Principal Technical Security Program Manager

2 Months ago • 6-8 Years • Cyber Security • $137,600 PA - $294,000 PA

Job Summary

Job Description

The Principal Technical Security Program Manager at Microsoft will investigate and expand security research to develop detection strategies. This role involves collaborating with product and data science teams, designing sensors, and validating detection effectiveness. Responsibilities include engaging with customers to identify opportunities and concerns, designing underlying systems for query-ability on a massive graph cloud inventory, and working on security reviews and automation workflows. The ideal candidate will have experience in software development, cloud security, cybersecurity, and anomaly detection, along with proficiency in C#, Python, or PowerShell. They will analyze Root-Cause Analysis and antipatterns, develop mitigations, and measure the impact of implemented solutions. Collaboration with researchers and developers to enhance product protection is key.
Must have:
  • 6+ years experience in relevant field
  • 3+ years managing cross-functional projects
  • 5+ years security subject matter expertise
  • Cloud service development knowledge
  • Understanding of security attack techniques
  • Proficiency in C#/Python/PowerShell
Good to have:
  • 8+ years experience in software development lifecycle
  • Doctorate in related field
  • Understanding of graph relational databases
  • Experience with cloud authorization engines

Job Details

Overview

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions.

 

The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity.

 

Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions.

 

Does protecting over 1 billion customers and making the cyber world a better place sound exciting? Do you have what it takes to be part of one of the world's most crucial security monitoring and detection teams? Do you want to innovate and improve how Microsoft transforms learnings from Intel & incidents into actionable detection and automated processes? This may be an opportunity for you.

 

The security team seeks a motivated, experienced Principal Technical Security Program Manager to join our team. We are looking for someone who can dig into hard engineering problems to improve the core fundamentals of our systems, add critical and exciting new features, revolutionize how our engineers work day-to-day, and try new things like bringing the power of machine learning and statistical analysis at scale to solve these and other problems.

 

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Qualifications

Required/Minimum Qualifications:

    • Bachelor's Degree AND 6+ years experience in engineering, product/technical program management, data analysis, or product development 
    • OR equivalent experience. 
    • 3+ years of experience managing cross-functional and/or cross-team projects. 
  • 5+ years of experience with Security subject matter knowledge, capable of understanding the technical details of Root-Cause Analysis and antipatterns & Researcher Ability to dive into the technical differences and properties of Root-Cause Analysis and antipatterns.
  • Working knowledge of cloud service development, static analysis, and CI/CD.
  • Understanding of security attack techniques used in real-world scenarios, spanning both large-scale and targeted attacks.
  • Experince working with published research and the ability to collaborate across the research community.
  • Proficiency in C# / Python / PowerShell development.

 

 

Other Requirements:

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.

 

 

Additional or Preferred Qualifications

  • 8+ years experience in software development lifecycle, cloud security, large-scale computing, modeling, cybersecurity, and/or anomaly detection.
    • OR Doctorate in Statistics, Mathematics, Computer Science or related field.
  • Have a good understanding of graph relational database.
  • Responsible for optimizing the runtime of the distributed system and the query engine to achieve ambitious performance goals right from the entry point of the cloud to the lowest layer in the architecture and everything in between.
  • Experience with Leveraging the standard authorization engine of the cloud for secure access control across the system while not compromising on the performant corpus query-ability scale.

 

 

Security Research IC5 - The typical base pay range for this role across the U.S. is USD $137,600 - $267,000 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $180,400 - $294,000 per year.

 

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:    

 

Microsoft will accept applications for the role until May 2nd, 2025

 

Responsibilities

  • Investigate, analyze, and expand upon security research and real incidents to develop durable detection strategies across the entire kill-chain
  • Collaborate with multiple product teams to design sensors, implement detection ideas, and validate their effectiveness using a data-driven approach
  • Collaborate with data science teams to understand and identify detection gaps, capabilities, assumptions, and improvements
  • Be involved in customer conversations in order to identify opportunities, gaps and concerns
  • Responsible for the technical design and vision for building the necessary underlying systems to enable query-ability on the massively large, connected graph cloud inventory to serve billions of resources per day to the callers.
  • Work directly on security reviews, formidable & complex automation and remediation workflows across multiple antipatterns.
  • Engineer mitigations for subcategories of Root-Cause Analysis (RCA) and antipatterns that we observe based on trends.
  • Delivers shift-left mitigations that are designed to eliminate/prevent subcategories of Root-Cause Analysis and antipatterns.
  • Identify patterns of failure and Root-Cause Analysis through Machine Learning / ArtificiaI Intelligence prediction for components
  • Understand the most important subcategories of Root-Cause Analysis and antipatterns observed through ongoing trend analysis.
  • Identifying the “top” Root-Cause Analysis and antipattern categories based on trends.
  • Identifying representative subcategories for Root-Cause Analysis and antipatterns for which mitigation Research & Development should be pursued.
  • Measuring the impact of mitigations that have been implemented in terms of trend data.
  • Analyzing Root-Cause Analysis and antipattern trends that are being observed from incidents, red team ops, and internal/external vulnerability reports.
  • Collaborate with other researchers, coordinators, and developers to improve the protection capabilities of the products research, design, and develop shift-left mitigations for subcategories of Root-Cause Analysis and antipatterns, such as in the form of static analysis rules, dynamic analysis rules, platform changes, and so on.

