Site Reliability Engineer II

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

The Microsoft 365 organization is dedicated to securing digital technology platforms, devices, and clouds in our customers' diverse environments (Office, Exchange, Teams, SharePoint, etc.), as well as safeguarding our own internal estate.

Are you passionate about cybersecurity and protecting customer data? Do you enjoy solving problems using real-time large datasets and ML technologies? If so, consider joining the M365 Core Security team. We are looking for a Site Reliability Engineer II to help us expand our team of security and software professionals. 

Our team leverages trillions of signals across Office 365, Azure Active Directory, and Microsoft Defender, using cutting-edge threat research, AI/ML, and human expertise to analyze and prevent adversary activity and other potential malicious actions. We delve into billions of events and terabytes of data generated daily across Microsoft products (Azure, M365, Xbox, etc.) to detect, investigate, and remediate suspicious activity. Additionally, we work with government clouds and handle sensitive data, ensuring the highest levels of trust, security and compliance.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Required/Minimum Qualifications:

• 4+ years technical experience in software engineering, network engineering, or systems administration
  • OR Bachelor's Degree in Computer Science, Information Technology, or related field AND 1+ year(s) technical experience in software engineering, network engineering, or systems administration
  • OR Master's Degree in Computer Science, Information Technology, or related field 
• 2+ years of experience in one or more of cloud development, data analysis, security vulnerabilities, risk identification, anomaly detection, threat analytics, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, security incident and event management (SIEM), operations incident response or ethical hacking.
• 1+ years of experience with adversary and cyber intelligence frameworks.

Other Requirements:

• The successful candidate must be a U.S. Citizen and have a U.S. Public Trust Position authorization. Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. Failure to maintain or obtain the appropriate clearance and/or customer screening requirements may result in employment action up to and including termination. 
• Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.  
• Citizenship & Citizenship Verification: This position requires verification of U.S citizenship due to citizenship-based legal restrictions. Specifically, this position supports United States federal, state, and/or local United States government agency customers and is subject to certain citizenship-based restrictions where required or permitted by applicable law. To meet this legal requirement, citizenship will be verified via a valid passport, or other approved documents, or verified US government clearance. 

Preferred Qualifications:

• Proficient in one or more cloud environments like Azure, AWS, and GCP.
• Understanding with Google Workspace, Amazon, or CrowdStrike tools.
• Hands-on experience with Azure services using ARM templates, IaaS, VMSS, KeyVault, EventHub, Azure Active Directory, Spark or Hadoop, or similar in AWS or GCP.
• Understanding of security, encryption, PKI, modern authentication, and cloud app authorization architectures.
• Knowledgeable about large-scale enterprise products like M365 (Exchange, SharePoint, Skype, Teams, etc.).
• Scripting skills with one or more PowerShell, Bash, Python, or similar.
• Possesses existing US Government Secret clearance or is willing to apply post-onboarding
• Good to have - CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, and/or Security+ certification

Site Reliability Engineering IC3 - The typical base pay range for this role across the U.S. is USD $98,300 - $193,200 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $127,200 - $208,800 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:

Microsoft will accept applications for the role until January 30, 2025.

#MSSecurit #M365SecEng #MSFTSecurity #CISOSecurity

• Write secure, high-quality code with a focus on maintainability, scalability, and performance.
• Analyze security threats to M365 and build monitoring components to address them. Identify and escalate detection issues (e.g., false positives, noise) appropriately.
• Prioritize security incidents to minimize threats and vulnerabilities from monitoring data. Correlate security data from various sources to detect patterns and root causes.
• Develop automation scripts to streamline security tasks and improve response times. Use machine learning and predictive analytics to foresee and mitigate potential security threats proactively.
• Implement systems for automatic detection and remediation of security issues to ensure continuous protection.
• Execute the DevSecOps approach by designing, coding, testing, deploying, and operating components of the Microsoft 365 security monitoring system.
• Participate in the on-call rotation cycle.