Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions.
The Microsoft Security organization accelerates Microsofts mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.
In this role, youll research and build defenses across AI systems, agentic protocols, Identity platforms, and SaaS applications. One day you might analyze a new class of AI prompt injection attacks or Agents abuse, the next youll be hunting through data or creating novel protection mechanisms for them. Youll work closely with product teams to turn research prototypes into real security features.
Join our threat protection research team and be part of a team who contributes to Microsofts most advanced and innovative security solutions. Our mission is to help everyone to counter cyber threats by strengthening their security capabilities across their entire environment, including Identities, Agentic AI systems, Cloud and Applications.
Responsibilities
Conduct in-depth analysis and research on cloud environments and AI tools to identify threats, vulnerabilities, and potential risks.
Investigate, analyze, and learn from security researchers, attackers, and real incidents to develop durable detection strategies across the entire kill-chain.
Collaborate with multiple product and engineering teams to design the next iteration of sensors, implement detection ideas and validate their effectiveness using a data-driven approach.
Provide cybersecurity expertise as needed during security escalations and incidents to help protect Microsoft and our customers
Requirements: 3+ years of hands-on experience in security research.
BSc. or M.Sc. in Computer Science, Software Engineering, or relevant practical experience (e.g. service in elite technology unit in IDF).
Code fluency in either C#, Python or Rust.
A drive to tackle hard problems with level of ambiguity.
knowledge of the security threat landscape, with experience in the modern attacker kill chain and MITRE ATT&CKespecially in cloud, application, identity, and AI-related threat scenarios.
Team player open to ideas and enjoys working with others to achieve shared goals.
Familiarity with cloud environments, and hybrid cloud enterprise services
Preferred Qualifications:
Good hands-on knowledge of AI/LLM fundamentals and concepts, including technical aspects related to usage of AI/LLM in production systems and agentic frameworks.
Familiarity with OAuth and other identity protocols, as well as knowledge of the AI domain - especially MCP, A2A, and related technologies.
Industry recognized author of security research papers, blogs, or books.
Low-level/security knowledge of other operating systems.
.המשרה מיועדת לנשים ולגברים כאחד
