Enable job alerts via email!
Principal Security Researcher
TN United Kingdom
Cheltenham
On-site
GBP 60,000 - 80,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An established industry player is seeking a Principal Security Researcher to join their dynamic team in Cheltenham. In this pivotal role, you will leverage your extensive security research expertise to develop innovative detection capabilities that protect millions of customers. Collaborating with a talented team, you will analyze vast telemetry data and design solutions that address complex security challenges. Your contributions will directly impact the effectiveness of security measures across various platforms. If you are passionate about cyber security and eager to drive meaningful change, this is the perfect opportunity for you.
Benefits
Qualifications
- Expertise in leading cyber security research and building detection capabilities.
- Proficient in programming and analyzing large datasets for security.
Responsibilities
- Design and build detection capabilities for security products driven by threat intelligence.
- Discover threat actor activity and automate based on product internals.
Skills
Tools
Job description
Social network you want to login/join with:
Client: Microsoft
Location: Cheltenham
Job Category: Other
EU work permit required: Yes
Job Reference: 735a8d7daec1
Job Views: 94
Posted: 11.03.2025
Expiry Date: 25.04.2025
Overview
The Microsoft Threat Intelligence Center (MSTIC) has unique optics into end-to-end attacks and how different stages manifest across our telemetry: we join the dots and show the art of the possible. The Threat Intelligence Product Research team researches and develops new detection capability through novel correlation and analysis ideas, embeds Threat Intelligence, and then achieves global impact by partnering across the company to make these a reality in customer-facing security solutions. We’re recruiting a Principal Security Researcher with deep expertise and a track record of successful security research delivery to tackle hard problems related to the discovery of threat actors targeting Microsoft and its customers. You’ll be working to analyze vast amounts of telemetry from multiple different products then designing and prototyping detections and disruptions to protect millions of customers. You’ll also be working closely with the threat intelligence analyst community to build new insights and automate tracking of threat actors through your deep expertise in security product and platform internals. Security Research is a broad field, and we welcome interest from accomplished security researchers with a wide variety of prior expertise. Our primary focus is on threat intelligence-based detection through analysis of telemetry sent to the cloud or generated by internal cloud services – so a desire to work at that level and build guru-level knowledge of Kusto and KQL is essential. Our current areas of focus are related to Identity, Cloud Apps, and Microsoft Cloud, but there is scope to research and join activity over a wide range of technologies and data sources.
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees, we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Qualifications
- Expert level experience working on and leading cutting-edge cyber security research projects
- Proficient in building security capabilities and tooling in at least one programming language, such as Python, C#, C++
- Experience working with large datasets for the purpose of security research, using a query language such as SQL or KQL – and a passion for security data!
- Excellent cross-group and interpersonal skills, with the ability to articulate the business need for security and technical improvements
Other Requirements
- Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
- Experience of Identity, Cloud Apps and Microsoft Cloud related security research, attacks, threat hunting, and detection
- Experience building threat detection logic for security products
- Experience writing production-quality code and working on production systems, ideally in C# and running on Kubernetes
Responsibilities
- Harness your deep security research background and expertise to design and build new detection capabilities for a range of security products – driven by threat intelligence.
- Discover new threat actor activity and build automations based on a deep understanding of product internals and telemetry.
Benefits
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work:
- Industry leading healthcare
- Educational resources
- Discounts on products and services
- Savings and investments
- Maternity and paternity leave
- Generous time away
- Giving programs
- Opportunities to network and connect
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
