לוח משרות דרושים מומחה אבטחת מידע / סייבר

As a Senior Security Researcher, you will lead proactive vulnerability research, developing novel proofs-of-concept and exploit chains that emulate real-world attackers. You will discover vulnerabilities across AI systems, validate exploitability, and work closely with engineering and product teams to drive remediation. The vulnerabilities you will find will impact hundreds of millions of users!



Responsibilities
Become a founding member of the AIAL group as part of Microsoft Red Team. Help shape the team culture and practices.
Research and discover zero-day vulnerabilities in AI applications, models, and AI service ecosystems. Work closely with Red Team operators and engineering teams to address findings and strengthen resilience of AI-driven systems.
Analyze a wide array of data sources to identify potential security weaknesses and breach points within Microsofts AI infrastructure.

Develop tools and techniques to scale and accelerate adversary emulation and vulnerability discovery.

Advocate for security change across the company through building partnerships and clearly communicating impact of risks.

We are searching for exceptional individuals with a profound passion for security and Cloud technologies. If you are deeply committed to unraveling intricate challenges, harbor a keen fascination for vulnerability research, and strongly desire to contribute to performing cutting-edge security research. We invite you to unite with us on our mission. By doing so, you will play a pivotal role in safeguarding countless users across the global landscape. Your expertise and dedication will be instrumental in fortifying our collective digital defenses.



In this role, you will lead vulnerability research engagements in Microsoft Specialized Clouds organization, play a pivotal role in identifying and addressing potential security vulnerabilities within Microsoft's cloud and edge services, ensuring the highest levels of security for our customers and their data.



Responsibilities
Research and discover zero-day vulnerabilities in cloud and on-prem environments and associated technologies. Develop and implement proof-of-concept exploits to demonstrate potential risks and work closely with engineering teams to address findings.
Design mitigations at scale for found vulnerabilities and work with engineering teams to integrate these mitigations.
Conduct in-depth threat modeling exercises to identify security risks and vulnerabilities in Microsoft's Specialized Cloud infrastructure. Collaborate with cross-functional teams to assess the impact of identified threats and propose mitigation strategies.
Design and execute sophisticated penetration tests against Microsoft's cloud services, simulating real-world attack scenarios. Provide detailed reports outlining vulnerabilities, exploitation techniques, and recommended remediation steps.
Create and maintain cutting-edge vulnerability discovery, exploitation, and penetration testing tools. Stay abreast of the latest security research and integrate innovative techniques into the offensive security toolkit.
Collaborate with internal security teams to enhance overall security posture, including incident response and defensive security. Participate in knowledge-sharing initiatives, mentor junior team members, and contribute to the security community.

As a Security Technical Specialist, you will be a senior technical sales leader and trusted customer advisor, working with cutting-edge security technologies such as Microsoft Defender for XDR and Sentinel. You will lead a v-team of other internal, partner and consulting resources to help map Microsoft solutions to customer security challenges and priorities, demonstrate and prove our solutions, and win the technical decision enabling the team to achieve/exceed quarterly and annual revenue targets. You will help solve complex security challenges for our customers, enabling them to help modernize their security architecture and posture



Responsibilities
Primary technical point of contact for potential customers during the sales process, owing and driving technical win for security opportunities
Deep technical understanding of cloud security architectures, solutions/technologies including Microsoft M365 Defender, Defender for cloud and Sentinel and expertise in extended detection and response (XDR), zero trust and cloud security solutions and architectures
Remediate blockers; leads and ensures technical wins for Microsoft Security and adjacent technologies. Engages with and reaches out to customers proactively and independently; builds credibility with customers as a trusted advisor for Microsoft Security; and searches for and uses Microsoft Security customer references; and facilitates handoff to customer success for post sales deployment.
Develop strategies and recommendations to improve the client's security posture, shapes technical win plan and tailors Microsoft messaging to audience for security opportunities. Enhances team capabilities for extended detection and response (XDR), zero trust and cloud security and develops differentiated compete strategies for Microsoft Security for assigned customers.
Lead technical presentations, demonstrations, workshops, architecture design sessions, explain, demonstrate, and architect the solution to help solve customer security challenges and priorities.
Drives cross-workload support for Microsoft solutions for security. Leverages insights and coaches' teams to align new or changing technology to customer security needs.
Responsible for engaging with other teams within and outside the organization throughout the sales cycle. Engaging partners in sell-with scenarios and supporting their technical capabilities is key to scaling solution delivery.

What Youll Do: Join a team of curious, collaborative, and impact-driven security researchers. In this role, youll combine technical depth with creative problem-solving to protect millions of users and shape the future of identity security.

Analyze and understand the internals of authentication/network protocols and be able to independently reproduce identity-based attacks for investigation, study and research purposes.
Become a subject matter expert of investigation, collection, analysis and forensic of identity logs, including deep understanding of current trends and landscape of identity-based attacks and exploits
Collaborate with multiple product and engineering teams to design the next iteration of sensors, implement detection ideas and validate their effectiveness using a data-driven approach.
Work together with the different engineering teams to deliver the prototype and code to support the research findings.
Provide cybersecurity expertise as needed during security escalations and incidents to help protect Microsoft and our customers.

What Youll Do: Join a team of curious, collaborative, and impact-driven security researchers. In this role, youll combine technical depth with creative problem-solving to protect millions of users and shape the future of identity security.

Analyze and understand the internals of authentication/network protocols and be able to independently reproduce identity-based attacks for investigation, study and research purposes.
Become a subject matter expert of investigation, collection, analysis and forensic of identity logs, including deep understanding of current trends and landscape of identity-based attacks and exploits
Collaborate with multiple product and engineering teams to design the next iteration of sensors, implement detection ideas and validate their effectiveness using a data-driven approach.
Work together with the different engineering teams to deliver the prototype and code to support the research findings.
Provide cybersecurity expertise as needed during security escalations and incidents to help protect Microsoft and our customers.