Senior Security Assurance Engineer
Microsoft
Senior Security Assurance Engineer
Redmond, Washington, United States
Save
Overview
The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world.
The CISO organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. The Microsoft Business Security team within the CISO organization focuses on securing Microsoft’s business critical functions within Microsoft’s Sales, Customer Support, Partner Relationship, Marketing and Finance divisions. The team identifies and solves security vulnerabilities in platforms and processes to ensure the security of our customers, partners and our own business critical information. We are hiring a Senior Security Assurance Engineer to drive the security assessment of the tools and processes used to power Microsoft's business operations, with the goal of identifying the right designs and policies to mitigate risk. This role is pivotal in shaping the security posture of Microsoft's business operations, ensuring continued compliance with Microsoft’s security policies, and driving scalable solutions that protect sensitive data and infrastructure. If you thrive in a dynamic, ambiguous environment and are driven to deliver meaningful impact while continuously learning, we’d love to connect with you!
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Qualifications
- Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 3+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection
- OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 4+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection OR equivalent experience.
Other Requirements:
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
- Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Preferred Qualifications:
- Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 6+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection (enterprise experience)
- OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 8+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection (enterprise experience) OR equivalent experience.
- 2+ years experience in a security assurance or security architecture role
- 2+ years experience with penetration testing
- 2+ years experience in a software architecture role
Security Assurance IC4 - The typical base pay range for this role across the U.S. is USD $119,800 - $234,700 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $158,400 - $258,000 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay
Microsoft will accept applications for the role until October 24, 2025.
#MSFTSecurity
Responsibilities
- Partner with architects, engineers and product across the organization; build threat models, design secure systems, perform security design assessments, paint the overall risk picture, and help find solutions for the risks and vulnerabilities you identify.
- Articulate and communicate risk decisions effectively and drive security initiatives within the Business organization.
- Influence technical architecture based on risk decisions derived from security assessments.
- Mentor team members to uplevel technical and interpersonal skills