Job Information
Microsoft Corporation Senior Cloud Security Engineer in Raleigh, North Carolina
Microsoft Silicon Cloud Hardware Infrastructure Engineering (SCHIE) is the team behind Microsoft’s expanding Cloud Infrastructure and responsible for powering Microsoft’s “Intelligent Cloud” mission. SCHIE delivers the core infrastructure and foundational technologies for Microsoft's over 200 online businesses including Bing, MSN, Office 365, Xbox Live, Skype, OneDrive, and the Microsoft Azure platform globally with our server and data center infrastructure, security and compliance, operations, globalization, and manageability solutions. Our focus is on smart growth, high efficiency, and delivering a trusted experience to customers and partners worldwide.
Are you interested in Cybersecurity, Compliance, and Engineering? Do you enjoy solving complex problems? We are looking for an experienced information systems and technology (IS&T) professional to join the Silicon IS&T Team providing subject matter expertise on IS&T security concerns. We are looking for a Senior C loud Security Engineer who will tackle interesting security challenges impacting hybrid cloud systems around the globe in collaboration with a dedicated group of IS&T subject matter experts embedded within the Microsoft Silicon engineering organization.
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Responsibilities
Analyze security controls including Azure Firewall, Network Security Groups, Azure Sentinel, Microsoft Defender ATP, Access Control Lists, Active Directory Domain Services, and Azure Active Directory among others.
Perform hands-on configuration activities in areas such as Identity & Access Management, Azure Firewall, Network Security Groups, Azure Sentinel, Microsoft Defender ATP, Access Control Lists, Active Directory Domain Services, and Azure Active Directory among others.
Create Threat Models, Perform Technical Security Reviews, and Risk Assessments.
Design and implement automation to validate adherence to security requirements with tools such as PowerShell and Kusto (KQL).
Implement Process and Operational Improvement opportunities across Security Compliance Programs.
Provide strategic Cloud Security Architecture guidance to partners.
Work across organizational boundaries to coordinate with other subject matter experts and achieve shared objectives.
Perform Threat Modeling with partners for Hybrid Cloud Workloads.
Embody our Culture (https://www.microsoft.com/en-us/about/corporate-values) and Values (https://careers.microsoft.com/us/en/culture)
Qualifications
Required Qualifications:
· 5+ years of experience in software development lifecycle, large scale computing, modeling, cyber security, anomaly detection
o OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field
o OR equivalent experience.
5+ years of experience in Security Operations.
2+ years of experience in a role requiring developing and documenting standard operating procedures, and processes.
4+ years of experience with Azure or any of the major Cloud providers for Enterprise Customers.
Other Requirements:
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings:
Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.
Preferred Qualifications:
Experience with Industry Compliance, Security, and Regulatory Standards: ISO 27001, FedRAMP, NIST 800-171 Rev.2, NIST 800-53 Rev.4
Experience with one or more programming or query languages (PowerShell, Kusto (KQL), Python, Java, JavaScript, SQL).
Certification in one or more of the following technologies: Microsoft Cybersecurity Architect, Microsoft Security Operations Analyst Associate, Microsoft Azure Security Engineer, Google Professional Cloud Security Engineer, AWS Certified Security Specialty, CCSP, CISSP, CISA, CISM.
Security Assurance IC4 - The typical base pay range for this role across the U.S. is USD $117,200 - $229,200 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $153,600 - $250,200 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay
Microsoft will accept applications for the role until June 25, 2024.
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations (https://careers.microsoft.com/v2/global/en/accessibility.html) .