aicareerspace
Back to jobsJob overview

About the role

Senior Security Research - Security for AI - Microsoft Defender for CloudApps at Microsoft

Required Skills

pythonrustcai/llmcloud securityidentity protocolsmitre att&ckthreat huntingincident response

About the Role

This senior role focuses on researching and building security defenses for AI systems, cloud applications, and identity platforms. The researcher will analyze emerging threats like AI prompt injection, develop detection methods, and collaborate with product teams to implement security features. The position requires staying ahead of evolving attack trends in AI and cloud environments.

Key Responsibilities

  • Research and develop detection methods for new and advanced attack techniques
  • Stay up to date on the latest attack trends and build strong detections across the kill chain
  • Collaborate with product and engineering teams to design security products and implement detections
  • Collaborate with data science teams to drive ML based protections and identify gaps
  • Provide cybersecurity expertise during security escalations and incidents

Required Skills & Qualifications

Must Have:

  • BSc or M.Sc. in Computer Science, Software Engineering, or relevant practical experience
  • At least 6+ years of computer security industry experience with knowledge of adversary tradecraft, security operations, incident response, threat hunting
  • 3+ years of experience researching, prototyping, and driving engineering requirements for threat protection systems
  • Code fluency in either C, Python or Rust
  • Knowledge of the security threat landscape, with experience in the modern attacker kill chain and MITRE ATT&CK

Nice to Have:

  • Good hands-on knowledge of AI/LLM fundamentals and concepts, including technical aspects related to usage of AI/LLM in production systems and agentic frameworks
  • Familiarity with OAuth and other identity protocols, as well as knowledge of the AI domain - especially MCP, A2A, and related technologies
  • Industry recognized author of security research papers, blogs, or books
  • Low-level/security knowledge of other operating systems
  • Experience leading a project from start to finish - including idea, design, coding, testing, and ongoing maintenance
  • Familiarity with cloud environments, and hybrid cloud enterprise services

Benefits & Perks

  • Industry leading healthcare