Investigative Data Scientist

Organization Summary:
If you love the pursuit of excellence and are inspired by the challenges that come through driving innovations that impact how the world lives, works and plays, then we invite you to learn more about Microsoft Business Operations (MBO) – and the value we deliver across Microsoft and to our customers and partners. We offer unique opportunities to work on interesting global projects in an environment that appreciates diversity, focuses on talent development and recognizes and rewards great work.

We make doing business with Microsoft easy and we have fun while doing it!

As a member of MBO 3rd Party Compliance Investigations, a division of 3rd Party Compliance Operations, you would be responsible for identifying, collating, and analyzing data to determine the scale, and impact, of 3rd party entities that may have violated Microsoft, or Governmental compliance requirements, regulations, or laws, and may have gained access to Microsoft without proper approval, and based on our analysis proceed with the appropriate remediation actions.

Position Description:
We invite you to explore the 3rd Party Compliance Investigations (3PCI) Investigative Data Scientist position at Microsoft Charlotte.

As a 3PCI Investigator, you will have a great opportunity to shape how we proactively and reactively address emerging compliance threats to Microsoft. You will have the opportunity to help identify, scope and remediate non-compliance activity across a wide range of programs and channels. We are looking to expand our investigations team to provide greater coverage with individuals that like to solve complex problems using analytical tools.

Responsibilities

You will be responsible for analyzing data from multiple sources within Microsoft. You will use that data to identify trends, exploits, and scope of non-compliant activity. You will contribute to pattern recognition algorithms, both operational and ad-hoc basis. You will use that information to work across virtual teams to raise awareness of the issue, scope, and remediation phases. You will regularly track activity and report out activity and progress related to various cases. A core portion of this position is identifying how non-compliant actions by 3rd parties is accomplished providing the modus operandi to appropriate resources in 3PCI, Product teams, and the Microsoft Legal Department. You will also contribute to help evaluate long term controls which will help improve systems and tools.

Identify and scope threats, and non-compliant actions by 3rd parties engaged with Microsoft.

Both lead and participate in virtual teams in Investigation tasks, working in a team across geographic distances.

Provide visibility to 3CPI and Stakeholders regarding threats and attacks across multiple business channels.

Informs both current business decisions, and decisions projected in advance, by identifying and interpreting complex processes and patterns.

Drive process and capability improvements.

With input from senior management, defines and manages strategic implementation for both new and improved processes for Microsoft and vendor capabilities.

Results are demonstrated by meeting relevant success metrics (for example, time to detection of compromise, mitigation velocity, and cross-functional process efficiency).

Lead investigations efforts including identification of leads, review data and patterns analysis for anomalies, identification of cases & research, and management for all aspects of the case.

Identification of perpetration methods, including root-cause, and identification of perpetrators.

Drive effective investigation process and establish proper documentation of investigative process.

Proper handling of evidence in accordance with legal standards and processes.

Identification of non-compliance including proper referral of cases for remediation.

Support incident response process and collaboration (including, but not limited to Corporate, External, & Legal Affairs (CELA) and Office of Legal Compliance (OLC)).

Partner with CELA attorneys and channel leaders to determine and take appropriate legal actions.

Support Risk Managers’ controls implementations efforts as part of investigation/remediation efforts.

Support Investigations automation efforts towards achieving higher efficiency.

Develop and implement long term process improvements and drive investigative excellence within the team.

Deep analytic research into root cause and modus operandi of attack vectors.

Using analytic results identify perpetrator and use data to build case files where appropriate.

Drive issues to resolution by partnering with other 3rd Party Compliance Operations team members and other Microsoft groups to facilitate investigation and reduction of the issue to the root cause.

Qualifications

Basic Qualifications:
Bachelor’s degree in Computer Science, Criminal Justice, Mathematics, Statistics, Data Science or related technical field, or equivalent business experience.

A minimum of 5 years of experience analyzing big data and modelling data.

Formulates problems to inform multiple dimensions of business/customer questions using algorithms and multiple data sources.

Uses data-exploration techniques to discover new or previously unasked questions.

Extends existing data sources by adding attributes, mitigating data limitations, and using existing sources in ways that significantly improve results.

Identifies and applies the appropriate tools to efficiently collect, clean, and prepare massive volumes of data for analysis.

Coaches others on data exploration and statistical data analysis methods, and on how to correctly document the approach, analysis, and results.

Engages in the peer review process, role-models a willingness to accept feedback, and objectively takes advantage of opposing ideas to advance scientific inquiry.

Manages dependencies proactively and demonstrates an ability to resolve conflict.

Shares information across the team to the right audience proactively and with the appropriate level of detail and timeliness.

Has a sense of pride and personal accountability for the end-to-end product/service quality, completeness, and resulting customer experience.

Uses the product/service regularly to understand it thoroughly and discover ways to improve it.

Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Strong written & verbal communications skills.

High degree of curiosity and problem-solving skills.

Fully conversant in English verbally and in writing.

Preferred Qualifications:
Excellent attention to detail and organizational skills.

Experience with Microsoft SQL and other relational databases and In-depth understanding of sophisticated threat modelling.

Experience with Azure Enterprise Data Lake analysis and modeling tools (Synapse, Notebook, etc.).

Prior Investigation experience in Law Enforcement, Forensics Financial Auditor, and/or Cyber Security Investigator.

Highly developed analytical skills.

Excellent interpersonal and group dynamic skills.

Demonstrated proficiency of basic program management.

Excellent presentation skills.

Secondary language skills in Chinese, Spanish and/or Russian an added benefit.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.