CrawlJobs Logo
Microsoft Corporation Logo Microsoft Corporation · IT - Software Development

Cybercrime investigator

Australia, Sydney · Job Posted May 14, 2026
Apply Position
Job Link Share

Job Description

Microsoft’s DCU is a global team of attorneys, investigators, and analysts committed to leading the fight against cybercrime to protect our customers and promote global trust in Microsoft. Through strategic partnerships with Microsoft’s unparalleled threat intelligence community, fraud and abuse teams, and engineering support, DCU develops and employs innovative legal and technical strategies to detect, disrupt, and deter cybercrime, cyber-enabled fraud and scams, and other online threats. DCU sits in Customer Security & Trust (CST) within Microsoft’s Corporate, External, and Legal Affairs (CELA). DCU takes affirmative action to proactively defend against online threats and actors. Since its inception, DCU has filed lawsuits against over 35 malware families, state-sponsored actors, and the developers of cybercrime tools and services (including Cybercrime-as-a-Service platforms). In this role you will investigate major cyber threats—including ransomware, malware, business email compromise (BEC), account takeovers, tech support fraud, and other online scams—while working alongside threat intelligence professionals, security engineers, and fraud investigators to build evidence against criminal and state-sponsored actors. As a DCU investigative expert, you will detect cybercrime, map malicious infrastructure, prevent misuse of Microsoft services, and help make the global online ecosystem safer.

Job Responsibility

  • Identify and analyze data sources to uncover cybercrime patterns and trends targeting our services and customers
  • Build proof-of-concept and prototype threat-hunting tools, automations, and new capabilities
  • Collaborate with security engineers and cross-company stakeholders to implement comprehensive investigative and enforcement strategies
  • Lead and support complex fraud investigations involving cyber-enabled financial crime, including online scams, business email compromise (BEC), payment fraud, account abuse, and related large-scale fraud activity
  • Conduct analysis on large, complex datasets to detect and investigate anomalies and develop actionable insights and strategies
  • Identify and map malicious technical infrastructure used to facilitate cybercrime
  • Work independently to detect, investigate, and understand new and emerging cybercrime attack vectors
  • Partner with DCU attorneys to develop legal strategies to disrupt and impact online criminal networks
  • Draft criminal referrals for law enforcement
  • Provide expert witness testimony in court filings and proceedings

Requirements

  • 5+ years experience in Compliance, Finance, Data-Analytics, Investigations, or related field OR equivalent experience
  • 5+ years experience in Compliance, Finance, Data-Analytics, Investigations, or related field OR equivalent experience
  • Proficient with Microsoft SQL Server, KQL, Python, and/or other scripting languages
  • Proficient knowledge of malware analysis, malware reverse engineering, and behavioral malware analysis
  • Demonstrated ability to author clear, accurate, and highly technical investigative reports that translate complex technical findings into actionable insights for non-technical audiences, including legal, executive, and law enforcement stakeholders

Nice to have

  • Bachelor's degree in business, Accounting, Criminal Justice, Law, International Relations or related field AND 12+ years experience in Compliance, Cyber Finance, Data-Analytics, Investigations, or related field OR equivalent experience
  • Industry certifications related to security and/or investigations (e.g., incident response, computer forensics)
  • Experience with sophisticated threat actor evidence, including familiarity with common Indicators of Compromise (IOCs), Indicators of Activity (IOAs), and Tools, Techniques, and Procedures (TTPs)
  • Extensive experience in attribution, creating threat groups, assessing linkages between established threat groups, and communicating attribution assessments to internal stakeholders
  • Experience leading or supporting complex fraud investigations, including large-scale online fraud, scams, business email compromise (BEC), payment fraud, account abuse, or related cyber-enabled financial crime
  • Proficiency with attacks on endpoints, cloud, network, and identity-based systems, along with strong investigative practices and communication skills
  • Published research (blogs, presentations, etc.) on new threat actor TTPs
  • Experience in cryptocurrency and blockchain investigation tools
  • Advanced skills in analyzing large datasets and developing effective investigative action plans
Microsoft Corporation - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cybercrime investigator

