CrawlJobs Logo
Microsoft Corporation Logo Microsoft Corporation · IT - Software Development

Principal Security Operations Engineer - Systems Architect

United States, Redmond 139900.00 - 274800.00 USD / Year · Job Posted January 31, 2026
Apply Position
Job Link Share

Job Description

The Cloud & AI organization accelerates Microsoft’s mission and ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. IAM Protect safeguards Microsoft’s most critical cloud workloads by reducing risk in the Trusted Computing Base (TCB). We identify adversary paths, shrink the TCB’s attack surface, improve tenant/service isolation, and ensure high-fidelity telemetry exists to detect and respond at speed. We’re hiring a Principal Security Operations Engineer - Systems Architect to lead the technical architecture for TCB risk reduction. You will design and drive end-to-end solutions that (1) identify and quantify risk, (2) shrink TCB footprint and collapse unneeded trust edges, (3) raise isolation guarantees across identity, networking, compute, storage, and supply chain, and (4) expand/validate telemetry coverage required for prevention, detection, and response. This role is deeply technical and hands-on: you’ll author reference architectures, hardening patterns, and guardrails; host design reviews with partner teams; and lead cross-company risk burndown campaigns that land durable controls - not just playbooks.

Job Responsibility

  • Own the TCB security architecture: threat model key trust boundaries, define target states, and codify compensating controls
  • Lead risk identification & key results frameworks: quantify breach paths, set objective success criteria, and measure risk residuals
  • Architect isolation patterns (identities, secrets, network paths, compute/storage seams) and drive enforcement with engineering owners
  • Design telemetry baselines and validation loops (coverage, quality, retention) to support operations, and close gaps with productized pipelines
  • Run burndown campaigns: prioritize work, produce decision docs, sequence mitigations, and hold the line on SLAs

Requirements

  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • Doctorate in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements are required for this role
  • These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft background and Microsoft Cloud background check upon hire/transfer and every two years thereafter

Nice to have

  • 10+ years of experience in security engineering, security operations, or technical program management with a focus on large-scale, cloud or enterprise environments
  • Strong experience building automated solutions for vulnerability management, threat detection, and security configuration drift
  • Strong understanding of security graph models, adversary techniques, attack path analysis, or breach path quantification, with an attacker mindset to identify weak links in the services/systems before adversaries exploit them
  • Hands-on experience with automation of telemetry/logging pipelines to validate security coverage at scale
  • Demonstrated expertise in identity, secrets, or infrastructure security, with hands-on experience reducing risk through technical controls, policy enforcement, or automation
  • Experience with AI/ML in security contexts, such as anomaly detection, predictive modeling, or triaging security signals using large datasets
  • Strong ability to translate complex technical risk into prioritized plans of action and measurable outcomes
  • Proven track record of driving cross-team initiatives across engineering, security, and operations organizations
  • Experience with data analysis and reporting, using telemetry, logs, or metrics to inform decisions and measure progress
  • Proficiency in Kusto/KQL and the ability to design and build tooling that scales across environments and teams
  • Excellent written and verbal communication skills, including the ability to influence technical and executive audiences
Microsoft Corporation - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Principal Security Operations Engineer - Systems Architect

8 matching positions

Principal Software Engineer - Security Architect

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
United States , Redmond
Salary
Salary:
163000.00 - 296400.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or related technical field AND 8+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check
Job Responsibility
Job Responsibility
  • Partner with engineering teams to understand and improve the security posture of many systems related to Identity
  • Collaborate with teams to bring to fruition cross-company security initiatives
  • Assist engineering teams in resolving difficult technical problems
  • Provide vision and thought leadership for state-of-the-art security of the Microsoft estate
  • When needed, engage hands-on with the building, operations and security of services, systems and applications
  • Embody our culture and values
  • Fulltime
Read More
Arrow Right

