Senior Fusion Analyst

Microsoft Security’s Customer Ready Intelligence analysis team is recruiting experienced cyber threat intelligence professionals with experience and passion producing finished threat intelligence content. The Customer Ready Intelligence analysis team focuses on collecting and curating threat intelligence context and then producing and publishing customer-ready threat intelligence content to customers and partner teams across Microsoft. This role will work closely with threat hunters from the Microsoft Threat Intelligence Center (MSTIC), incident responders from the Detection and Response Team (DART), and other partner teams to produce timely threat intelligence deliverables to support customers.

Responsibilities

As a Senior Fusion analyst, you will synthesize analysis on adversary capabilities, techniques, and targeting from multiple data sources into customer ready content to support incident response investigations, proactive engagements, and partner team deliverables. You will act as a trusted advisor to incident investigators and customers identifying and communicating threats effectively to drive clarity and earn customer trust. You will work with internal stakeholders to ensure intelligence content integrates with various product and service groups within Microsoft.

This role will work as part of a collaborative team and will be responsible for:

• Creating customer reports and presentations incorporating threat actor attribution, threat detection and hunting guidance, and remediation recommendations.
• Providing intelligence-led recommendations to improve cybersecurity posture going forward.
• Translating customer intelligence requirements into custom intelligence content.

Qualifications

Required Qualifications:

•  4+ years producing tactical and strategic finished threat intelligence deliverables for customers including written content and presentations on targeted threat actors, campaigns, and tactics, techniques, and procedures
• Technical aptitude to translate raw technical analysis into polished deliverables independently
• Expert at creating and presenting threat intelligence tailored for a variety of audiences including analysts, responders, and senior executives
• Experience supporting analysis and content delivery related to incident response investigations
• Proven track record of collaborating across teams with threat hunters, analysts, incident responders, and customer representatives
• Experience creating and presenting polished technical deliverables in a fast-paced environment
• Extensive knowledge of adversary groups, Diamond Model, and MITRE ATT&CK techniques

Preferred Qualifications

• Knowledge of forensic and incident response processes and terminology
• Expertise in providing dedicated finished intelligence support to customers
• Excellent oral and written communication skills
• Proven knowledge of security fundamentals across Microsoft platforms (Client, Server, Cloud)
• Experience with Microsoft Azure and/or Office 365 platforms

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.