Be an early applicantLess than 25 applicants

Company

Microsoft · 3 hours ago

Senior Security Assurance Engineer

Ohio, United States

Full-time

Remote

Senior Level

$117K/yr - $229K/yr

5+ years exp

Maximize your interview chances

Data ManagementDeveloper Tools

Growth Opportunities

No H1B

Insider Connection @Microsoft

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Understands overall feature architecture and aligns security analysis to it.Support the Regulated Industries Product Security Engineering team

Document security standards, as well as reports

Communicate/document implementation approaches and patterns for standards-based information security objectives (NIST (National Institute of Standards and Technology) 800-53, ISO (International Organization for standardization) 27002 etc.)

Identifies less common types of security issues, defects, or threats, in a product. Identifies and remedies security issues by collaborating with one or more feature teams.

Evaluates products against security baselines (e.g., gap analysis) by comparing and contrasting features in a product and initial features of the baseline.

Manage the software vulnerability management platform tools to maintain operational effectiveness.

Coordinating with other Global Security Service teams to ensure operation consistency and effectiveness.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Software Development LifecycleCyber SecurityObject Oriented ProgrammingAnomaly DetectionArchitectural PrinciplesC#JavaPythonOWASP Top10CWE Top 25Cloud ComputingCloud Security PrinciplesCode Scanning ToolsCI/CDNIST 800-53ISO 27002VeracodeSonarQubeCheckmarxNetsparkerJenkinsAzure DevOpsGitLabGitHubHITRUSTCollaboration Skills

Required

5+ years experience in software development lifecycle, large scale computing, modeling, cyber security, anomaly detection with understanding of architectural or security architecture principles

OR Bachelor's Degree in Computer Science, Risk Management, Cyber Security, or related field

OR equivalent experience.

Experience in Software engineering lifecycle and experience with at least one object oriented programming language for eg. C#, Java, Python etc.

Working knowledge of OWASP (Open Web Application Security Project) Top10 and CWE (Common Weakness Enumeration) Top 25

Ability to communicate and collaborate effectively across functional areas with flexibility.

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role.

This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

This role will require access to information that is controlled for export under export control regulations.

As a condition of employment, the successful candidate will be required to provide proof of citizenship, U.S. permanent residency, or other protected status for assessment of eligibility to access the export-controlled information.

To meet this legal requirement, and as a condition of employment, the successful candidate’s citizenship will be verified with a valid passport.

This position requires verification of U.S. citizenship due to citizenship-based legal restrictions.