8 matching positions

Cybercrime Investigator

Microsoft’s Digital Crimes Unit (DCU) is hiring a Cybercrime Investigator to lea...
Location
Location
United States , Redmond
Salary
Salary:
96500.00 - 188400.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4+ years experience in compliance, finance, data-analytics, investigations, or related field OR equivalent experience
  • Citizenship & Citizenship Verification: This position requires verification of US citizenship due to citizenship-based legal restrictions
  • Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter
  • Bachelor's Degree in Business, Accounting, Criminal Justice, Law, International Relations or related field AND 8+ years experience in compliance, cyber, finance, data-analytics, investigations, or related field OR equivalent experience
  • 4+ years experience with the following skills and knowledge: Analytical tools such as: Microsoft SQL Server, I2 Analyst Notebook, Paterva Maltego, Kusto (Azure Data Explorer), Python, and other scripting languages
  • Certifications related to security and/or investigations in incident response and computer forensics
  • Malware analysis, malware reverse engineering, and behavioral malware analysis
  • Threat actor evidence, including familiarity with common Indicators of Compromise (IOCs), Indicators of Activity (IOAs), and Tools, Techniques, and Procedures (TTPs)
  • Supporting complex fraud investigations, including large scale online fraud, scams, business email compromise (BEC), payment fraud, account abuse, or related cyber-enabled financial crime
  • Authoring clear, accurate, highly technical investigative reports involving complex technical findings, with actionable insights for non-technical audiences
Job Responsibility
Job Responsibility
  • Identify and analyze data sources to uncover cybercrime patterns and trends targeting our services and customers
  • Building proof-of-concept and prototype threat hunting tools, automations, and new capabilities
  • Collaborate with security engineers and cross-company stakeholders to implement comprehensive investigative and enforcement strategies
  • Lead and support complex fraud investigations involving cyber‑enabled financial crime, including online scams, business email compromise (BEC), payment fraud, account abuse, and related large‑scale fraud activity
  • Conduct analysis on large, complex data sets to detect and investigate anomalies, develop actionable insights and strategies
  • Identify and map malicious technical infrastructure used to facilitate cybercrime
  • Work independently to detect, investigate, and understand new and emerging cybercrime attack vectors
  • Partner with DCU attorneys to develop legal strategies to disrupt and impact online criminal networks
  • Drafting criminal referrals for law enforcement
  • Provide expert witness testimony in court filings and proceedings
  • Fulltime
Read More
Arrow Right

Senior Manager, Cyber Threat Researcher, Cyber Intelligence (Remote Eligible)

The mission of Capital One’s Cyber Intelligence service is to leverage cyber thr...
Location
Location
United States , McLean; Richmond; New York; Plano; Chicago
Salary
Salary:
209000.00 - 286200.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 6 years of experience working in incident response, threat hunting, threat intelligence, forensics, or offensive security
  • At least 5 years of experience in conducting investigations or research into cyber-enabled fraud, cybercrime, or advanced persistent threats
  • At least 3 years of experience with cyber threat intelligence threat frameworks such as Lockheed Martin Cyber Kill Chain, Diamond Model, MITRE ATT&CK, ATLAS, Defense or Engage
  • At least 3 years of experience in programming or scripting with Python, Perl, PHP, PowerShell or SQL
Job Responsibility
Job Responsibility
  • Create mechanisms to "connects the dots" between different internal and external data sources in order to combine "signals" in data that automatically highlight cyber threats across advanced enterprise threat activities and fraud activity
  • Maintain industry-wide expertise of the current cyber threat landscape and attack vectors
  • Synthesize disparate sets of data from sources such as malware, cyber attack patterns, closed and open-source intelligence, and tokenized consumer flows to inform instrumentation, detections, and threat narratives such as storyboards
  • Build productive relationships with internal teams to contextualize, influence and inform Capital One's business units on emerging threats
  • Communicate investigative outcomes with technical architecture context and conclusions to a variety of audiences, including company senior leadership and business partners
What we offer
What we offer
  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits
  • Fulltime
Read More
Arrow Right

