Cyber Security Analyst

• Company Microsoft
• No. of Openings 10+
• Salary Not Disclosed
• Work Type remote

Job Description :

Responsibilities

This role will work as part of a collaborative team assisting our top customers with:

• Discovering attacker persistence (if present)
• Determining attacker activity on known compromised systems
• Identifying potential threats – allowing for proactive defence before an actual incident
• Providing recommendations to improve cybersecurity posture going forward
• Performing knowledge transfer to prepare federal customers to defend against today’s threat landscape
• Close collaboration with threat intelligence teams to advance threat landscape picture for federal customers
• Creating status reports, customer reports and presentations

This Role Also Entails With

Pre-Sales Support

• Collaborates with internal stakeholders (e.g., Solution Architect, Account Delivery Executive, Pursuit Lead, Sales Solution Specialist) in the pre-sale process by understanding business requirements and providing industry and technical input and/or solution offerings to help shape the deal. Supports drafting proposals and/or statement of work (SOW).
• Provides input on staffing and skill requirements for delivery to Resource Deployment, Technical Delivery Managers (TDMs), and/or Project Managers.

Technical Delivery

• Follows capacity process outlined by Global Capacity Management team. Maintains tools with up-to-date skills and availability.
• Leads meetings with customers/partners to understand business needs. Uses business, industry and technology strategies to map customer/partner requirements to the adoption and optimization of Microsoft technology solutions. Engages others appropriately to understand and define customer requirements.
• Participates in project planning and develops project documents by identifying the risks and dependencies. Communicates the business value of planned solutions to customers/ partners. Identifies technical and business risks in programs and proposes mitigations. Assists project managers/architects in preparing for steering committee (e.g., developing artifacts). Manages their schedule and communicates to project leads. Generates and delivers Work Breakdown Structure (WBS).
• Implements solutions and may provide oversight and leadership on workstreams across domains while adhering to Microsoft Services processes. Aligns solutions with the intent of the architecture.
• Manages escalations, analyzes situations, and coordinates appropriate resources to resolve issues by following delivery practices, considering cost implications, and engaging in conversations with internal and external stakeholders (e.g., Customer Service and Support, Project Manager, Solution Architect, Product Group) as needed.
• Proactively manages executive-level customer/partner/stakeholder relationships to identify and contribute to the drivers of satisfaction and dissatisfaction, determine the root cause, and establish recovery actions to improve experience. Works with account team to ensure One Microsoft approach. Shares lessons learned with workgroup and consultant community.

Intellectual Property Management

• Acts as an ambassador in consumption of intellectual property (IP) by leveraging and/or modifying existing IP or creating repeatable content where applicable. Provides feedback on Managed IP for continuous improvement, reports IP gaps, reviews IP to be considered for harvesting and curation and ensures it is logged for consumption. Improves Managed Standard Offerings (MSO) quality and collaborates with portfolio and solution teams of the domain by providing feedback.

Business Development

• Identifies opportunities to expand or accelerate the adoption and consumption of the cloud and Microsoft technologies. As appropriate, facilitates other team members to scale the business with existing customers by articulating value propositions of strategic Microsoft products and services and developing new offerings for the domain. Drives innovation and digital transformation. Ensures the use of existing intellectual property (IP).

Readiness

• Learns new technologies or services based on business demands and industry trends. Obtains relevant accreditations and certification(s) as advised by domain leadership team. Identifies certifications and readiness plans in partnership with domain Chief Technology Officer (CTO). Leads or participates in relevant technical communities, and conducts training sessions to evangelize technology and/or offerings based on availability. Mentors team members and acts as a technical advisor for stakeholders by providing thought leadership, articulation of solutions value, and outcomes of business strategies.

Operational Excellence

• Completes operational tasks and readiness, and ensures timeliness and accuracy. Follows Microsoft policies, compliance, and procedures (e.g., Enterprise Services Authorization Policy, Standards of Business Conduct, labor logging, expenses, travel guidelines). Leads as example and guides team members on operational tasks, readiness, and compliance.

Other

• Embody our culture and values

Qualifications

• Bachelor's Degree in Computer Science, Engineering, Finance, Business, or related field AND 3+ years leadership experience in relevant area of business
  • OR equivalent experience.
  • Proven knowledge of security fundamentals across Microsoft platforms (Client, Server, Cloud)
  • Understanding of malware and the modern threat landscape
  • Strong understanding of advanced persistent threats (APT) and associated tactics, targeted attacks, credential compromise techniques, technology and security principles, and knowledge of the cyber threat landscape
  • Familiarity and understanding of basic SQL or KQL queries
  • Detail oriented and reliable problem solver mentality
  • Self-motivated and results-oriented, with excellent interpersonal skills
  • Excellent oral and written communication skills
  • A strong desire to learn and grow, as well as a desire to help others do so
• Preferred Qualifications
  • 5+ years of consulting background
  • 5+ years leadership experience in relevant area of business
  • Active Directory subject matter expertise
  • Experience with APT actor group evidence including familiarity with Indicators of Compromise (IOCs), Indicators of Activity (IOAs) and attack Tools, Techniques and Procedures (TTPs)
  • Use of forensic analysis tools such as X-Ways Forensics®, WinHex®, Encase®, FTK®, etc.
  • Microsoft Azure and/or Office 365 platform knowledge and experience
  • Experience with various forensic log artefacts found in SIEM logs, web server logs, AV logs, protection logs such as HIDS and NIDS logs
  • Familiarity with Microsoft Defender for Endpoints and Microsoft Defender for Identity Advanced Hunting queries
  • Excellent understanding of Windows internals and where trace evidence can be found
  • Proven experience in helping enterprises manage vulnerabilities, measure security, and ensure compliance
  • Knowledge of third-party cybersecurity solutions
  • Possesses the following certifications:
  • CISSP certification or similar
  • Microsoft role-based certifications (e.g., Azure, SharePoint).
  • Project management (e.g., PMP, Scrum)
  Prefer US Security Clearance
  
  The successful candidate must be a U.S. Citizen.
  
  Citizenship Verification: This position requires verification of US Citizenship to meet federal government security requirements.