Threat Intelligence Analyst – Endpoint – null

Líder e Gestão


Título: Threat Intelligence Analyst – Endpoint

Cidade/Estado: null / São Paulo


Are you interested in working on the cutting edge of enterprise security products? Do you want to combat evolving, advanced security threats? Do you want to help shape intelligence and analytics systems powering one of the most advanced security products Microsoft offers today? 

Microsoft 365 Defender (M365D) is the unified suite that enables Microsoft’s enterprise customers to detect, investigate, understand, and respond to advanced threats on their networks via a combination of behavioral sensors, cloud security analytics, and threat intelligence.

Our team’s mission is to prepare and protect Microsoft 365 (M365) customers by correlating product signals with curated intelligence insights and understanding of the emerging threat landscape.

We have an exciting and unique charter to work with threats that span targeted and commodity attacks across a variety of platforms via behaviors with a focus on providing Actionable Threat Intelligence to empower people and organizations across the world to be resilient against current and future cyberattacks. You’ll be part of a team of world class security experts from diverse technical backgrounds including threat hunting, threat intelligence, malware analysis, and security incident response – we value and seek diversity, so bring your unique self and skills to make us a better team. We deliver security research in the form of an intelligence service that ships continuously, and contributes directly to security protections that measurably protect people across the planet every day. 




In this role, you will work with partners across Microsoft to innovate new approaches for detecting and tracking threats, adversaries, techniques, tools, and infrastructure in a rapidly evolving and cloud focused threat landscape. You will use threat research and data science to not only enhance our optics and capability but also hunt for real cyber threats while producing intelligence reports and analysis for cyber security stakeholders across Microsoft, our external partners, and our customers. 


Required Qualifications

  • 3+ years of professional experience in either Threat Intelligence, Incident Response, IT Security, malware analysis, offensive security or tracking cyber threats with a demonstrated ability to leverage intelligence on attacker methodology, tools, and infrastructure to improve security posture 
  • Preferred Skillsets and Experience

  • Excellent written and verbal communication skills with an eye for detail and for simplifying the complex
  • In-depth security research experience with long running campaigns or attacks, with demonstrated security report or blog publication
  • Demonstrated knowledge of attacker tradecraft
  • Experience tracking or emulating adversaries and investigations that span on-premise and cloud-based compromises, including investigations into cloud-based email and infrastructure
  • Experience working with extremely large data sets using tools and scripting languages like SQL, Python, Splunk, KQL, Jupyter Notebooks, and Power BI
  • Demonstrated capability to analyze and coherently present and prioritize complex threat intelligence information
  • Ability to utilize data on attacker behavior uptake and global impact to prioritize security detection and remediation tasks
  • Deep and practical knowledge on one or more areas: Phishing and email security, Operating Systems, Cloud Platforms, network infrastructure/protocols, and/or Identity
  • Functional understanding of common threat analysis models such as the Diamond Model, Cyber Kill Chain, and MITRE ATT&CK and experience using them to track attacks
  • Previous experience working in a security company or security product is a plus.


    1) Informamos que os conteúdos das vagas são de responsabilidade dos anunciantes, e não temos maiores informações que não estas já informadas.


    2) Somos apenas um canal para veicular o mesmo.


    3) Não fazemos qualquer tipo de cobrança e não aceite qualquer tipo de cobrança das empresas.


    4) NÃO FORNEÇA DADOS SEUS ALÉM DO QUE CONSTA NO CURRICULO, e se houver qualquer suspeita de crime ou engodo por parte do empregador, NÃO COMPAREÇA NA ENTREVISTA E NEM FORNEÇA DADOS SEUS ALÉM DO QUE CONSTA NO CURRICULO até que você tenha informações que deixem você em segurança. Favor nos comunicar para removermos a vaga do portal e podermos tomar todas as medidas


    Para se candidatar a esta vaga visite

    Posts relacionados

    Jefe de Proyecto – Desarrollo – Cristália

    Equipe Líder & Gestão

    Sommelier – Torres – RS

    Consultor de Gestão de Risco / Sr. Technical Consultant Risk – São Paulo

    Equipe Líder & Gestão