Senior Security Researcher

Microsoft Microsoft · Big Tech · Hyderabad, TS, IN +1 · Security Research

Senior Threat Researcher for Microsoft's Defender Experts (DEX) Research team, focusing on AI-driven analytics and threat protection against advanced cyberattacks. The role involves researching emerging cloud threats, developing detection and response strategies using EDR and SIEM platforms (especially Microsoft Defender and Sentinel), and translating security data into actionable intelligence. The position requires extensive experience in cloud security, threat hunting, and mentoring other researchers, contributing to industry knowledge and Microsoft's security posture.

What you'd actually do

  1. Lead and execute advanced research on emerging endpoint, identity and cloud-based threats impacting Microsoft and third-party security products across heterogeneous cloud environments.
  2. Develop and refine detection and response strategies leveraging major EDR and SIEM platforms, with a strong emphasis on Microsoft Defender and Sentinel, to provide comprehensive threat coverage and response capabilities.
  3. Collaborate with internal and external security teams to design and implement scalable, innovative solutions for multi-cloud threat intelligence, detection, mitigation and response.
  4. Translate complex raw security data into actionable intelligence that enhances the effectiveness of cloud security operations for a global customer base.
  5. Mentor, guide, and drive best practices among researchers and detection engineers on advanced threat hunting and incident response across diverse SIEM ecosystems.

Skills

Required

  • 8+ years of experience in security research, detection engineering, threat lifecycle, cloud security in large-scale in complex cloud environments, as well as disciplines related to managed services for EDR and SIEM platforms.
  • Proven ability to lead and execute advanced research on emerging cloud-based threats affecting both Microsoft and third-party security products across heterogeneous cloud environments.
  • Demonstrated expertise in developing and refining detection and response strategies leveraging major EDR and SIEM platforms, with a strong emphasis on Microsoft Defender and Sentinel, to provide comprehensive threat coverage and response capabilities.
  • Extensive hands-on experience with cloud platforms—including, but not limited to, Azure—as well as a deep understanding of multi-cloud security challenges and solutions.
  • Strong practical experience identifying, analyzing, and mitigating real-world cyber threats in complex cloud environments.
  • Proven ability to work independently and deliver complete solutions.
  • Demonstrated capability to effectively articulate technical insights and influence multidisciplinary teams.

Nice to have

  • AI-driven analytics

What the JD emphasized

  • advanced cyberattacks
  • emerging cloud threats
  • multi-cloud threat intelligence
  • advanced threat hunting