Microsoft and the Azure Edge + Platform org are looking for a creative security research leader to manage a small expert team of security researchers, as well as doing hands-on research themselves, in the new and exciting domain - Adaptive Cloud . If you are passionate about people and security, we have the perfect job for you!
Adaptive cloud is a new and exciting domain, bridging the gaps between cloud environment and edge devices, so that our customers can run their workloads where it best suits them. This is an opportunity to influence the security of this domain, covering cloud security, OS environments, deployment challenges and end to end research.
The Edge & Platform Security Fundamentals (EPSF) org ensures we ship the world's most secure operating systems, cloud platforms, and edge devices. We conduct research into the highest priority attack surfaces and scenarios, including into Microsoft strategic investments such as Adaptive Cloud, AI, and next generation OS. Our research teams include leading researchers in this domain, finding and fixing critical issues, and developing techniques and tools that help us scale the security research.
Being part of EPSF IL, you will build a new team of security researchers tasked with helping Microsoft ship the most secure products in the new domain of Adaptive cloud. The ideal candidate will have broad experience in both cloud security research as well as OS and container security, and with leadership qualities to lead additional researchers in hands on research.
Responsibilities
Responsibilities
- Build a new security research team from the ground up, defining the targets and roadmap.
- Lead the work of a security focused research team across multiple concurrent projects.
- Perform strategic and independent security research, discover new bug classes and offensive techniques.
- Collaborating with partner teams and organizations on research findings to maximize security impact.
- Contribute to improving the security posture of Adaptive cloud products.
- Evaluate tools, techniques, and procedures for feasibility, effectiveness, and impact.
- Develop and refine offensive security knowledgebases, guides, and training.
- Contribute to tooling and automation for security research, including bug discovery automation and analysis.
Qualifications
Required Qualifications:
- 2+ years experience in management of security research teams.
- 8-12 years of experience in security research, vulnerability discovery, mitigation development or related fields
- In depth understanding of cloud and OS attacks, threat modelling complex systems, vulnerability discovery and applying mitigations.
- Outstanding team player with cross-group collaboration skills and communication skills
Preferred Qualifications:
- Public track record of relevant security research, especially around vulnerability discovery
- Experience exploiting bugs and bypassing cloud/OS security mitigations.
- Experience with data analysis tools and AI/ML.
- Experience mentoring others in security research.
- Relevant certifications from SANS, Offensive Security, CISSP, GIAC or a similar industry-recognized body
#EPIL #EPSFIL
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
your
mark