Microsoft Azure is looking to reshape security and empower users, customers, and developers with a security cloud that protects them with end-to-end, simplified solutions. The Azure Customer Experiences (CXP) organization aims to convert Azure customers into Azure fans by ensuring first- and third-party offerings adhere to security standards and uphold promises to customers and partners.
Requirements
- 8+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C-Sharp, Java, JavaScript, or Python
- 6+ years of experience working in security and services at an enterprise level.
- 6+ years of experience working security principles and architectures, including, but not limited to, the principles of least privilege, least common mechanism, economy of mechanism, and others.
- 6+ years of experience working with technologies and mechanisms to achieve compute isolation, network isolation, authentication and authorization, and auditing and alerting.
- Deep threat modelling expertise including experience in identifying attack vectors and creating comprehensive threat models.
- Understanding of security design patterns (defense in depth, least privilege, zero trust) and when to apply them.
- Deep understanding of distributed systems, cloud architectures, networking, and AuthN/AuthZ systems to allow you to spot vulnerabilities across the stack.
Responsibilities
- Discover, diagnose, analyze, quantify, characterize and help drive solutions for the most challenging security problems in CXP through a data-driven, product-driven lens.
- Advance security by working with other Security Engineers, Program and Product Managers, and Developers, as well as business leaders throughout Microsoft to turn individual findings and vulnerabilities into patterns and insights that can be measured and managed through engineering, automation, and other appropriate mitigations.
- Identify the most demanding security problems through original research and data analysis and help design and deliver practical solutions at scale for select products and services.
- Work up and down the stack, across platforms, operating systems, languages, and frameworks, using your broad security skills to solve problems in unfamiliar domains.
- Demonstrate deep threat modelling expertise including experience in identifying attack vectors and creating comprehensive threat models.
- Examine chosen target systems in detail, looking for vulnerabilities and weaknesses, and, in collaboration with other penetration testing and red teams around the company, demonstrates the value of an “assume breach” mentality.
- Provides technical leadership on adding new tests to cover gaps, deleting or fixing broken tests, and improving the speed, reliability, and defect localization of the overall test suite across a solution or product.
Other
- Demonstrates technical leadership and participate in the broader Microsoft and industry-wide security community to advance the state of the art.
- Leads by example across teams and mentors others to produce extensible, maintainable, well-tested, secure, and performant code used across the company that adheres to design specifications.
- Stays on the forefront of emerging threats which affect cloud services through collaboration and original research, including proactive security research on the technologies that Azure and our customers utilize and depend on.
- Leads efforts and mentors others to build software developer tools to support easier, faster, and more effective software engineering across products.
- The ability to meet Microsoft, customer, and/or government security screening requirements is required for this role.
