Senior Software Engineer – Automation

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

The Microsoft Insider Risk Program is dedicated to safeguarding our people, data, and intellectual property from internal threats that could compromise the security and integrity of the company. Built on a foundation of innovation and collaboration, the program combines proactive detection, advanced data analytics, and effective response mechanisms to identify and mitigate insider risks in real-time. Our team is focused on building secure, scalable solutions that empower our analysts to efficiently respond to potential risks, ensuring Microsoft’s most valuable assets are protected from within.

As a key contributor to this program, you will play a crucial role in developing automated workflows and advanced tools that enhance our ability to respond swiftly and accurately to insider threats, enabling us to stay ahead in a high-stakes security environment.

This program is a unique opportunity for engineers passionate about security and automation to impact Microsoft’s overall security posture directly. Joining this team means being part of an innovative effort to redefine how Microsoft approaches internal risk management at scale.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Required Qualifications:

• Bachelor's Degree in Computer Science, or related technical discipline AND 4+
  years of technical engineering experience with coding in languages including, but
  not limited to, C, C++, C#, Java, JavaScript, or Python
  • OR equivalent experience.

Other Requirements:

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

Microsoft Cloud Background Check:

• This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter.
• This position requires verification of citizenship due to citizenship-based legal restrictions. Specifically, this position supports United States federal, state, and/or local government agency customers and is subject to certain citizenship-based restrictions where required or permitted by applicable law. To meet this legal requirement, and as a condition of employment, the successful candidate’s citizenship will be verified with a valid passport. 

Preferred Qualifications:

• Experience in cybersecurity or insider risk programs.
• Familiarity with machine learning or data analytics for enhanced detection and monitoring capabilities.
• Knowledge of CI/CD pipelines, version control, and other DevOps practices.
• Strong problem-solving skills, attention to detail, and a collaborative mindset.
• Experience using Azure resources and subscriptions (e.g., Synapse, ADLS, Logic Apps)
• 3+ years of experience in automation engineering, process automation, or related fields.
• Strong proficiency in scripting languages (e.g., Python, PowerShell, JavaScript) and familiarity with automation frameworks and tools.
• Experience working with APIs and integrating with third-party systems.

Software Engineering IC4 - The typical base pay range for this role across the U.S. is USD $117,200 - $229,200 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $153,600 - $250,200 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:

Microsoft will accept applications for the role until January 22, 2025. 

#CISOSecurity MSFTSecurity

We are seeking a Senior Software Engineer to join our Insider Risk Program team. This role is integral to enhancing the efficiency and scalability of our insider risk response process. By automating repetitive tasks, you will play a key role in improving operational efficiency, reducing response times, and supporting the expansion of insider risk monitoring capabilities across the organization. Key responsibilities include the following:

o Design, develop, and implement automated workflows to support the insider risk response process, aiming to reduce manual intervention and improve operational efficiency.
o Collaborate with the Insider Risk Operations team to understand requirements and build automation solutions that improve alert triage, case management, and report generation.
o Create investigation notebooks to consolidate data and provide analysts with a comprehensive view of each case, saving time and ensuring data integrity.
o Work closely with data engineers and analysts to identify bottlenecks and inefficiencies in current processes and implement automation solutions.
o Develop and maintain detailed documentation for all automation workflows, including architecture, dependencies, and standard operating procedures.
o Ensure all automation processes comply with applicable security, privacy, and regulatory requirements.
o Review and peer-assess code in line with security policies and best practices.