Microsoft Security organization aims to secure digital technology platforms, devices, and clouds in customers' heterogeneous environments and ensure the security of Microsoft's internal estate.
Requirements
- Coding experience in languages including, but not limited to, C, C++, C-Sharp, Java, JavaScript, or Python
- Experience with security automation and tooling
- Knowledge of infrastructure security controls such as network segmentation, encryption, key management, and secure service-to-service communication
- Experience with cloud security platforms such as Azure
- Experience with CI/CD pipeline security, incorporating SAST, DAST, container scanning, and compliance checks
- Experience with log ingestion, analysis, and forensic readiness using tools like CloudTrail, Security Hub, or SIEM platforms
- Experience with infrastructure-as-code (e.g., Terraform, CloudFormation)
Responsibilities
- Design and implement secure cloud-native applications and services across cloud platforms.
- Develop and maintain security automation and tooling to detect, prevent, and respond to threats.
- Implement infrastructure security controls such as network segmentation, encryption, key management, and secure service-to-service communication.
- Collaborate with architecture teams to integrate security into system design and service lifecycles.
- Define and enforce secure coding standards, conduct peer code reviews with a security-first mindset.
- Develop systems for real-time monitoring, alerting, and anomaly detection within cloud environments.
- Create and manage infrastructure-as-code (e.g., Terraform, CloudFormation) with security best practices.
Other
- Bachelor's Degree in Computer Science or related technical field
- 2+ years technical engineering experience
- Active U.S. Government Top Secret Clearance with access to Sensitive Compartmented Information (SCI) based on a Single Scope Background Investigation (SSBI) with Polygraph
- U.S. citizenship due to citizenship-based legal restrictions
- Ability to meet Microsoft, customer and/or government security screening requirements
