Overview
Come and be part of a dynamic team focused on securing cutting-edge AI and cloud technologies in a rapidly evolving threat landscape. We are leading new initiatives and research projects across AI Security, Identity Protection, and SaaS Defense, and this role offers a unique opportunity to help define the rules of the game. AI is transforming the way we interact with computers and machines and defining new cybersecurity problems and opportunities - we are looking for a researcher who can help us stay ahead of the curve. In this role, you’ll research and build defenses across AI systems, agentic protocols, Identity platforms, and SaaS applications. One day you might analyze a new class of AI prompt injection attacks or Agents abuse, the next you’ll be hunting through data or creating novel protection mechanisms for them. You’ll work closely with product teams to turn research prototypes into real security features. Join our threat protection research team and be part of a team who contributes to Microsoft’s most advanced and innovative security solutions.

Responsibilities
Responsibilities – - - Research and develop detection methods for new and advanced attack techniques - from exploits to implants. Build end-to-end PoCs, from offensive testing to scalable detection, across all our cloud and identity platforms. - Stay up to date on the latest attack trends and build strong detections across the kill chain - covering agentic AI & LLM threats, cloud and identity-based attacks. - Collaborate with multiple product and engineering teams to design the next iteration of security products, implement detection ideas and validate their effectiveness using a data-driven approach. - Collaborate with data science teams to drive ML based protections, understand, and identify detection gaps, capabilities, assumptions, and improvements - Provide cybersecurity expertise as needed during security escalations and incidents to help protect Microsoft and our customers

Qualifications

• B.Sc. or M.Sc. in Computer Science, Software Engineering, or equivalent practical experience
  (e.g., service in an elite technology unit in the IDF)

• 6+ years of experience in the computer security industry, with strong knowledge of adversary tradecraft, security operations, incident response, threat hunting, and emerging threats targeting modern cloud environments

• 3+ years of experience researching, prototyping, and driving engineering requirements for threat protection systems

• Code fluency in C, Python, or Rust

• Deep understanding of the security threat landscape, including the modern attacker kill chain and MITRE ATT&CK, particularly in cloud, application, identity, and AI-related threat scenarios

#MondaySecurity
#MTPIL26
MTPIL26
#ILDCER26

This position will be open for a minimum of 5 days, with applications accepted on an ongoing basis until the position is filled.