Crisis Response Incident Handler

Last updated 3 days ago
Job Type:Full Time

Does protecting over 1 billion customers and making the cyber world a better place sound exciting? Do you have what it takes to be part of the top security response team in the world? This role may be your opportunity. Microsoft Security Response Center (MSRC) is looking for motivated and experienced security professionals to join us. There are few places in Microsoft that have a direct impact on as many customers as our Crisis Response Team where you will coordinate Microsoft’s response to the most critical security issues facing the company and our customers. When you read in the news about hackers; when the integrity of our products is at stake; or when a zero-day exploit is being used to attack customers, the Crisis Response team works across Microsoft to rapidly defend Microsoft and its customers against these threats.


The opportunity for leadership that accompanies this individual contributor position is unique. You will regularly connect with the most senior leaders at Microsoft up to and including the CEO. You will manage and lead all parties involved in security incidents, make key risk decisions, and inform executive leadership in an overall effort to help protect customers, make our products and services more secure, and protect our brands.

You will regularly make high-stakes decisions with executive visibility and company-wide impact on extremely short timelines, often with limited information. Excellent communications, strong interpersonal awareness, attention to detail, and the ability to foster cooperation and trust across teams are key to success in this role. Strong program management skills for organizing information, breaking down complex problems, and working effectively in situations involving uncertainty are must-haves. A solid understanding of Microsoft organizations, technologies and products, especially as they relate to security, will ensure a quick start, but is not essential.


Desired Qualifications:

  • 4+ years of experience in information security incident handling/security operations or application security and vulnerability response
  • An ability to work well under pressure while maintaining a professional image and approach.
  • The ability to communicate complex and technical issues to diverse audiences, orally and in-writing, in an easily understood, authoritative, and actionable manner.
  • One or more of the following would be an advantage:

oExperience with large scale and complex incidents of all types, including APT, DDoS, malicious insider, web and mobile applications, and data exfiltration.

oStrong foundational knowledge in information technology, including cloud services, hardware, networking, architecture, protocols, file systems, and operating systems.

Background Check Requirements:

Applicants must have the ability to meet Microsoft, customer, and/or government security screening requirements including:

  • Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.