Work in Washington Veterans Jobs

Job Information

Microsoft Corporation Principal Threat Intelligence Lead in Redmond, Washington

The security threat landscape is ever changing. It is what drives security professionals and frustrates those defenders that are charged to protect computing systems. We are looking for a Threat Intelligence Lead that is excited about helping customers understand the threat landscape, frame the threats in terms of risk, and grow an analyst team in delivering this mission. Help our customers see clearly the threats that matter most and relate that to their organization.

In this role, you will lead, coach, mentor, and grow a team of world class security experts from diverse technical backgrounds to deliver security research in the form of an intelligence service that ships continuously and contributes directly to security protections that measurably protect people across the planet every day. Our team’s mission is to prepare and protect Microsoft 365 Defender (M365D) customers by correlating product signals with curated intelligence insights and understanding of the emerging threat landscape. Your future team is filled with people who are deeply passionate about reducing the effectiveness of cyber adversary attacks. You will work with partners across Microsoft to continue innovating our intelligence practice and lead the team in customer obsession around delivery of actionable threat intelligence and insights. Your work will not only protect customers by delivery of threat intelligence, but also via products included in the Microsoft Defender suite. We are an industry leading threat research lab that does in-depth research with threats and exploits to help keep our customers safe.

We are the Security, Compliance, and Management (SCM) team; we are committed to defending Microsoft customers from cyber-attacks as well as providing sophisticated tooling for securing enterprise data. Our mission is to help protect customers with truly innovative proactive protection, advise customers on emerging trends, and engage in valuable partnerships.

As the research organization within SCM, it’s our job to stay one step ahead of malicious adversaries and predict the threats of the future. We work with partners across Microsoft to innovate new approaches for detecting and tracking threats, attacker techniques, their tools and infrastructure.

We are always learning. Insatiably curious. We lean into uncertainty, take risks, and learn quickly from our mistakes. We build on each other’s ideas, because we are better together. We are motivated every day to empower others to do and achieve more through our technology and innovation. Together we make a difference for all of our customers, from end-users to Fortune 50 enterprises.

Our team has people from a wide variety of backgrounds, previous work histories, and life experiences, and we are eager to maintain and grow that diversity. Our diversity of backgrounds and experiences enables us to create innovate solutions for our customers. Our culture is collaborative and customer focused. This role leads that culture and mission.

What we build:

We build innovative security and data compliance products. Our security products are brought together in the Microsoft 365 Defender suite ( . Defenderenables Microsoft’s enterprise customers to detect, investigate,understand,and respond to advanced threats on their networks via a combination of behavioral sensors, cloud security analytics,and threat intelligence. As the research team, our insights and detections are what feed the protections across that suite.

How you can help:

Managing both threats and people is a big challenge and one that is important to success of our mission. As a people manager you first priority is people. You will be part of an organization with decades of experiences across the breadth of Microsoft offerings. We learn and train together to get the best outcome for the customers. Help them navigate through the complex threat landscape and frame the threats is a big part of the job. Bring your passion for people and security to help build and maintain this high performing team.


The main responsibilities include but not limited to:

  • Lead theEndpoint ResearchThreatIntelligence team which protects customers directlythrough our Microsoft 365 Defender product suite

  • Grow, nurture, and model a team of diverse threat analysts to succeed in this dynamic environment

  • Be a champion for customer experience and improving their overall security posture

  • Investigate, analyze, and learn from security researchers, attackers, and real incidents to develop durable detection solution/strategies across the kill-chain or product/OS enhancements

  • Work cross-functionally with engineering, marketing, and business leaders to innovate and deliver security intelligence offeringsata global scale

  • Work directly with senior leaders of our customers’ security organizations as design partners on new innovations, as well as to ensure excellent customer satisfaction with our products


  • 8+ years of professional experience in either Incident Response, malware analysis, security product development, offensive security, or tracking cyber threats with a demonstrated ability to leverage intelligence on attacker methodology, tools, and infrastructure to improve security posture

  • 3+ years of people management or formal mentoring

  • A strong record of accomplishment of delivering results despite ambiguity, attention to detail, and the ability to collaborate across a large organization, influencing many functions and teams

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form ( .

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.