CrawlJobs Logo
Microsoft Corporation Logo Microsoft Corporation · IT - Software Development

Senior Security Engineer

United States, Redmond 119800.00 - 234700.00 USD / Year · Job Posted April 23, 2026
Apply Position
Job Link Share

Job Description

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. The Identity Security Breach Response Squad (IDSEC BRS) is where engineers and security researchers come to work on the most challenging identity security problems at Microsoft. The team operates at the front lines of complex attacks, partnering closely with investigators and engineers to understand how real attacks unfold and to turn those insights into scalable detection, investigation, and response capabilities. BRS is deeply hands‑on: team members work directly with large‑scale identity telemetry, trace complex attack paths, and help shape the tools and systems that responders rely on during high‑impact security events. If you’re motivated by solving ambiguous problems, learning from real adversary behavior, and seeing your work directly improve how a global platform defends itself, this team offers the opportunity to make a tangible difference at cloud scale.

Job Responsibility

  • Translate emerging security threats into clear, actionable engineering requirements, partnering with product and engineering teams to drive AI‑first solutions that close gaps quickly and scale protections across identity systems
  • Investigate and analyze advanced identity based attacks, including token theft, certificate abuse, federation compromise, workload identity misuse, MFA bypass, and hybrid/cloud attack paths
  • Perform deep security investigations using large scale telemetry across cloud identity systems, correlating signals to distinguish malicious activity from expected service behavior
  • Design high fidelity detections based on adversary invariants and abuse patterns
  • Partner with product and platform engineering teams to drive durable security improvements, including logging and telemetry enhancements, protocol hardening, policy changes, and safer default designs
  • Contribute to incident response and post incident reviews, identifying root causes, systemic gaps, and long term mitigations that prevent recurrence
  • Influence security strategy by identifying emerging threat classes, assessing residual risk, and advising engineering and security leadership
  • Build or contribute to automation and tooling that accelerates investigation, detection, and remediation at cloud scale
  • Collaborate across security, engineering, and research teams to improve Microsoft’s overall identity security posture

Requirements

  • Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field OR Master's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Computer Security, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat analysis or modeling, cybersecurity, vulnerability research, and/or anomaly detection OR equivalent experience
  • Experience in security research, threat analysis, incident response, or detection engineering
  • Understanding of identity and access technologies, such as authentication and authorization protocols (OAuth, OIDC, SAML), tokens, certificates/PKI, and MFA
  • Experience analyzing security telemetry at scale (for example, using Kusto, SQL, or similar analytics platforms)
  • Ability to translate complex technical findings into clear guidance for engineers and security stakeholders
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check
Microsoft Corporation - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Security Engineer

8 matching positions

Senior Security Engineer

We are seeking a Senior Security Engineer to design, implement, and manage enter...
Location
Location
United States , Jacksonville
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in cybersecurity, security engineering, or related IT roles
  • Strong knowledge of security tools and technologies: SIEM platforms
  • Firewalls, IDS/IPS
  • Endpoint protection / anti-malware
  • Experience with: Cloud security (AWS, Azure, or GCP)
  • Network security and system hardening
  • Identity and access management (IAM) concepts
  • Understanding of cybersecurity frameworks (NIST, ISO, etc.)
  • Experience with vulnerability management and risk mitigation strategies
  • Knowledge of compliance standards (PCI, privacy regulations)
Job Responsibility
Job Responsibility
  • Design, deploy, and support secure systems aligned with business objectives and regulatory requirements
  • Develop and maintain security policies, standards, and best practices to improve overall security posture
  • Architect and support security infrastructure including: SIEM (Security Information and Event Management)
  • DLP (Data Loss Prevention)
  • IPS (Intrusion Prevention Systems)
  • Monitor and manage security systems, including provisioning, alerting, and incident response
  • Perform system validation, troubleshooting, and root cause analysis for security incidents
  • Conduct vulnerability assessments and partner with teams to implement remediation plans
  • Support system patching, maintenance, and security hardening initiatives
  • Collaborate with engineering, infrastructure, and business teams to integrate security into all projects
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • 401(k) plan
  • Free online training
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

