Cybersecurity Analyst, DART

Organization: Microsoft

Location: Palo Alto, California United States

Keywords: Analyst, Cybersecurity Analyst, Incident Response

Job Type: Full-Time

<< Back to Job-Board
Learn More

We are looking for a Forensic Analyst with a strong, experienced security background to join our team delivering Incident Response investigations and point-in-time cybersecurity assessments that provide our worldwide enterprise customers with both a deeper understanding of their security posture and an understanding of potential malicious activities within their environments.

Responsibilities:

This role will work as part of a collaborative team assisting our top customers with:

  • Discovering attacker persistence (if present)
  • Determining attacker activity on known compromised systems
  • Identifying potential threats – allowing for proactive defense before an actual incident
  • Providing recommendations to improve cybersecurity posture going forward
  • Performing knowledge transfer to prepare customers to defend against today’s threat landscape

Qualifications

Minimum Education Level: Bachelor's

  • Bachelor’s Degree in Computer Science, Engineering, Finance, Business, or related field AND 3+ years leadership experience in relevant area of business
  • OR equivalent experience.
  • Excellent oral and written communication skills.
  • Ability to work with the team in a customer environment.
  • Proven knowledge of security fundamentals across Microsoft platforms (Client, Server, Cloud).
  • Experience deploying advanced Windows client security technologies.
  • Proven and advanced scripting experience with PowerShell.
  • Working knowledge of Azure cloud services.
  • Strong familiarity with Office365 migration and management.
  • Advanced understanding of Windows authentication mechanisms and supporting technologies such as ADFS.
  • Experience with understanding and troubleshooting Hybrid Identity Including Active Directory, Azure AD and technologies such as Azure AD Connect, Azure AD Password Protection.
  • Knowledge of Cybersecurity centred on understanding Identity such as   Azure AD Logging, Risk Events, Multi Factor Authentication, Defender for Identity, Privileged Identity Management (PIM), Defender for Azure (formally), etc.
  • General security knowledge   of common attack vectors and tools such as Pass the Hash, Golden Ticket and ransomware.
Learn More
Posted: January 19, 2022
<< Back to Job-Board