Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

　　Azure DevSec provides strategic and tactical proactive security services to engineering teams in Azure through design reviews, penetration testing, and variant hunting for Azure services.

　　We are looking for a reliable and diligent Principal Software Security Engineer with solid judgment and a solid track record in security and software engineering, who can bring their experience to bear on improving the state of the art. You will play a key role in advancing security by working with engineering and business leaders, as well as other Security Engineers, Program Managers, and Developers throughout the Azure organization to instill an ‘Assume Breach’ security mindset and culture. You will provide technical security leadership, inside and outside of Microsoft through, and stay on top of current developments for the benefit of Microsoft products and services.

　　Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

　　#MSFTSecurity

　　Responsibilities

　　Helping to define strategies for addressing complex security challenges at the design, implementation, and operational levels, and leading projects to implement those strategies.

　　Engaging with leaders around the company to build sustainable strategies for delivering secure products and services

　　Partnering with key stakeholders across the company to instill an “assume breach” mindset during the design of new products and services, identifying gaps in design, and driving improved designs

　　Identifying and evaluating new areas for research, performing analysis into emerging threats, including proactive security research on the technologies that Azure and our customers utilize and depend on.

　　Technical mentorship to other security engineers on the team

　　A level of creativity, solid communication skills, and an ability to work independently are critical.

　　To thrive in this position, you will need a solid technical understanding of multiple classes of security defects, along with an ability to influence and negotiation, empathy for your teammates and partners and the ability to learn new information at a rapid pace.

　　A solid track record in security consulting, penetration testing, and general hacking are critical, but the willingness and drive to improve the state of the art overall is even more important.

　　Qualifications

　　Minimum Qualifications :

　　7+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response

　　OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.

　　7+ years of experience in a hands-on or research-oriented security role, with demonstrable software engineering skills and mastery of multiple classes of security defects

　　Other Requirements:

　　Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check:

　　This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.Preferred Qualifications:

　　10+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection

　　OR Master's Degree or Doctorate in Statistics, Mathematics, Computer Science or related field.

　　CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, and/or Security+ certification.

　　Experience in technical disciplines outside security space, including general software development, networking, database management, big data, and full-stack development is a plus

　　Knowledge of Microsoft Azure or competing cloud services is a plus

　　Security Operations Engineering IC5 - The typical base pay range for this role across the U.S. is USD $133,600 - $256,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $173,200 - $282,200 per year.

　　Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

　　Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations (https://careers.microsoft.com/v2/global/en/accessibility.html) .