SOC Operations Technical Specialist

Overview

Microsoft is on a mission to empower every person and every organization on the planet to achieve more. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day.

In doing so, we create life-changing innovations that impact billions of lives around the world. You can help us achieve our mission.

The Industry Solutions Delivery Organization helps Microsoft customers around the world get the best outcomes from their investments in the latest Microsoft cloud technologies.

We focus on empowering customers on their digital journey, from envisioning new possibilities to delivering solutions that result in targeted business outcomes and a great customer experience.

Microsoft Security Services for Enterprise , as a part of the Industry Solutions Delivery Organization, is a comprehensive service combining dedicated Microsoft security experts managing incident response, leveraging Microsoft’s complete security information and event management (SIEM) and XDR stack to protect all cloud environments and all platforms.

In this role, you will be a key contributor, learn in a fast paced, live-site focused environment, build, manage and maintain the secure environment which customers and Microsoft security experts interact.

The job provides an opportunity to :

• Leverage the Microsoft Security ecosystem to enable secure case management, communications, investigations and response activities for our customers while collaborating across multiple teams within Microsoft.
• Work with a world class team consisting of Security Analysts, Security Delivery Managers, Architects, Incident Responders, and leadership that will help you grow your career.
• Be part of a dynamic Security community that will enable you to learn, collaborate, and contribute with the top minds in the industry.

We are looking for someone who is highly customer focused with the right combination of curiosity, technical aptitude, and communication skills to become a Security Operations Center Operations Technical Specialist for Microsoft Security Services for Enterprise.

If this sounds like the right environment for you, please join us.

Qualifications

Qualifications :

Required qualifications

Experience in security operations center administration, software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident responseOR equivalent experience.

Preferred qualifications

• Experience in security operations center administration, software development lifecycle, cloud computing, modelling, cyber security, and anomaly detection.
• Experience with the use of Azure DevOps to monitor, track and triage open tasks for the team.
• Ability to create and maintain Azure Service deployment with ARM, Bicep or other solutions with Azure Repos and Pipelines.
• Experience with the following :
• Entra ID design and security
• Entra ID Security Services
• Microsoft Teams Administration
• Microsoft 365 Administration
• Azure Policy as Code Framework
• Cross Tenant Connectivity solutions
• Privileged Access Workstations
• Endpoint Management and Intune services
• Microsoft Power Apps
• Microsoft Sentinel
• Azure Purview and DLP
• Scripting and automation experience
• Understanding of service connections / principals, etc
• Understanding of Security Operation Center Reporting
• Versed in Kusto Query Language (KQL)
• Logic Apps
• Understanding of IT Service Management
• Certification in one or more of the technologies : Microsoft Azure Security Technologies, Microsoft M365 Security Technologies, Cloud Security, CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, and / or Security+ certification.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here :

Responsibilities

As a SOC Operations Technical Specialist , you will :

• Collaborate in the design, implementation and operations of the Microsoft Security Services for Enterprise platform.
• Collaborate across multiple roles within the service to capture improvement requests and plan accordingly through a prioritized backlog.
• Serve as an escalation point and primary contact for the platform as required.
• Support the performance of audit reviews for compliance and security as required.
• Partner with other roles in your team and in the broader Microsoft organization to ensure Customer success in the acquisition, implementation, and consumption of Microsoft’s Security solutions with an aim to protect our customers.

Your ability to anticipate issues and challenges, excellence in driving for results, and cross-team collaboration will be essential to your success.

• Collaborate with engineering teams across Microsoft to support better integration across all solution teams.
• Lead the process of provisioning new customers into the platform.

Identification and Detection of Control Failures

Designs solutions to address identified control issues (e.g., network, identity, high security), taking intended and unintended consequences into account.

Operationalizes and scales a program and solution appropriately. Identifies high priority opportunities and makes data-driven recommendations for efficiencies to improve security posture (e.

g., streamline processes, automate). Assists team with technical acumen as needed.

Automation

Recommends automation to improve effectiveness and efficiencies of security operations. Supports development and implementation of new automation.

Provides automation and proactively proposes where investment will yield greatest efficiencies. Develops and implements solutions.

Improves solutions over time.

Translate Security Policy and Standards into Effective Controls

Contributes to security policy and standards. Maintains accurate and comprehensive security policy and standards. Designs mitigation strategies to addresses identified gaps in policy.

Educates others (e.g., business partners, peers, industry) on security policy. Recognizes patterns and trends and recommends solutions for improvement.

Recommends refinement of security policy and standards.

Collaboration

Collaborates with internal and external parties to ensure service level agreement (SLAs) are reached when addressing threats.

Supports development of requirements for solutions. Defines new requirements and feature sets.

Customer / Partner Experience

Drives improvements in customer and partner experience by sharing best practices and interacting with customers. Ensures proper resources are engaged to address issue and prevent recurrence.

Designs for the customer experience. Develops and implements metrics for customer satisfaction. Ensures alignment to customer and partner experience standards.

Gathers future requirements directly from customers. Designs to maximize customer experience. Creates partnership and advocacy with customers.

Educates business partners to influence behavior to make different decisions that enhance security posture. Defines customer and partner requirements, anticipates needs, and measures quality of experience.

Data-Driven Analysis

Recommends mitigation strategies based on trends identified in the analysis of key metrics, key performance indicators (KPIs), and other data sources (e.

g., bugs, unhealthy data pipeline). Defines and implements metrics to address gaps in measurement. Influences others to take action in response to findings, prioritized by severity.

Red / Purple Team Operations

Understands how weaponized code can be used in operations. Determines how tactical tools can be adopted to larger scale automation.

Engages security assurance organizations to identify new Tools Tactics Procedures (TTPs) and leverages in breaches operations.

Other

Embody our and

Benefits / perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

Industry leading healthcareEducational resourcesDiscounts on products and servicesSavings and investmentsMaternity and paternity leaveGenerous time awayGiving programsOpportunities to network and connect