Senior Security Engineer

Security is foundational to every product and service at Microsoft. We are seeking a seasoned security professional with a passion for identifying and mitigating risks before they impact millions of users. You will shape the future of proactive security across some of Microsoft's most innovative platforms-including Copilot, Bing, Microsoft News, Microsoft Maps, and Microsoft Advertising.

The Proactive Security Engineering Team within Microsoft AI leads advanced security assessments across globally distributed services. We focus on scalable, precision-driven techniques such as secure code reviews, variant analysis, and service-level risk evaluations. Our mission is to elevate security posture through deep technical engagement, collaborative remediation, and continuous improvement of our tools and methodologies.

As a Senior Security Engineer, you'll lead and coordinate proactive security assessments across multiple services and engineering teams, develop and refine methodologies for secure code analysis, variant detection, and service hardening, and collaborate with engineering and product teams to prioritize and remediate findings. You will be part of a culture of trust, transparency, and continuous learning offering a unique opportunity to influence security outcomes across Microsoft AI services.

Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Responsibilities:

• Identify and help remediate vulnerabilities in Microsoft AI products utilizing code reviews, proactive security testing and product aligned penetration test assessments, and design reviews.
• Utilize comprehensive and up-to-date knowledge of security to design innovative protections.
• Work closely with product teams to enhance security measures and clearly communicate the business benefits of security testing.
• Partner with teams outside Microsoft AI to leverage and contribute to product security practices as well as Secure SDLC.

Qualifications:

Required Qualifications:

• Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in security or related field OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in security or related field OR equivalent experience.
• 4+ years' experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.
• 2+ years' experience conducting security assessments on Web Applications, Mobile Applications, Cloud Services running on variety of operating systems including containers.

Other Requirements:

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings:

• Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Preferred Qualifications:

• Certifications such as OSCP, CISSP, CEH and/or GPEN.
• Experience with application security standards such as OWASP ASVS/Top 10, CWE 25.
• Familiarity with web proxies such as Burp, OWASP ZAP or Fiddler. Familiarity with using Security distributions such as Kali, BlackArch and BackBox.
• Coding skills in one or more general purpose scripting languages.
• Proven understanding of network protocols, web application security, and cloud platforms (AWS, Azure, Google Cloud Platform)
• Demonstrated experience in successfully designing, delivering, and iterating on complex projects with a diverse set of stakeholders.

Penetration Testing IC4 - The typical base pay range for this role across the U.S. is USD $119,800 - $234,700 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $158,400 - $258,000 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: ;br>
Microsoft will accept applications for the role until August 22, 2025

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form .

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

#MicrosoftAI #BING #Copilot #MicrosoftAI #Security #PenTest