About

• Overview
• The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world.
• The Regulated Industries security organization at Microsoft secures some of our most sensitive products and services. With services supporting users across healthcare, legal, human resources, and other areas our team protects a wide range of applications with distinct threat profiles and regulatory obligations. Our security engineering team is looking for an experienced Senior Security Engineer who can build scalable, durable software systems that provide the backbone for the development of new tools and applications that help hunt and detect threats in our environments.
• This role is ideal for candidates who are excited to learn new domains, prototype Proof-of-Concept (PoC) technology quickly, and convert prototypes to cloud-scale, reliable solutions we can rely and build on. You’ll research developing adversary techniques and analyze software systems to build new detections for them. You will build AI powered services that automate functions of alert triage, context enrichment, and other things to help our threat hunters and incident responders move faster. You’ll work with security platforms around Microsoft to use the security signals they generate to get new insights into threats targeting our environment.

• Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

• In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

• Responsibilities
• • Lead cross-functional projects to improve our ability to detect and respond to security incidents.
• • Design and implement security monitoring services that expand our detection engineering opportunities and the playing field for threat hunting.
• • Deep dive into systems we monitor to find new opportunities for detection development.
• • Build logging pipelines to acquire new datasets for monitoring.
• • Threat hunt across our environments to develop new potential detections.
• • Automate attack simulation tools for continuous validation of detection efficacy.
• • Use AI tools to quickly prototype new PoC technologies.
• • Build AI powered services that accelerate threat hunting, alert triage, incident response and other security operations flows.

• Qualifications
• • Experience developing software in C#, C/C++, Java, or other C-style language.
• • Demonstrated understanding and application of formal software design principles, for example, OOP and related design principles.
• • Automation scripting in Python, PowerShell, or comparable scriptable programming languages.
• • DevOps & Automation: Proficiency in CI/CD pipeline development, secure deployment practices.
• • Experience with IaC methodologies using automated deployment tools such as Terraform.
• • Experience with container-based platforms and services, such as Kubernetes.
• • Deep knowledge of cloud ecosystems such as Azure, AWS, GCP.
• • Experience building complex automations and integrations using Apache Airflow or comparable orchestration system.
• • Deep understanding of network protocol stack.
• • Deep knowledge of operating systems, file systems, and memory structures in Windows. Linux is a plus.
• • Strong analytical and debugging skills.
• • Strong communication, collaboration and leadership skills.
• • BS degree in Computer Science, Software Engineering, or comparable technical background.

Preferred Qualifications

• • Experience with modern security suite of tools and services such as EDR, XDR, IDS, SIEM, SOAR.
• • Experience with pentest tools and platforms such as Kali, Burp, MSF.
• • Good understanding of software exploitation classes, such as memory corruption, ROP, SSRF,
• • Experience threat modeling Large-Language Model based services.
• • Broad security domain knowledge across multiple areas such as log/event processing, incident management, digital forensics, offensive security testing, detection and/or response tool development.
• #RISecurity #SecEngineering #AIPoweredSecurity

• This position will be open for a minimum of 5 days, with applications accepted on an ongoing basis until the position is filled.

• Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance with religious accommodations and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.