Offensive Security Researcher - Azure Networking
Multiple Locations | Security Engineering | May 06, 2024 | Job number 1715037


Are you looking for a challenge that puts you at the center of the worldwide Platform? Are you passionate about finding security breaches and vulnerabilities? Do you have Offensive mindset?


Azure Networking is one of the core organizations that build Azure, the world’s largest network, leading digital transformation, empowering, and connecting enterprises and individuals around the world. The team in Israel is specializing in Network security, developing services that protect the Azure platform, the users and apps running on top of it.

Microsoft is a world leader in security and is obsessed with making sure that our platform and services are secure, and we can protect our customers and their workloads. We are expanding our offensive team. The team will focus on making sure our services are built with a security-first mindset by proactively looking for breaches and vulnerabilities in the across Azure architecture and services, to make sure Azure is safe, secure, and reliable.

 

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.



Responsibilities

  • The Azure Networking Security Research team is responsible for improving the security posture of Azure 1st party services and architecture, spanning across Host, WAN, SDN (software-defined networks) and network services, used by billions of customers in homes, businesses, and across Azure. This team performs security design reviews, code reviews, and hands-on offensive research/operations on key networking services to make sure they meet the highest security standards possible.
  • In this role, you will be part of an offensive research team tasked with helping Microsoft engineers ship the most secure product possible. The ideal candidate will have rich and diverse hands-on experience of exploiting, great capabilities to dive and understand code, a deep understanding of networking fundamentals and cloud architecture, an offensive mindset, and a passion for keeping Microsoft customers safe.
  • In other words, you will:
    • Identify security vulnerabilities in a wide variety of key networking services, protocols, and architecture, all comprising the Azure network.
    • Improving the security of Azure services and contributing to services that are in use by millions of users over the world.
    • Develop capabilities to detect security issues and vulnerabilities in scale.
    • Collaborate with other security and product teams to improve security.
    • Produce high-quality papers, presentations, and recommendations to improve Azure security.


Qualifications

Required Qualifications:

  • 2+ years of hands-on experience in security research with offensive mindset
  • 2+ years of In depth understanding of cloud or OS attacks, threat modelling complex systems, vulnerability discovery
  • 2+ years of experience of hands-on exploiting bugs and bypassing security mitigations and with offensive mindset of either Linux, Windows or embedded security
  • 2+ years of development, experience with multiple different languages including Python/C#/Golang

Other Requirements:

Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

 

Preferred Qualifications:

  • Familiar with industrial Red Team techniques
  • Familiarity with cloud architecture
  • Familiarity with security research on cloud environments
  • System design knowledge
  • Outstanding team player with cross-group collaboration skills and communication skills

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.  We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

 

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

 

#azurecorejobs




Make
your
mark