Microsoft · 15 hours ago

Cyber Defense Operations Hub and Incident Command Leader

Redmond, WA

Full-time

Remote

Senior Level

$138K/yr - $267K/yr

7+ years exp

Maximize your interview chances

Data ManagementDeveloper Tools

Growth Opportunities

No H1B

Insider Connection @Microsoft

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Lead the operational and governance unit to optimize Incident Coordination and Communication capabilities across Microsoft’s Cyber Defense Operations.

Centralize and standardize governance to ensure streamlined, consistent processes to ensure the health and productivity of the Defense Operations ecosystem.

Develop and implement standardized procedures for coordinating large-scale adversary cybersecurity.

Enable continuous monitoring, analysis, and enhancement of cases and incidents across Defense Operations improve operational measures and response capabilities.

Collaborate with cross-functional teams to ensure that incident coordination and communication processes are scalable, efficient, and aligned with organizational goals.

Build strong partnerships across defense, engineering, governance, compliance and security teams to enable timely incident coordination.

Establish metrics and reporting to measure the effectiveness of incident coordination, identifying and addressing gaps or inefficiencies.

Establish metrics and reporting to measure the effectiveness of case handling and resolution across the Defense Operations organization.

Drive process improvements, best practices, and automation opportunities to enhance the methods by which incidents are coordinated and related information is communicated across the organization.

Ensure alignment with broader cybersecurity strategies, compliance requirements, and industry standards.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

CybersecurityIncident response lifecycleCrisis managementPeople managementCloud architectureOperational processes designStatistical analysisMicrosoft technologiesSecurity frameworksEnterprise environment experienceTechnical concepts distillationCollaboration skills

Required

7+ years of experience in cybersecurity, IT operations, or governance roles with a focus on cybersecurity incident response or crisis management processes.

OR Master's Degree in Statistics, Mathematics, Computer Science or related field.

3+ years people management experience.

Required understanding of the incident response lifecycle, including the processes and technologies that assist with incident response AND experience working in high scale, cloud architecture environments.

Ability to design and implement operational processes and standards along with analytical skills with the ability to synthesize multiple and complex threads and provide actionable directions to other team members.

Required communication and collaboration skills to drive alignment across multiple teams and stakeholders and to keep executives informed and aware of important topics.

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role.

This position requires verification of citizenship due to citizenship-based legal restrictions.