Security Operations Analyst
@ Microsoft

Hybrid
$120,000
Hybrid
Full Time
Posted 7 hours ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXXX XXXXXXXXXXX XXXXXXXX****** @microsoft.com
Recommended after applying

Job Details

Overview

Microsoft Security is committed to protecting digital environments through end-to-end, simplified solutions. As a Security Operations Analyst, you will proactively detect, investigate, and respond to advanced threats using cutting-edge, AI-enabled security tools and threat intelligence. Join our growing team of Defenders and help reshape security across enterprise environments.

Responsibilities

You will:

  • Monitor, triage, and respond to security incidents using Microsoft Defender products.
  • Perform proactive threat hunting utilizing telemetry from endpoints, identities, cloud, and network.
  • Develop hunting queries with KQL or similar languages.
  • Investigate incidents in hybrid environments and contribute to root cause analysis.
  • Collaborate with internal teams to enhance detection logic and automate incident response workflows.
  • Document incidents, update detection playbooks, and refine runbooks.
  • Stay current with evolving threat landscapes, cloud attack vectors, and APT tactics.

Qualifications

Required: Graduate degree in engineering or equivalent, experience in cybersecurity (SOC, IR, Threat Hunting, Red Team), hands-on SIEM, EDR, and cloud-native security tools (e.g., Microsoft XDR, Sentinel, CrowdStrike), cloud platform experience (Azure, AWS, GCP), proficiency in KQL, Python or similar, strong knowledge of MITRE ATT&CK and adversary TTPs, familiarity with Windows/Linux internals, and relevant certifications such as CISSP, OSCP, CEH, GCIH, AZ-500, or SC-200.

Preferred: Problem-solving mindset, excellent communication skills, collaborative approach, and continuous learning attitude.

Microsoft Culture & Values

Microsoft empowers every individual with a growth mindset, innovation, and teamwork. The company is committed to diversity and inclusion, providing a supportive work environment where everyone thrives.

Key skills/competency

cybersecurity, threat hunting, incident response, SIEM, endpoint security, automation, KQL, cloud security, threat intelligence, forensic analysis

Apply without a personalized resume

How to Get Hired at Microsoft

🎯 Tips for Getting Hired

  • Customize your resume: Tailor skills to cybersecurity requirements.
  • Highlight technical expertise: Emphasize SIEM, EDR, and cloud tools.
  • Showcase collaborative work: Mention teamwork and incident resolution.
  • Prepare for scenarios: Practice threat hunting and KQL exercises.

📝 Interview Preparation Advice

Technical Preparation

Review SIEM tool documentation.
Practice KQL and scripting exercises.
Study cloud security configurations.
Update knowledge on OS internals.

Behavioral Questions

Explain past teamwork scenarios.
Describe handling critical incidents.
Discuss learning from mistakes.
Illustrate conflict resolution methods.

Frequently Asked Questions