Microsoft Corporation Service Engineer - Advanced Threat Analytics in Herzliya, Israel

Our Group

Microsoft Advanced Threat Analytics (formerly Aorato) is a unique innovator in cyber security.

Previously a startup, we are a small group (30 engineers and security researchers) in-charge of 2 super successful products (HUGE enthusiastic customers, MILLIONS of users) - ATA and Azure ATP.

Our products protect an organization's enterprise network and cloud assets by applying sophisticated algorithms, collecting and fusing data from many sources, and processing immense amounts of traffic in real time.

We deal with extremely complex security challenges, hard-core scale and performance requirements (10s of thousands of events per second) and own a unique market position to make Microsoft the world's leader in cyber security.

Our culture

We are an agile team of very strong engineers, researchers and PMs, with a "move-fast" attitude, passion for solving tough problems, building things the right way and delighting our customers.

We encourage autonomy, collaboration, creativeness and proactivity.

We are allergic to bureaucracy and paperwork.


  • Running and maintaining our production infrastructure hosted on Azure

  • Analysis of complex system behavior, performance and application issues

  • Capacity analysis and planning forour cloud services

  • Apply modern engineering practices to drive down operational overhead through automation and system design

  • Promote security excellence across a broad set of internal and external customers

  • Define and create standard operating procedures for Tier 1 and Tier 2 teams

  • Ensure all infrastructure and application alerts are “actionable” alerts by Tier 1, Tier 2 and/or self-healing automation

  • Work with the operations center and feature teams as a subject matter expert, offering education and guidance on integration, support and monitoring of toolset

  • Serve as Tier 3 escalation point responsible for troubleshooting, as well as mentor and coach to others

  • Demonstrate complex troubleshooting skills, deep knowledge of the services running on the infrastructure, and working with engineers and vendors to resolve issues

  • Play a crucial role in keeping our services up 24/7


Required Skills:

  • Experience in cloud environments(Azure/AWS/GCP)

  • 3+ years’ experience withSystem Center Operations Manager (SCOM)or other monitoring system (Pingdom, Datadog, etc.)

  • 3+years’service automation using scripting tools (Power Shell preferred)

  • 3+years'experience handling critical production incidents

  • Knowledge in networking

  • Proven technical troubleshooting and performance tuning experience

  • Experience in a high-volume or critical production service environment

  • Strong written and oral communication skills required

Desired Skills:

  • BS in Computer Science or related technical Certifications

  • 3+ years'experience with AD, DNS, PKI, and debugging Windows OSissues

  • 3+ years' online services support experience required

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to .