The Microsoft Offensive Research & Security Engineering (MORSE) team is looking ...
Location
Location
United Kingdom , Cambridge
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant experience in security-related elements of software engineering or in another security-related field
  • Hands on experience with systems level programming languages such as C, C++, or Rust
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check
Job Responsibility
Job Responsibility
  • Drive identification and analysis of security vulnerabilities across operating system and platform components, including design review, code review, fuzzing, and variant analysis
  • Develop and influence mitigations and protections that reduce risk across platforms, improving resilience against entire classes of vulnerabilities
  • Collaborate with engineering teams to integrate security into the development lifecycle, influencing design decisions and improving secure engineering practices
  • Contribute to the development and scaling of security tooling, detection capabilities, or analysis techniques that enable broader coverage and earlier detection of vulnerabilities
  • Partner across organisations to translate security findings into systemic improvements and measurable security outcomes
  • Stay current on attacker techniques, emerging vulnerability classes, and industry trends, applying this knowledge to improve Microsoft’s security posture
  • Provide technical leadership within and across teams, contributing to direction setting, problem decomposition, and delivery of complex security initiatives
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

Senior Security Engineer The Opportunity We are currently partnering with mult...
Location
Location
United Kingdom
Salary
Salary:
Not provided
myn.co.uk Logo
Myn
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Extensive experience in cloud security across major platforms such as AWS, GCP, or Azure
  • Proficiency in programming or scripting languages such as Python or Go for security automation
  • Strong understanding of CI/CD security, DevSecOps practices, and Infrastructure as Code (IaC) tools like Terraform
  • Hands-on experience with container security, including Kubernetes and Docker
  • Proven ability to perform threat modelling, architectural security reviews, and vulnerability assessments
  • Experience managing security tooling, including SIEM, EDR, and static/dynamic application security testing (SAST/DAST)
  • Familiarity with industry security frameworks and compliance standards (e.g., ISO 27001, SOC 2, NIST)
  • Excellent communication skills with the ability to collaborate effectively across technical and non-technical teams
Job Responsibility
Job Responsibility
  • Play a pivotal role in designing, implementing, and maintaining robust security controls across complex cloud, infrastructure, and application environments
  • Drive security-by-design principles, conducting thorough threat modelling and architectural reviews to ensure systems remain resilient against evolving threats
  • Take a proactive approach to security, integrating automated checks into CI/CD pipelines and developing tooling to streamline vulnerability management and incident response processes
  • Act as a subject matter expert, collaborating with cross-functional engineering teams to embed best practices, contribute to security governance frameworks, and mentor junior team members
Read More
Arrow Right

Senior Security Engineer

The Substrate Auth Quality and Defense team is seeking a security engineer with ...
Location
Location
Poland , Warsaw
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check
Job Responsibility
Job Responsibility
  • Conducting Research
  • Industry Leadership
  • Orchestration
  • Solution Generation
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

The Senior Security Engineer is a hands-on technical expert responsible for desi...
Location
Location
United States , Houston
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands-on experience securing Microsoft enterprise environments, including: Microsoft Entra ID identity governance and administration
  • Privileged Identity Management (PIM) implementation and operations
  • Endpoint and identity protection using Microsoft Defender XDR
  • Endpoint management and hardening with Microsoft Intune
  • Data protection and monitoring using Microsoft Purview including: Data Loss Prevention (DLP), Insider Risk Management / Insider Threat monitoring
  • Deep operational and engineering experience with: CyberArk Privileged Access Manager
  • Experience designing and managing enterprise PKI environments including: Microsoft Active Directory Certificate Services, Certificate lifecycle management platform (Keyfactor, Secitgo, etc), TLS certificate automation and renewal processes
  • Hands-on engineering experience with enterprise network security platforms: F5 BIG-IP Local Traffic Manager (LTM), F5 Advanced WAF / Web Application Firewall configuration, Load balancing architecture and traffic management, High availability and disaster recovery design for network security platforms, Cisco Secure Access – Web Security
  • Strong foundational knowledge in: Enterprise networking (routing, segmentation, firewalls, load balancing), Windows enterprise environments, Active Directory architecture and security, Authentication protocols and identity infrastructure, VMware ESXi Architecture & operation
  • Strong capability in security operations including: Threat hunting, Incident detection and response, Incident containment and remediation, Root cause analysis and post-incident improvements
Job Responsibility
Job Responsibility
  • Designing, implementing, and operating security technologies in mid-size Enterprise environment
  • Engineering, maintaining, and continuously improving enterprise security controls across identity, endpoint, network, and application security domains
  • Collaborating closely with infrastructure, networking, and development teams to ensure security controls are seamlessly integrated into enterprise systems and services
  • Strengthening and advancing the organization’s overall security posture
  • Architecting and troubleshooting production-grade deployments
  • Leading investigations and coordinating response actions
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • Enrollment in company 401(k) plan
Read More
Arrow Right

