Senior Security Incident Response Specialist

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate.We are seeking a Senior Security Incident Response Specialist with experience in highly-regulated industries along with experience of privacy and compliance related incidents to join our dynamic team. This role is pivotal in assessing security alerts and incidents with a focus on privacy-related matters, including PCI (Payment Card Industry), PHI (Protected Health Information), and PII (Personally Identifiable Information). The ideal candidate will have the knowledge and ability to respond to privacy-related incidents, ensuring compliance with various regulatory standards, and will excel in leading incident responses with clear, thorough, and precise communications.Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.Responsibilities• Incident Assessment and Response:• Analyze security alerts and incidents, specifically identifying and assessing privacy-related risks and potential breaches involving PCI, PHI, and PII data.• Lead the response to privacy-related incidents, ensuring appropriate containment, eradication, and recovery efforts are executed.• Document and report on incident findings, providing actionable insights for improving security posture.• Compliance and Regulatory Oversight:• Ensure compliance with relevant laws and regulations, including but not limited to PCI DSS (Payment Card Industry Data Security Standard), HIPAA (Health Insurance Portability and Accountability Act), GDPR (General Data Protection Regulation), and other applicable privacy frameworks.• Maintain up-to-date knowledge of compliance requirements and industry best practices related to the handling and protection of sensitive data.• Collaborate with legal and compliance teams to align incident response processes with regulatory obligations.• Communication and Coordination:• Serve as the primary point of contact during privacy-related incidents, providing clear, accurate, and timely communication to stakeholders.• Prepare and deliver incident reports to senior leadership, legal, compliance, and other relevant teams.• Coordinate with other SOC (Security Operations Center) analysts, IT teams, and third-party vendors as necessary to ensure an effective response to incidents.• Continuous Improvement:• Participate in post-incident reviews and contribute to the development of playbooks and standard operating procedures (SOPs) for privacy-related incidents.• Identify gaps in security controls and make recommendations for improvements.• Conduct training and awareness sessions for SOC team members and other stakeholders on privacy-related topics.• Threat Intelligence and Monitoring:• Monitor threat intelligence feeds and other sources to identify emerging privacy threats and vulnerabilities.• Proactively hunt for indicators of compromise (IOCs) related to PCI, PHI, and PII within the environment.QualificationsRequired Qualification:• Bachelor's Degree in Statistics, Mathematics, Computer Science or related field• OR 5+ years of experience in cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response with a focus on privacy and compliance.• Experience with privacy-related regulations and standards such as PCI DSS, HIPAA, GDPR, etc.• Experience with security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), and other security monitoring tools.• Knowledge of data protection techniques and best practices for securing sensitive information.Other Requirement• Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.Preferred Qualifications• Required communication skills, with the ability to clearly articulate complex issues to both technical and non-technical audiences.• Required leadership abilities, particularly in high-pressure situations.• Detail-oriented with problem-solving and analytical skills.Security Operations Engineering IC4 - The typical base pay range for this role across the U.S. is USD $117,200 - $229,200 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $153,600 - $250,200 per year.Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-payMicrosoft will accept applications for the role until September 17, 2024.#Privacy, #PCI, #PHI, #Incident Response #MSFTSecurity #SHPE24MSFTMicrosoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.