Cyber Security Engineer

Envision Innovative Solutions is a trusted technology and engineering partner de...
Location
Location
United States , Aberdeen Proving Ground
Salary
Salary:
Not provided
rivsol.com Logo
Riverstone Enterprise Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Cybersecurity including threat detection, vulnerability assessment/penetration testing, security controls, encryption technologies, network security monitoring, firewalls, intrusion detection/prevention systems (IDS/IPS), and SIEM tools
  • Knowledge of cybersecurity frameworks (e.g., NIST, RMF) and experience documenting and analyzing security incidents
Job Responsibility
Job Responsibility
  • Plans, develops, and implements proven high-tech solutions to increase security and defend against hacking, malware and ransomware, insider threats, and other types of cybercrimes
  • Oversees monitoring of computer networks, identifies security issues, and anticipates security breaches
  • Executes the installation and maintenance of security programs, plans, and software, including firewalls and data encryption programs
  • Assures protection of the organization's data and infrastructure by enabling the appropriate security controls
  • Investigates and analyzes security breaches and cyber security incidents to determine the source of the issues and assesses the damage caused
  • Documents all parts of security incidents or breaches
  • Performs assessments and penetration tests to identify network and system vulnerabilities, troubleshoots security and network problems, determines the best way to avoid them, and responds to system or network security breaches
  • Oversees security technology and audit or intrusion systems
  • Develops and handles secure network solutions to protect against advanced persistent threats
  • Keeps abreast of industry security trends and developments, as well as applicable government regulations
  • Fulltime
Read More
Arrow Right

Fraud Threat Intelligence Analyst

We are seeking a Fraud Threat Intelligence Analyst to join our growing team and ...
Location
Location
Salary
Salary:
Not provided
q6cyber.com Logo
Q6 Cyber
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 1–5 years of experience monitoring/researching underground fraud communities such as Telegram, markets, DarkWeb forums and other illicit platforms
  • Knowledgeable in underground financial crimes and fraud ecosystems (e.g., payment card fraud, check fraud and more)
  • You have a solid grasp of the current fraud landscape
  • You understand the mechanics of Check Fraud, Debit/Credit Card Abuse, and First-Party vs. Third-Party Fraud
  • You have a forensic mindset and enjoy digging into the data to find the truth
  • Strong interpersonal and teamwork skills, with the ability to work independently and meet individual objectives
  • Excellent verbal and written communication skills
  • Proactive and resourceful problem-solver with a strong investigative mindset
  • High interest in combating cybercrime and fraud
  • Positive, can-do attitude and willingness to learn
Job Responsibility
Job Responsibility
  • Monitor and analyze underground communities (e.g., DarkWeb marketplaces, forums, Telegram, and more) related to financial crimes, fraud and other illicit activities
  • Collect and synthesize intelligence on new and emerging fraud techniques, tools, services, leveraging both open-source and internal collection systems
  • Produce high-quality intelligence reports, briefings, and presentations tailored for clients
  • Track and assess fraud-related TTPs to support trend analysis, customer needs, and business objectives
  • Engage regularly with clients to deliver intelligence findings, provide context, and offer actionable recommendations
What we offer
What we offer
  • competitive compensation package and comprehensive benefits package
Read More
Arrow Right

