Azure, and a deep understanding of multi-cloud security challenges. - Strong practical experience in identifying, analyzing, and mitigating real-world cyber threats in complex cloud environments. - Proven ability to work independently, deliver complete solutions, and effectively communicate technical insights to multidisciplinary teams.,