Principal, Systems and Infrastructure Engineer, Information Security

Are you driven to design durable, scalable, and well-governed cloud platforms th...
Location
Location
United States of America , Denver
Salary
Salary:
121000.00 - 242000.00 USD / Year
walmart.com Logo
Walmart
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Option 1: Bachelor's degree in computer science, information technology, engineering, information systems, cybersecurity, or related area and 5years' experience in systems and infrastructure engineering or related area at a technology, retail, or data-driven company.
  • Option 2: 7 years' experience in systems and infrastructure engineering or related area at a technology, retail, or data-driven company.
Job Responsibility
Job Responsibility
  • Lead the migration and modernization of a large portfolio of applications and databases from AWS to GCP and Azure, ensuring reliability, security, and minimal disruption.
  • Design target-state architectures and migration patterns that balance scalability, resilience, cost, and operational simplicity.
  • Evaluate cloud-native services and guide architectural tradeoffs across AWS, GCP, and Azure.
  • Establish reference architectures, landing zone standards, and platform patterns used across the organization.
  • Architect, build, and maintain complex, reusable Infrastructure-as-Code solutions using Terraform and Terragrunt.
  • Develop Python and Bash automation to support infrastructure lifecycle management, migrations, governance, and operational workflows.
  • Drive consistency and quality through shared modules, versioning strategies, and code review standards.
  • Integrate IaC and automation into CI/CD pipelines using GitHub Actions and related tooling.
  • Drive containerization and platform adoption using Docker and Kubernetes, enabling scalable and resilient application deployments.
  • Design and maintain robust CI/CD pipelines that support fast, safe, and repeatable infrastructure and application delivery.
What we offer
What we offer
  • Health benefits include medical, vision and dental coverage.
  • Financial benefits include 401(k), stock purchase and company-paid life insurance.
  • Paid time off benefits include PTO (including sick leave), parental leave, family care leave, bereavement, jury duty, and voting.
  • Other benefits include short-term and long-term disability, company discounts, Military Leave Pay, adoption and surrogacy expense reimbursement.
  • Live Better U education benefit program
  • Annual or quarterly performance bonuses
  • Stock
  • Fulltime
Read More
Arrow Right

Principal Architect, Systems (Oracle Commerce Cloud & ERP Transformation Architect)

T-Mobile is in the midst of a multi-year Oracle ERP and Commerce transformation ...
Location
Location
United States , Bellevue; Atlanta; Frisco
Salary
Salary:
123800.00 - 223300.00 USD / Year
https://www.t-mobile.com Logo
T-Mobile
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree plus 7 years of related work experience OR Advanced degree with 5 years of related experience
  • Acceptable areas of study include Computer science or related discipline
  • Technology certifications (such as Java, Microsoft, Oracle) a plus
  • 10+ years of experience in enterprise or solution architecture
  • Hands-on experience with Oracle Commerce Cloud or Oracle Fusion ERP
  • Deep expertise in high-volume, high-availability integrations
  • Strong understanding of security, PII, CPNI, and compliance considerations
  • Proven ability to lead through influence and navigate organizational complexity
  • At least 18 years of age
  • Legally authorized to work in the United States
Job Responsibility
Job Responsibility
  • Own end-to-end soluton architecture across Oracle ERP, Oracle Commerce Cloud, and integration platforms
  • Define and author conceptual, logical, and end-to-end architecture artifacts
  • Lead integration strategy including security, data flows, reliability, and scalability
  • Partner closely with product, engineering, UX, operations, and system integrators
  • Set architectural standards and ensure adherence through design reviews
  • Actively participate in incident analysis, root cause identification, and long-term remediation
  • Influence enterprise architecture direction while owning domain-level decisions
What we offer
What we offer
  • Competitive base salary and compensation package
  • Annual stock grant
  • Employee stock purchase plan
  • 401(k)
  • Access to free, year-round money coaches
  • Medical, dental and vision insurance
  • Flexible spending account
  • Paid time off and up to 12 paid holidays
  • Paid parental and family leave
  • Family building benefits
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer

VideoAmp is on a mission to create the best employee and workplace experience wh...
Location
Location
United States , Los Angeles; St. Petersberg
Salary
Salary:
138000.00 - 155000.00 USD / Year
videoamp.com Logo
VideoAmp
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Technology, or a related field
  • 5+ years of experience in a security engineering or operations role, preferably in a cloud-based Linux environment
  • Deep hands-on experience with AWS and Snowflake environments
  • Proficiency in CI/CD pipelines and release processes, with experience operating SAST tooling such as CodeQL or SonarQube
  • Strong working knowledge of security frameworks and standards including NIST, CIS, and ISO
  • Experience with security tools including Tenable, SentinelOne, Sumo Logic, and vulnerability scanners
  • Hands-on experience with infrastructure automation and configuration management tools such as Terraform
  • Strong scripting skills in Go, Python, shell, or comparable languages
  • 3+ years of experience with container technologies and orchestration platforms (e.g., Docker, Kubernetes)
  • Demonstrated ability to partner with Product, Architects, and Principal Engineers to embed security by design across the organization
Job Responsibility
Job Responsibility
  • Assess vulnerabilities across systems and infrastructure — prioritizing those that are immediately exploitable or present on critical assets — and drive both immediate fixes and long-term mitigation strategies
  • Tune and configure security tooling (Tenable, SentinelOne, Sumo Logic) to improve detection accuracy, reduce false positives, and maintain a high signal-to-noise ratio
  • Implement and maintain security controls including access controls, network segmentation, and security monitoring infrastructure
  • Configure and maintain automated compliance tests in Vanta, mapping controls to SOC 2 and other applicable frameworks to support continuous audit readiness
  • Develop and maintain security policies and procedures, ensuring alignment with industry and regulatory standards
  • Design and execute cybersecurity strategies that protect critical applications, data, and systems — adapting to evolving threats while remaining aligned with business objectives
  • Collaborate with Development and DevOps teams to embed security best practices throughout the software development lifecycle and infrastructure delivery pipeline
  • Participate in incident response activities, including investigating alerts, triaging events, and driving resolution of security incidents
  • Automate security processes using scripting languages and infrastructure tooling to reduce manual toil and improve response times
  • Stay current on emerging threats, vulnerabilities, and technologies, and translate findings into actionable improvements
What we offer
What we offer
  • Discretionary and flexible paid time off
  • In addition to standard US holidays off, VideoAmp employees also partake in Spring, Summer and Winter breaks
  • Comprehensive medical, dental, and vision benefits for you and your dependents—including multiple options fully covered by VideoAmp
  • Unlimited financial wellness sessions with Origin financial advisors
  • 401k Plan with matching
  • HSA & FSA
  • Commuter Benefits
  • Cell Phone Reimbursement
  • Paid Maternity and Parental Leave for All Family Additions
  • Equity
  • Fulltime
Read More
Arrow Right