Intelligence Intermediate Analyst

Are you looking for a career move that will place you in a global financial orga...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of relevant experience in cyber threat intelligence, security analysis, or a related field
  • Bachelor’s degree (or equivalent experience) required and advanced degrees are welcome- preferably in a STEM major, computer science, or cyber technology
  • Strong analytical and investigative skills with clear, concise communication abilities in English
  • Working knowledge in one or more of the following areas: Advanced Persistent Threat, Third Party Risks/Threats, Cybercrime, Extremist Groups and Cyber Terrorists, Hacktivism, Distributed Denial of Service attacks, Fraud, Malware, Mobile Threats
Job Responsibility
Job Responsibility
  • Analyze cyber threat alerts and intelligence reports to identify and assess risks to Citi
  • Monitor cyber threat actors and trends (e.g. APTs, fraud, hacktivism, malware)
  • Investigate and report on security incidents, breaches, and data threats
  • Create and use custom tools to support threat analysis and intelligence collection
  • Collaborate with internal teams and external partners, including law enforcement and industry peers
  • Prepare high-quality briefings and written intelligence products for leadership
  • Research new threat sources, technologies, and analytical methods
  • Support automation and innovation in intelligence workflows and tooling
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Senior Risk Functional Specialist

Payment Risk Operations is at the heart of what makes Airbnb a place where anyon...
Location
Location
United States
Salary
Salary:
82000.00 - 96000.00 USD / Year
airbnb.com Logo
Airbnb
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 3+ years professional experience in fraud, abuse, or cybercrime investigations
  • Minimum of 1+ years professional experience related to stored value risk (e.g. gift cards, coupons, credits, incentives)
  • Detail-oriented, highly analytical, and strong project management skills
  • Ability to understand opposing points of view on highly complex issues
  • Strong ability to gather information from various internal sources
  • Capacity to draw actionable insights from dashboards and reports
  • Risk policy creation and/or administration experience
  • Basic SQL
  • Experience with data visualization and business intelligence tools (e.g. Tableau, Superset)
  • CFE or equivalent certifications
Job Responsibility
Job Responsibility
  • Oversee operational procedures and escalations related to stored value payment products (e.g. gift cards)
  • Review performance metrics for business and vendor feedback
  • Work with operational stakeholders and cross-functional partners to enact change to improve products and processes
  • Apply Airbnb core values in all work
  • Protect community by reviewing and making exceptional decisions for platform exemptions
  • Own incident resolution of risky pay-in procedures from escalation to closure
  • Navigate complex operational issues by partnering with Legal, Public Affairs, and other teams to respond to regulatory inquiries
  • Tell the story through data by drafting business requirements and concept briefs
What we offer
What we offer
  • Bonus
  • Equity
  • Benefits
  • Employee Travel Credits
  • Fulltime
Read More
Arrow Right

Senior Investigator

Microsoft’s Digital Crimes Unit (DCU) has an immediate opening for a highly qual...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree & demonstrable experience in cyber investigations, threat intelligence, or cyber defense operations
  • Willingness to provide expert witness testimony in court filings and proceedings that will be made public
  • Proficient with Microsoft SQL Server, KQL, Python, and/or other scripting languages
  • Proficient knowledge of malware analysis, malware reverse engineering, and behavioral malware analysis
  • Demonstrated ability to author clear, accurate, and highly technical investigative reports that translate complex technical findings into actionable insights for non-technical audiences, including legal, executive, and law enforcement stakeholders
  • Ability to meet Microsoft, customer, and/or government security screening requirements for this role (including specialized security screenings)
  • Microsoft Cloud Background Check: required upon hire/transfer and every two years thereafter
  • Collaborative, team-first mindset
  • Proficient written and verbal communication skills, including the ability to translate complex technical findings for a broad range of stakeholders (e.g., law enforcement, legal counsel, and executives)
Job Responsibility
Job Responsibility
  • Identify and analyze data sources to uncover cybercrime patterns and trends targeting our services and customers
  • Building proof-of-concept and prototype threat hunting tools, automations, and new capabilities
  • Collaborate with security engineers and cross-company stakeholders to implement comprehensive investigative and enforcement strategies
  • Lead and support complex fraud investigations involving cyber‑enabled financial crime, including online scams, business email compromise (BEC), payment fraud, account abuse, and related large‑scale fraud activity
  • Conduct analysis on large, complex data sets to detect and investigate anomalies, develop actionable insights and strategies
  • Identify and map malicious technical infrastructure used to facilitate cybercrime
  • Work independently to detect, investigate, and understand new and emerging cybercrime attack vectors
  • Partner with DCU attorneys to develop legal strategies to disrupt and impact online criminal networks
  • Drafting criminal referrals for law enforcement
  • Provide expert witness testimony in court filings and proceedings
  • Fulltime
Read More
Arrow Right

