Full Time / Raleigh, NC
The Azure DevOps team is looking for great software engineers to help developers safeguard against vulnerabilities and critical security risks. We are seeking a Senior Security Software Engineer who is passionate about security, code, and contributing to secure development best practices. In this this position you will focus on improving security of one of the world’s largest DevOps service providers.
Learn more about Azure DevOps and what we build here
What makes this a great place to work?
There are many things, but here are the highlights:
Key team responsibilities include:
Security Risk Reduction – Identify, assess and prioritize the highest security risks, develop solution strategies, own remediation plans and execution to eliminate security defects and mitigate risk.
Secure Development - Develop code fixes, templates and security toolsets to resolve security bugs and address classes of vulnerabilities. Participate in Threat Model reviews and provide security guidance to teams. Be on the forefront of defending against emerging threats which affect cloud services, including resolution of internally and externally found vulnerabilities.
Security Education and Leadership - Be an expert in secure development, architecture, design, implementation, and validation and be available to answer questions and give guidance on addressing security vulnerabilities. Work with Security Assurance and Engineering teams to define, present and adopt new best practices for secure service development and operations.
Penetration Testing - Participate and drive red and purple team operations. Analyze the security of production and pre-production system using offensive security techniques. Perform research to stay current with penetration testing tools, methodologies, tactics, and mitigations. Outline and document risk impacts in executive summary reports and communications to relevant stakeholders.
To thrive in this position, you'll need a deep technical understanding of a broad technology set and the ability to learn new information at a rapid pace. Strong development and communication skills, ability to deal with ambiguity, and a very high level of creativity and inquisitiveness are a must. You will have a passion for security and breaking things, and the ability to think like an adversary.
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings:
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
Email your resume to firstname.lastname@example.org