Microsoft Corporation Security Researcher- MSTIC IL in Herzliya, Israel

The Microsoft Threat Intelligence Center (MSTIC) is looking for an experienced Security Engineer to join the newly formed MSTIC-IL team.

The Threat Intelligence Center is focused on building cutting edge solutions, countering adversary-based threats to Microsoft and its customers through dissemination of threat intelligence, proactive hunting and the development of new solutions and methods to detect adversary activity, investigate and respond to the attacks.

Are you interested in discovering and tracking emerging threats, and using that information to protect Microsoft and its customers? Do you want to be part of the team that provides security analysis services for products such as Office 365’s Exchange Online Advanced Threat Protection? Do you like reversing? We’ll give you threats to analyze. Love coding? There’s plenty to write. Are you a data buff? This place is for you! Come join us at Microsoft Threat Intelligence Center IL in Cloud and Enterprise (C&E) Security!

The Security Engineer will:

  • Research the advanced threat / exploitation landscape

  • Provide in-depth / FP / FN analysis for Office 365 Advanced Threat Protection service

  • Implement rich security analysis and production quality detection capabilities in the cloud

  • Have strong data knowledge, and ability to analyze and present complex data visually in a meaningful way.

Responsibilities

  • Research the advanced threat / exploitation landscape

  • Provide in-depth / FP / FN analysis for Office 365 Advanced Threat Protection service

  • Implement rich security analysis and production quality detection capabilities in the cloud

  • Have strong data knowledge, and ability to analyze and present complex data visually in a meaningful way.

Qualifications

  • Sc. in Computer Science or Computer Engineering (or equivalent training)

  • 2+ years of relevant industry experience

  • Good communication skills and an eye for detail.

  • Strong problem solving skills and technical judgment.

  • Experience in reverse engineering, vulnerability research and exploit development.

  • Experience with OllyDbg / WinDbg or equivalent is a must.

  • Experience with IDA Pro or equivalent disassembly tools.

  • In-depth knowledge of the inner-workings of operating systems.

  • In-depth knowledge of the C/C++ programming languages.

  • Knowledge of networking and internet protocols (e.g. TCP/IP, DNS, SMTP, HTTP, FTP).Advantage:

  • Expert knowledge in intelligence analysis and reporting using common tools and techniques

  • Expert knowledge in security and exploit/threat detection technologies, analysis and reverse engineering

  • Strong programming skills and understanding of data structures/algorithms

  • Strong understanding of operating system and computer networking concepts