Similar Jobs

Crunchyroll - Staff Software Engineer

Crunchyroll

Hyderabad, Telangana, India (On-Site)
9 Months ago
Logifuture - Senior DevOps Engineer

Logifuture

Vojvodina, Serbia (Remote)
3 Months ago
Nintendo - DevOps Engineer (Site Reliability)

Nintendo

Redmond, Washington, United States (Hybrid)
2 Months ago
Enphase Energy - DevOps Engineer

Enphase Energy

Bengaluru, Karnataka, India (On-Site)
5 Months ago
Luxoft - Senior Software Support Engineer

Luxoft

(Remote)
7 Months ago
Google - Engineering Manager, Google Distributed Cloud air-gapped

Google

Sunnyvale, California, United States (On-Site)
2 Months ago
PwC - Cloud & IT Transformation Senior Associates

PwC

Makati, Metro Manila, Philippines (On-Site)
8 Months ago
Netflix - Security Engineer L5, Incident Response

Netflix

Poland (Remote)
2 Months ago
Saviynt - Product Manager, Non-human Identities

Saviynt

El Segundo, California, United States (Remote)
8 Months ago
Mattel  Inc  - Manager GRC

Mattel Inc

California, United States (On-Site)
6 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

NXP - Junior Developer of Systems Testing Infrastructure

NXP

Brno, South Moravian Region, Czechia (On-Site)
9 Months ago
Google - Software Engineer, Google Cast and Device Media

Google

New Taipei City, Taiwan (On-Site)
2 Months ago
NVIDIA - Senior Software Engineer, AI Resiliency

NVIDIA

Redmond, Washington, United States (On-Site)
3 Months ago
Warner Bros Games - Senior Manager, Software Engineering

Warner Bros Games

Bengaluru, Karnataka, India (Hybrid)
3 Months ago
Axinous - Staff Software Development Engineer (Backend)

Axinous

Bengaluru, Karnataka, India (On-Site)
6 Months ago
N-iX - Junior Automation QA Engineer (with Python)

N-iX

Colombia (Remote)
2 Months ago
Bungie - Release Manager

Bungie

United States (Hybrid)
3 Months ago
Zeta - Director - Engineering (Backend)

Zeta

Bengaluru, Karnataka, India (On-Site)
8 Months ago
The Walt Disney Company - Staff Software Engineer – Full Stack

The Walt Disney Company

Orlando, Florida, United States (On-Site)
2 Months ago
ByteDance - Software Engineer Intern (CDN/Edge/Traffic Platform)

ByteDance

Seattle, Washington, United States (On-Site)
3 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Redmond, Washington, United States

Glean - Data Science Lead, Product

Glean

Palo Alto, California, United States (On-Site)
7 Months ago
Nintendo - CONTRACT - Technical Localization Specialist (NTD)

Nintendo

Redmond, Washington, United States (On-Site)
10 Months ago
Google - Customer Engineering Manager, Google Cloud

Google

Atlanta, Georgia, United States (On-Site)
2 Months ago
Whatnot - Director, Data Science (Revenue Analytics)

Whatnot

Los Angeles, California, United States (Remote)
8 Months ago
Google - Software Engineering Manager II, Storage

Google

Madison, Wisconsin, United States (On-Site)
2 Months ago
Google - Staff Software Engineer, Databases, Google Cloud

Google

Sunnyvale, California, United States (On-Site)
2 Months ago
The Walt Disney Company - KABC Freelance General Assignment Reporter

The Walt Disney Company

Glendale, California, United States (On-Site)
7 Months ago
NVIDIA - Cable and Connector Architect

NVIDIA

Santa Clara, California, United States (On-Site)
2 Months ago
Saviynt - Java Senior Engineer, Software Engineering

Saviynt

El Segundo, California, United States (Hybrid)
8 Months ago
ByteDance - Site Reliability Engineer - Data Infrastructure (San Jose)

ByteDance

San Jose, California, United States (On-Site)
7 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Google - Senior Validation Security Consultant

Google

Reston, Virginia, United States (On-Site)
2 Months ago
ION - Senior Security Architect

ION

Collecchio, Emilia-Romagna, Italy (On-Site)
8 Months ago
PwC - Financial Services Audit Associate

PwC

Makati, Metro Manila, Philippines (On-Site)
8 Months ago
PwC - Project Manager Security Testing

PwC

Amsterdam, North Holland, Netherlands (On-Site)
5 Months ago
PwC - IN-Senior Associate__SAP GRC_ITRA_Advisory_  Gurgaon/Mumbai/Bangalore

PwC

Gurugram, Haryana, India (On-Site)
8 Months ago
Nintendo - Security Engineer

Nintendo

Redmond, Washington, United States (Hybrid)
6 Months ago
PwC - IN-Associate–ERP Controls- ITRA– Advisory – Mumbai

PwC

Mumbai, Maharashtra, India (On-Site)
8 Months ago
PwC - Application Security Manager

PwC

Makati, Metro Manila, Philippines (On-Site)
8 Months ago
ION - Junior Cyber Security Analyst

ION

Pisa, Tuscany, Italy (Hybrid)
8 Months ago

Get notifed when new similar jobs are uploaded

About The Company

Hyderabad, Telangana, India (On-Site)

Sofia, Sofia City Province, Bulgaria (Hybrid)

Los Angeles, California, United States (On-Site)

Burnaby, British Columbia, Canada (On-Site)

Chengdu, Sichuan, China (On-Site)

United States (On-Site)

United States (On-Site)

United States (On-Site)

View All Jobs

Get notified when new jobs are added by Microsoft

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug