Microsoft Corporation Principal Engineering Manager - Threat Detection Engineering in Redmond, Washington
Principal Engineering Manager – Threat Detection Engineering; Digital Security and Risk Engineering
Core Services Engineering builds and manages the critical products and services that Microsoft runs on. We boldly pursue big ideas that power transformational advances at Microsoft and for our customers, while helping Microsoft teams work smarter, faster and more securely every day. Core Services Engineering employees have deep technical and business expertise, customer insights, and a clear point of view that comes from first-hand, large-scale experience with Microsoft and industry solutions. We are engineers, technology leaders and experts, digital transformation change agents, and customer advocates. We have exciting opportunities for you to innovate, influence, transform, inspire and grow within our organization and we encourage you to apply to learn more!
Digital Security and Risk Engineering (DSRE) is looking for an experienced Engineering Leader to drive Microsoft’s Enterprise Threat Detection and Security Monitoring programs. These functions are responsible for turning billions of alerts each day into actionable insight for our Security Operations Center (SOC), end users, and applications and services teams. The primary responsibilities of the role include: developing threat detection and monitoring strategies; creating a road-map of prioritized requirements, outcomes, and milestones; collaborating with partner and stakeholder teams across the enterprise; building detections and managing the infrastructure and services that comprise our monitoring ecosystem; engaging with response teams; developing and tracking key performance indicators and metrics; and communicating progress and status to executive leadership.
The successful candidate will have experience building and leading enterprise security engineering functions. You will need to demonstrate a deep understanding and expertise with the engineering process used to build and manage hyper-scale monitoring solutions as well as risk management, data science, security investigation methodologies, and security incident response. The ideal candidate will be able to influence without authority, drive strong alignment across multiple teams, and make a strong business case for features and functionality that will enhance the program and reduce risk to the enterprise.
US citizenship is required for the position. US Federal Government clearances are a plus and the successful candidate without clearance will need to apply.
Manage and modernize existing enterprise platforms, including 1 st party, 3 rd party and custom-built technologies.
Lead the development and engineering of detections, including heuristics and machine learning models.
Develop compelling reporting that identifies threats and risks and drives the right actions to re-mediate.
Attract and develop key talent on the team.
Must be a US citizen capable of obtaining and maintaining a US Government security clearance.
Bachelor’s degree in Computer Science or related field or equivalent experience.
5+ years of work experience as a Program Manager in a security-related domain, or equivalent leadership experience.
Experience running an enterprise scale security program across a large, global, complex organization.
Active US Government security clearance.
Experience leading the development of technical solutions in a modern engineering environment.
Extensive leadership skills with excellent communication skills at all organization levels.
Ability to influence others without authority.
CERT Insider Threat or similar security certifications (SANS, ISC2)
Experience in any of the following areas: user behavior analytics, security analytics, digital forensics, and/or data loss prevention.
The ideal candidate will have experience in a team environment, designing and building enterprise scale engineering services that detect and re-mediate security threats. The candidate should have demonstrated technical depth with Microsoft’s product and service telemetry, security services, data/analytics platforms, and agile development practices. In addition, this position requires an individual who can demonstrate the ability to ensure highly resilient and scalable service designs and processes through partnership with other teams across the company.
Ability to meet Microsoft, customer and/or government security screening requirements is required for this role. These requirements include, but are not limited to the following specialized security screenings:
- Citizenship Verification: This position requires verification of US citizenship to meet federal government security clearance requirements.
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form at https://careers.microsoft.com/us/en/accommodationrequest .
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
- Microsoft Corporation Jobs