Azure Security Incident Response Engineer

• Scope customer security incidents
• Understand and identify indicators of attack and indicators of compromise
• Analyze incident data from different threat analytics tools
• Communicate recommendations and guidance based on results of security incident analysis to the customer
• Coordinate a response to the security incident with other Microsoft security and consulting teams
• Develop, document, and implement runbooks, capabilities, and techniques for IR
• Perform security triage and analysis on endpoint, server and network infrastructure
• Collaborate with the security intelligence team by providing samples of malware from the customer s environment
• Perform activities necessary for immediate containment and short-term resolution of incidents
• Maintain current knowledge and understanding of the threat landscape, emerging security threats, and vulnerabilities