Microsoft’s Edge and Platform Security Fundamentals (EPSF) team is responsible for securing some of Microsoft’s largest and most critical online services in Azure, Gaming, and Windows + Devices. We are a part of Azure Edge + Platform (E+P), a globally distributed team responsible for the platforms and services that enable consistent application development and management across the cloud and the edge. We are looking for a principal security operations engineering architect to maximize security operations scale and efficiency across Multi-Cloud, New Acquisition, and Limited Integration business scenarios by extending and building on existing centralized systems. We engineer outcomes based on data, partnerships, and targeted security operations investments to proactively identify and mitigate risks.

This Principal Security Architect role focused on security operations is accountable for aligning areas of the business that are not yet centrally supported with existing centralized security operations services in the Microsoft Security Division (e.g. Security Operations Center, Incident Response, Threat and Vulnerability Management, Detection, Hunt, Key Performance Indicators, Security Development Lifecycle, Compliance). Partnership with the Edge and Platform ecosystem of tools and of teams will be an important part of scaling assorted business scenarios into solutions. This role will also partner within EPSF and across Microsoft to contribute toward complete and consistent security operations data across assorted security operations functions.

This role offers the opportunity to contribute as a mentor and leader across assorted security operations business functions within EPSF and across Microsoft. We are building a team where diversity of thought and background is valued as strongly as technical skills, and where everyone is encouraged to come up with new ideas to make our customers’ lives better.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Responsibilities

• Manage our Operational Analytics process in collaboration with our global Data Engineering, Hunt,App Sec, PenTest,and Infrastructure security teams to drive continuous improvement into the data foundation needed to consistently scale our security operations services.

• Identify and close data, process, and security gaps in our areas of operation.

• Design and iterate on the systems that connect the security operations systems and processes managing our multi-cloud, new acquisition, and limited integration business scenarios with central security operations systems.

• Work across Microsoft Security and the company to seamlessly integrate with partner teams, incorporating Azure, and E&P product offerings and providing feedback for enrichment. 

• Design systems that adhere to modern engineering practices, effective coding, writing unit test cases, debugging, code reviewing and creating Continuous Integration/Continuous Delivery (CI/CD) pipelines.

Qualifications

Required/Minimum Qualifications (RQs/MQs)

• 7+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response.

• OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.

• 3+ years of experience architecting and building programs acrossmultiple security operations disciplines(e.g. SOC, Incident Response, TVM, Detection, Hunt, KPIs, SDL, Compliance).

• 3+ years of design and problem-solving skills, with a strong emphasis on quality and engineering excellence.

Additional or Preferred Qualifications (PQs)

• Proven ability to build successful partnerships and drive complex cross-group collaboration.

• Demonstrating an understanding of security best practices and industry standards.

• Efficient program management, communication, and collaboration skills.

• Experience as a software engineer with one or more general purpose programming languages including, but not limited to: Azure Data Explorer, C#, PowerShell, Cosmos, SQL.

• Experience as a Threat Hunter and/or exposure to Security Operations focused environment.

• Experience with owning or driving large scale services, components or feature areas.

• Experience optimizing automation, reliability and monitoring.

• Customer focus and data driven approach.

• Agility in fast paced environment.

Security Operations Engineering IC5 - The typical base pay range for this role across the U.S. is USD $133,600 - $256,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $173,200 - $282,200 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: US corporate pay information | Microsoft Careers (https://careers.microsoft.com/v2/global/en/us-corporate-pay.html)

Microsoft will accept applications for the role until April 20, 2024.

Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations (https://careers.microsoft.com/v2/global/en/accessibility.html) .