Senior Security Engineer

We are looking for a Senior Security Engineer – PAM to join the Global Informati...
Location
Location
United States , Burbank
Salary
Salary:
90.00 - 97.00 USD / Hour
softwareresources.com Logo
Software Resources
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of experience in cybersecurity or identity and access management, with at least 3 years focused on Privileged Access Management
  • Hands-on experience administering enterprise PAM platforms such as CyberArk (EPV, PSM, PVWA, CPM, CCP) or CA PAM (Broadcom Privileged Access Manager)
  • Proficiency in scripting and automation with PowerShell and/or Python for PAM workflows
  • Experience integrating PAM solutions with enterprise directories (Active Directory, LDAP) and cloud platforms (AWS, Azure, GCP)
  • Strong understanding of PAM concepts: credential vaulting, session recording, just-in-time access, least privilege, secrets management, and SSH key management
  • Demonstrated experience supporting compliance and audit processes (SOX, PCI-DSS, or similar frameworks)
  • Ability to work effectively across cross-functional teams in a large enterprise environment
  • BA/BS Degree Comp Sci/IS or related field
Job Responsibility
Job Responsibility
  • Design, implement, and maintain enterprise PAM solutions including privileged account vaulting, session management, just-in-time access, and secrets management
  • Administer and operate PAM platforms (e.g., CyberArk, CA PAM) across on-premises and cloud environments, ensuring high availability and security policy enforcement
  • Develop and maintain automation for PAM onboarding, account provisioning, rotation, and reconciliation using PowerShell, Python, REST APIs, and Terraform
  • Collaborate with IT, Cloud, DevOps, and application teams to integrate PAM controls into CI/CD pipelines, cloud platforms, and third-party systems
  • Define and enforce privileged account policies aligned with security standards, regulatory requirements, and industry best practices
  • Lead PAM-related risk assessments, access reviews, and audit response activities
  • Troubleshoot complex PAM platform issues, driving root cause analysis and permanent remediation
  • Mentor junior engineers and contribute to team documentation, runbooks, and architectural standards
  • Identify opportunities to reduce the privileged access attack surface through improved tooling, automation, and process improvements
  • Support knowledge sharing across the PAM team by leading technical discussions, reviewing peers' work, and contributing to team learning initiatives
What we offer
What we offer
  • Medical coverage
  • Dental coverage
  • Vision coverage
  • 401(k) with company match
  • Short-term disability
  • Life insurance with AD&D
  • Fulltime
Read More
Arrow Right