Principal Security Architect - Windows Server

The Windows Server Security Architect (L66) defines and drives security architec...
Location
Location
United States , Redmond
Salary
Salary:
139900.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or related technical field AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter
Job Responsibility
Job Responsibility
  • Own end-to-end security architecture for core Windows Server components (e.g., boot and firmware trust, kernel and virtualization security, identity and access, networking, storage, management plane), balancing security, reliability, performance, and compatibility
  • Partner with engineering teams to shape designs early (architecture “shift left”), secure appropriate resourcing, identify design risks, and unblock delivery with pragmatic, secure solutions
  • Develop and maintain reference architectures, security design patterns, and guardrails for Windows Server features and services used in on-premises and hybrid environments
  • Lead threat modeling and security reviews for new and existing capabilities
  • drive mitigations for high-severity threats and systemic classes of vulnerabilities
  • Define security requirements and non-functional constraints (e.g., secure defaults, hardening baselines, cryptographic standards, key management, auditability, logging, and telemetry) and ensure they are translated into engineering deliverables
  • Act as a technical leader during security incidents: assess impact, guide containment and remediation, and drive post-incident architectural improvements
  • Collaborate with product management, customer support, and field teams to understand real-world attack patterns and operational constraints
  • incorporate learnings into architecture
  • Represent Windows Server security architecture in cross-team reviews and executive/partner communications
  • Fulltime
Read More
Arrow Right

Business Systems Architect Principal

The Business Systems Architect Principal is central to BT International’s transf...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
plus.net Logo
Plusnet
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strategic Architecture Leadership – Proven ability to define and communicate architectural vision for complex business systems landscapes, with a track record of driving large-scale transformation programmes in regulated telco environments
  • Business Systems Domain Expertise – Deep understanding of BAU systems (sales, service, enterprise applications) and service operations platforms (service desk, AI Ops, lead-to-cash, billing, inventory) with knowledge of how these capabilities support business operations and cost optimisation
  • Technical Depth – Hands-on background in business systems integration and service operations with coding capability, enabling credibility with engineering teams and active participation in technical spikes when needed, Event-driven architecture leadership (e.g. Kafka, RabbitMQ or similar), Data persistence: SQL, NoSQL, TSDB (e.g. Postgres, MySQL, Cassandra, MongoDB, Timescale DB, InfluxDB)
  • Leadership and Influence – Ability to lead blended IT teams (support, maintenance, BAU systems, service operations) through transformation, build consensus across organisational boundaries, and develop technical leadership capability in operational functions
  • Systems Integration – Extensive experience linking together various IT systems, services and software across BAU applications, service operations platforms and NaaS capabilities to enable functional operation and support business processes
  • Extensive experience leading IT systems and BSS architecture in telecommunications or complex B2B environments, with demonstrated success modernizing legacy landscapes across multiple system domains
  • Proven track record defining and executing architectural strategies that enabled large-scale system rationalization, vendor consolidation and platform transformation while maintaining business continuity
  • Significant experience establishing API-first integration architectures in complex enterprise environments, including work with API management platforms, event streaming and microservices patterns
  • Strong background working with major enterprise platforms (Salesforce, ServiceNow, Microsoft) and telco-specific BSS vendors, including negotiating technical approaches and influencing vendor roadmaps
  • Experience building and leading architecture teams, with track record developing technical leadership capability and establishing architectural practices that scale across product engineering organizations
Job Responsibility
Job Responsibility
  • Define and lead the architectural strategy for business systems across BAU applications (sales, service, enterprise) and service operations (AI Ops, Service Desk, L2C, including Pricing/Design/Quoting/SRM, billing, inventory), establishing target state architecture that optimises legacy systems whilst designing future-ready capabilities
  • Champion modern architecture patterns, including service operations automation, AI-driven process optimisation, billing automation, inventory accuracy improvement, and self-service capabilities that reduce manual propensity and improve cost-to-serve metrics
  • Collaborate with Data and AI architects to leverage data platforms and AI capabilities for business intelligence, service automation, and customer insights, ensuring business systems generate valuable data and support AI-driven process improvements
  • Drive architectural governance through design reviews and architecture conformance processes, ensuring business systems initiatives align with enterprise standards, security requirements, and support transformation to an asset-light operating model
  • Build and mentor Business Systems architects who work with BAU operations and service delivery teams, establishing technical leadership capability and fostering architectural thinking across support, maintenance, and enterprise systems functions
What we offer
What we offer
  • Cafeteria package - HUF 600,000/ year
  • Company car / car allowance
  • Performance-based bonus
  • Comprehensive private health care package for all the employees, which can be extended to family members
  • Nursery support for mothers returning from maternity
  • Extended paternity leave: 10+10 day fully paid days
  • Commuting allowance
  • Home office allowance
  • Employee discount opportunities
  • Highly affordable mobile packages for the family as well
  • Fulltime
Read More
Arrow Right

