Microsoft · 2 days ago
Senior Security Engineer
Wonder how qualified you are to the job?
Maximize your interview chances
Data ManagementDeveloper Tools
H1B SponsorshipActively HiringGrowth Opportunities
Insider Connection @Microsoft
Responsibilities
Threat Modeling / Security Assessments: Utilizing research and expertise to conduct threat modeling and security assessments of Azure HW/FW solutions, and cloud infrastructure. Your objective is to prioritize areas of security risk, identifying and addressing security defects that may impact on Azure's capacity to safeguard against, detect, investigate, and recover from security incidents.
Security Reviews: Prioritize the highest risk features within Azure and perform comprehensive reviews of their design, source code, or final product to identify security defects. Utilize existing tools or develop new ones, such as static/dynamic analysis tools, to enhance efficiency and quality of work. Take the lead in addressing identified security flaws and implementing proactive security hardening measures to mitigate future exploitable vulnerabilities.
Driving Security: Collaborate with cloud server and in-rack devices hardware ecosystem partner to establish security solutions and requirements, identify critical threats, and develop agreed plans for remedial actions. Collaborate with Microsoft Hardware Engineering teams from the early stages of product development to guarantee the security of Azure hardware platforms.
Contributing to Policies: Engage with cross-company teams and industry partners to ensure that our insights are effectively integrated into development policies, standards, and practices. Aim to continuously elevate the security standards by fostering a growth mindset and implementing best practices.
Emerging Threat Research: Stay at the forefront of emerging threats impacting cloud services by conducting research on externally identified vulnerabilities and proactively investigating security risks associated with the technologies utilized by Azure and our customers.
Communication & Presentation: Be an competent in security and be available to answer questions and give guidance on addressing security defects. Present team findings through white papers and security assessment reports. Work with the other teams to define and adopt new best practices for secure development and operations.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
5+ years experience in software development lifecycle, large scale computing, modeling, cyber security, anomaly detection OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field OR equivalent experience.
6+ years experience in software/firmware/hardware development lifecycle, large scale computing, modeling, cyber security OR Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field OR equivalent experience.
Certified Information Systems Security Professional (CISSP) Certification, Security+ Certification, or relevant certification.
This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Profound understanding of server platform buses and peripherals, complemented by hands-on experience in conducting security analyses of peripherals.
Proficiency in hardware description languages (HDL) and RTL, coupled with hands-on experience in conducting security reviews of hardware design.
Deep and broad understanding of security vulnerabilities and attacks (Hardware, Software, Network, and People) and ability to apply them or find new ones based on new technology being developed.
Experienced coding skills in one or more popular languages and platforms, including C/C++, C#, assembly, Rust, Python, and others, and the ability to pick up new platforms quickly.
Detailed understanding of encryption, low-level networking protocols, operating systems including Linux and Windows.
Preferred
6+ years experience in software development lifecycle, large scale computing, modeling, cyber security, anomaly detection OR Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field OR equivalent experience.
Benefits
Benefits and other compensation
Company
Microsoft
Microsoft is a software corporation that develops, manufactures, licenses, supports, and sells a range of software products and services.
H1B Sponsorship
Microsoft has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (5862)
2022 (11005)
2021 (8174)
2020 (6856)
Funding
Current Stage
Public CompanyTotal Funding
$1MKey Investors
Technology Venture Investors
2024-01-02Undisclosed· Undisclosed
2022-12-09Post Ipo Equity· Undisclosed
1986-03-13IPO· nasdaq:MSFT
Leadership Team
Recent News
Digital Trends
2024-06-06
2024-06-06
2024-06-06
Company data provided by crunchbase