Senior Security Engineer

We are looking for a Senior Security Engineer – PAM to join the Global Informati...
Location
Location
United States , Orlando
Salary
Salary:
Not provided
softwareresources.com Logo
Software Resources
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5+ years of experience in cybersecurity or identity and access management, with at least 3 years focused on Privileged Access Management
  • Hands-on experience administering enterprise PAM platforms such as CyberArk (EPV, PSM, PVWA, CPM, CCP) or CA PAM (Broadcom Privileged Access Manager)
  • Proficiency in scripting and automation with PowerShell and/or Python for PAM workflows
  • Experience integrating PAM solutions with enterprise directories (Active Directory, LDAP) and cloud platforms (AWS, Azure, GCP)
  • Strong understanding of PAM concepts: credential vaulting, session recording, just-in-time access, least privilege, secrets management, and SSH key management
  • Demonstrated experience supporting compliance and audit processes (SOX, PCI-DSS, or similar frameworks)
  • Ability to work effectively across cross-functional teams in a large enterprise environment
  • BA/BS Degree Comp Sci/IS or related field
Job Responsibility
Job Responsibility
  • Design, implement, and maintain enterprise PAM solutions including privileged account vaulting, session management, just-in-time access, and secrets management
  • Administer and operate PAM platforms (e.g., CyberArk, CA PAM) across on-premises and cloud environments, ensuring high availability and security policy enforcement
  • Develop and maintain automation for PAM onboarding, account provisioning, rotation, and reconciliation using PowerShell, Python, REST APIs, and Terraform
  • Collaborate with IT, Cloud, DevOps, and application teams to integrate PAM controls into CI/CD pipelines, cloud platforms, and third-party systems
  • Define and enforce privileged account policies aligned with security standards, regulatory requirements, and industry best practices
  • Lead PAM-related risk assessments, access reviews, and audit response activities
  • Troubleshoot complex PAM platform issues, driving root cause analysis and permanent remediation
  • Mentor junior engineers and contribute to team documentation, runbooks, and architectural standards
  • Identify opportunities to reduce the privileged access attack surface through improved tooling, automation, and process improvements
  • Support knowledge sharing across the PAM team by leading technical discussions, reviewing peers' work, and contributing to team learning initiatives
What we offer
What we offer
  • Medical, dental, and vision coverage
  • 401(k) with company match
  • Short-term disability
  • Life insurance with AD&D
Read More
Arrow Right

Senior Security Engineer

As a Senior Corporate Security Engineer, you will lead the design and operation ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
deliveroo.co.uk Logo
DELIVER
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or equivalent practical experience
  • 5+ years’ experience in Security Engineering, Corporate Security, Detection & Response, or a related field
  • Hands-on experience administering IAM platforms (e.g. Okta, GoogleWorkspace)
  • Deep hands-on experience with GoogleWorkspace products
  • Practical hands-on experience with Cloud platforms (e.g AWS, GCP)
  • Relevant and practical experience with Infrastructure-as-code (e.g Terraform)
  • Experience implementing modern authentication standards (FIDO2, WebAuthn, SAML, OAuth 2.0, OpenID Connect)
  • Practical experience securing macOS, Windows and Linux endpoints using MDM and EDR/XDR tooling
  • Experience operating SIEM and/or SOAR platforms and tuning detection logic
  • Experience with vulnerability management and patch governance
Job Responsibility
Job Responsibility
  • Architecture & Control Implementation: Design, deploy, and maintain core corporate security controls, including phishing-resistant MFA, Just-In-Time (JIT) access, strict role-based access control (RBAC), zero-trust architectures, device and identity bound proofing and modern network isolation
  • Tooling Ownership: Serve as the technical owner for a broad suite of corporate security systems, managing deployments, configurations, and API integrations for tools across the corporate environment
  • Technical Leadership: Lead and implement the technical strategy for Endpoint Device trust, Data Loss Prevention, Intellectual property storage, and SaaS application security, alongside wider corporate security technical controls
  • Automation & Engineering: Write scripts and build tools to automate security workflows, incident response tasks, and audit evidence collection for compliance
  • Cross-Functional Collaboration: Work with IT and business operations to integrate security tools into everyday workflows, and guide non-security teams to adopt secure baselines (e.g., CIS Benchmarks) as standard practice
  • Mentorship: Mentor junior and mid-level engineers, explain technical concepts clearly to non-technical staff, and help improve the team's engineering standards
What we offer
What we offer
  • Competitive and comprehensive compensation and benefits package
  • Up to 5% matched pension contributions
  • Eligibility for share awards
  • Free Deliveroo Plus
  • Team lunches from the best local restaurants
  • 25 days annual leave plus bank holidays, increasing with length of time spent working at Deliveroo
  • One day of paid leave per year to volunteer with a registered charity
  • Funded single cover healthcare on our core plan, with the option to add family members at own cost
  • On-site gym (HQ), discounted external gym membership
  • Access to wellbeing apps such as LesMills+, Strava, Headspace, Yogaia via GymPass
  • Fulltime
Read More
Arrow Right