Principal Security Engineer

Transform security and compliance into a scalable, engineered capability for a f...
Location
Location
Sweden , Stockholm
Salary
Salary:
Not provided
inhouse.se Logo
Inhouse AB
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Several years of experience from a senior role within IT security
  • Experience building and redesigning systems, not just running them
  • Solid experience within cloud security and security architecture
  • Comfortable owning outcomes in regulated environments
  • Focused on turning frameworks into automated, continuously running controls
  • Curious by nature, motivated by improvement
  • Excited to use automation and AI to reduce friction and increase confidence
  • Comfortable operating close to technology while communicating clearly with stakeholders
  • Ability to translate technical risk into business impact
Job Responsibility
Job Responsibility
  • Define vision for security architecture & design: Act as lead architect for security roadmap, ensuring security-by-design is embedded across platform
  • Translate complex risks into engineering requirements
  • Drive modernization and automation: Own integration of guardrails into AWS, Terraform, and CI/CD pipelines
  • Leverage automation and AI to move away from manual checks toward continuous controls
  • Take governance, risk & compliance ownership: Own information security framework including ICT policies, BIA, and BCP/DR plans
  • Ensure operations align with global standards and regulations such as NIST, SOC 2, ISO 27001, GDPR, and DORA
  • Operational Resilience & Incident Leadership: Lead technical incident response efforts
  • Proactively enhance platform reliability
  • Mature observability and automation
  • Third-party & regulatory oversight: Oversee IT and BPO providers
  • Fulltime
Read More
Arrow Right

Principal Security Architect

As a Security Architect, your role involves designing, reviewing, and enhancing ...
Location
Location
United States , San Francisco
Salary
Salary:
164000.00 - 290000.00 USD / Year
ethoslife.com Logo
Ethos
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in Information Security with at least 2 years as a Security Architect
  • Bachelor’s Degree in Computer Science or related field, or an additional 3 years of pertinent work involvement preferred
  • Strong knowledge of prevalent security architectures, frameworks, standards and emerging threats along with strategies and technologies for defense
  • Deep understanding of network protocols, operating systems, databases, applied cryptography, least privilege, zero trust principles, identity & access management, and other core information security concepts
  • Expertise in cloud computing and its associated best security practices encompassing applications, infrastructure, storage, platforms, and data security
  • Ability to conduct threat modeling and risk assessments
  • Ability to come into our San Francisco, CA office once a week
Job Responsibility
Job Responsibility
  • Conduct Threat Modeling & Architectural Assessments to cover all Information Security domains to ensure Security by Design
  • Assess technologies and solutions to develop and enrich security capabilities
  • Identify security gaps and communicate associated business risks to relevant stakeholders
  • Craft solutions that harmonize business needs with security and compliance requirements
  • Verify the effectiveness of security controls in mitigating identified risks
  • Assist engineering projects across the Software Development Life Cycle (SDLC) and collaborate to prioritize product security elements effectively
  • Apply expertise in information security and application development to instigate organizational shifts aimed at managing and resolving security weaknesses and vulnerabilities
  • Contribute to the creation of security policies, standards, and guidelines
  • Devise and implement frameworks for data classification, retention, and disposal to ensure alignment with data privacy regulations
  • Spearhead initiatives for data security awareness and training
  • Fulltime
Read More
Arrow Right