Law Enforcement Engagement Manager - EMEA

The Global Law Enforcement Engagement Regional Lead for Europe, the Middle East,...
Location
Location
Ireland
Salary
Salary:
90000.00 - 115000.00 EUR / Year
airbnb.com Logo
Airbnb
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience as a law enforcement or domestic security service officer with demonstrated expertise in investigating and preventing serious and organized crime, acts of violence, and threats to public safety
  • Law enforcement expertise and experience in conducting complex investigations involving criminal acts and/or national security matters including but not limited to violent crime, organized crime (e.g., human trafficking, drug trafficking, financial fraud, etc.), child sexual exploitation, terrorism/violent extremism, and cybercrime
  • Professional work experience with law enforcement agencies and organizations located and/or operating in the European Union
  • Experience working collaboratively with law enforcement managing/addressing law enforcement requests for information, production/judicial orders, emergency disclosure requests, Mutual Legal Assistant Treaty (MLAT) requests, and emergencies-in-progress from a range of varied and legal systems common to EMEA
  • Professional working knowledge of legal frameworks associated with individual data privacy rights, particularly the European Union’s General Data Protection Regulation (GDPR)
  • Law enforcement training, expertise, and experience in crisis planning and management and critical incident response
  • Ability to work effectively in a global environment, including an understanding of cultural differences
  • Demonstrated maintenance of a highly developed network of resources, cultivated through years of building relationships with global law enforcement and security services, ensuring liaison effectiveness in varied regions with complex geopolitical, cultural, and business environments
  • Excellent oral and written communication and presentation skills, including an ability to deliver clear and concise executive presentations
  • Excellent organizational and analytical skills, and a demonstrated record of cross-functional collaboration
Job Responsibility
Job Responsibility
  • Lead, develop, and manage Airbnb efforts to cultivate trusted and reliable relationships with law enforcement partners in the EMEA region to safeguard the Airbnb community
  • Lead and promote effective information exchange and collaboration with regional law enforcement on criminal threat and life safety matters that endanger the Airbnb community
  • Lead, develop, and maintain effective working relationships with law enforcement and government authorities in EMEA by building partnerships and coalitions through liaison with international law enforcement organizations (e.g., UNODC, INTERPOL, Europol, AFRIPOL, AIMC, IACP, etc.)
  • Lead regional and contribute to global efforts to develop programs, events, and presentations to educate key external bilateral and multilateral partner agencies and entities to promote Airbnb’s trust and safety capabilities and priorities
  • Provide expertise and conduct cross-functional collaboration with internal teams and fellow Airbnb stakeholders on law enforcement engagement matters in EMEA
  • Lead and/or contribute to law enforcement communication and correspondence during crisis response and/or high-risk law enforcement operations in EMEA
  • Identify market segments and external partnership opportunities to improve Airbnb law enforcement liaison, communication, and liaison in EMEA
  • Investigate and overcome barriers to successful, collaborative law enforcement operations and data exchange in EMEA
  • Collaborate with Airbnb legal, community support, and public policy teams to achieve effective engagement with law enforcement authorities, regulators, and legislators on online safety, security, and law enforcement issues in EMEA
  • Develop, analyze, and communicate data, metrics, and performance measures to inform and evaluate the effectiveness of law enforcement engagement in EMEA
What we offer
What we offer
  • bonus
  • equity
  • benefits
  • Employee Travel Credits
  • Fulltime
Read More
Arrow Right