Senior Security Engineer

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate.

Microsoft Intune - one of the fastest growing cloud-based enterprise services at Microsoft - allows IT professionals to manage the ever-increasing usage of mobile devices in the workplace, allowing them to secure corporate assets & data while giving users the confidence that their personal data stays private. Business, governments, and educational institutions are under constant threat from a variety of actors, and they are attacking users in record numbers. We protect Microsoft’s customers and their devices across the world and secure their devices from corporate espionage, data leakage, and application infiltration. Intune is a multi-platform solution (Windows, iOS, and Android), integrated with key cloud services at Microsoft, and is built on some of the latest Azure technologies.   

We are looking for a Senior Security Engineer focused on Cyber Security with a history of engineering excellence and experience in running and managing cloud services. You will be part of Security team focusing on keeping Microsoft Intune and its users safe and secure – across the full stack and all dimensions. We are seeking a talented and passionate Engineer to join our team and help drive security improvements within Microsoft Intune. If you live and breathe application security, can navigate complex systems, crave learning new things, and would like your work to have positive impact on millions of users then this role is for you. You’ll be focused on driving continuous security improvements across the lifecycle of our services from deployment to live site management. You’ll also demonstrate a history of managing multiple priorities, deep technical and online services skills, a focus on using metrics and data, and a strong "live site first” mindset. 

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. 

Required Qualifications:

• 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response

  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.

• 3+ years of experience with writing tools, automation / scripting (Powershell, Python or similar) AND programming (C++, C# or equivalent object oriented programming language)
• Experiecne making enhancements in subcomponents within and around services/products to deliver and manage software in production.  
• Experience with Azure services and capabilities (and/or other cloud platforms like AWS).
• Experience with PKI & Cryptography AND auth process with Entra technologies AND experience with networking, DNS, IP protocols, firewalls, and load balancer concepts.
• Required written and verbal communication skills - can scale your written and oral communication from other developers up to leadership AND can effectively manage and prioritize multiple tasks in accordance with high level objectives/projects. 
• Willing to work as part of an on-call rotation to mitigate security incidents. 

Additional Requirements:

• Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Preferred Qualifications:

• Any of the following preferred: CCNA, CSYA+, Network ++ and CEH. 
• Good knowledge of ARM artifacts and industry standard deployment methodologies.  
• Experience with metrics related to service availability and security fundamentals. 

Security Operations Engineering IC4 - The typical base pay range for this role across the U.S. is USD $117,200 - $229,200 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $153,600 - $250,200 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft will accept applications for the role until February 10, 2025.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.  We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

#MSFTSecurity

• Evaluate and implement automation and tooling security solutions to ensure consistent processes and tasks are performed with a high level of accuracy and reduced defects.  

• Evaluate and contribute to service design and architecture to improve the security posture of the cloud service. 

• Shape security strategies, review threat models, service specifications used by the service. 

• Work individually and with teams to drive security goals and objectives across services. 

• Perform security assessment of existing systems and code and drive remediations.  

• Implement and manage appropriate access control policies to ensure compliance with security requirements. 

• Identify security problems and recommend monitoring solutions & automation to improve the security posture of our service offering. 

• Prioritize alerts and issues and perform triage to confirm security incidents. 

• Performing analysis on true positive alerts to determine root cause and impact. 

• Collaborate with teams to create and potentially execute incident mitigation and remediation plans. 

• Evaluate security risks and their impact on the Microsoft platform and its online services. 

• Create technical documentation for other analysts and other teams to follow. 

• Previous experience in creating SIEM use cases, Complex KQL queries and creating playbooks