Senior Security Engineer

Microsoft

full-time

Posted: October 8, 2025

Number of Vacancies: 1

Job Description

Security is foundational to every product and service at Microsoft. We are seeking a seasoned security professional with a passion for identifying and mitigating risks before they impact millions of users. You will shape the future of proactive security across some of Microsoft’s most innovative platforms—including Copilot, Bing, Microsoft News, Microsoft Maps, and Microsoft Advertising.The Proactive Security Engineering Team within Microsoft AI leads advanced security assessments across globally distributed services. We focus on scalable, precision-driven techniques such as secure code reviews, variant analysis, and service-level risk evaluations. Our mission is to elevate security posture through deep technical engagement, collaborative remediation, and continuous improvement of our tools and methodologies.As a Senior Security Engineer, you’ll lead and coordinate proactive security assessments across multiple services and engineering teams, develop and refine methodologies for secure code analysis, variant detection, and service hardening, and collaborate with engineering and product teams to prioritize and remediate findings. You will be part of a culture of trust, transparency, and continuous learning offering a unique opportunity to influence security outcomes across Microsoft AI services. Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. Starting January 26, 2026, Microsoft AI (MAI) employees who live within a 50- mile commute of a designated Microsoft office in the U.S. or 25-mile  commute of a non-U.S., country-specific location are expected to work from  the office at least four days per week. This expectation is subject to local law and may vary by jurisdiction.

Locations

  • Redmond, Washington, United States, Redmond, Washington, United States

Salary

Salary not disclosed

Required Qualifications

  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in security or related field OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in security or related field OR equivalent experience. (degree)
  • 4+ years' experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection. (degree)
  • 2+ years' experience conducting security assessments on Web Applications, Mobile Applications, Cloud Services running on variety of operating systems including containers. (degree)
  • Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter. (degree)
  • Certifications such as OSCP, CISSP, CEH and/or GPEN. (degree)
  • Experience with application security standards such as OWASP ASVS/Top 10, CWE 25. (degree)
  • Familiarity with web proxies such as Burp, OWASP ZAP or Fiddler. Familiarity with using Security distributions such as Kali, BlackArch and BackBox. (degree)
  • Coding skills in one or more general purpose scripting languages. (degree)
  • Proven understanding of network protocols, web application security, and cloud platforms (AWS, Azure, GCP) (degree)
  • Demonstrated experience in successfully designing, delivering, and iterating on complex projects with a diverse set of stakeholders. (degree)

Preferred Qualifications

  • Certifications such as OSCP, CISSP, CEH and/or GPEN. (degree)
  • Experience with application security standards such as OWASP ASVS/Top 10, CWE 25. (degree)
  • Familiarity with web proxies such as Burp, OWASP ZAP or Fiddler. Familiarity with using Security distributions such as Kali, BlackArch and BackBox. (degree)
  • Coding skills in one or more general purpose scripting languages. (degree)
  • Proven understanding of network protocols, web application security, and cloud platforms (AWS, Azure, GCP) (degree)
  • Demonstrated experience in successfully designing, delivering, and iterating on complex projects with a diverse set of stakeholders. (degree)

Responsibilities

  • Identify and help remediate vulnerabilities in Microsoft AI products utilizing code reviews, proactive security testing and product aligned penetration test assessments, and design reviews.
  • Utilize comprehensive and up-to-date knowledge of security to design innovative protections.
  • Work closely with product teams to enhance security measures and clearly communicate the business benefits of security testing.
  • Partner with teams outside Microsoft AI to leverage and contribute to product security practices as well as Secure SDLC.

Travel Requirements

4 days / week in-office

Documents

PrivacyTerms & ConditionsAbout UsRefund PolicyRecruiter Login

© 2025 Pro Partners. All rights reserved.