CrawlJobs Logo

Senior Security Operations Engineer

United States, Redmond Employment contract 119800.00 - 234700.00 USD / Year · Job Posted July 04, 2026
Apply Position
Job Link Share

Job Description

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world. Security remains a critical priority for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. As a Senior Security Operations Engineer, you will play a pivotal role improving security within Microsoft. This is a unique opportunity to contribute to the safety and integrity of some of the world’s most critical assets. Your focus will be on establishing the strategy and implementation of key initiatives related to endpoint security. Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Job Responsibility

  • Develop and implement solutions for secure operation of business critical productivity scenarios inclusive of device permissions and client-side applications
  • Understand and investigate emerging endpoint related security risks and recommend prioritization for defense-building capabilities
  • Leverage technical knowledge of Entra, Intune, Defender for Endpoint, and Defender for Cloud to enhance security measures and protocols
  • Identify and raise opportunities for automation and AI-native solutions to improve efficiency and effectiveness
  • Embody our culture and values

Requirements

  • Doctorate in Statistics, Mathematics, Computer Science, or related field OR Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response OR equivalent experience
  • Candidates must be able to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check required upon hire/transfer and every two years thereafter

Nice to have

  • Experience with AI and specifically theoretical and practical knowledge of LLMs, Retrieval Augmented Generation (RAG) pipelines and agent orchestration frameworks
  • Experience defining and using data to drive decisions and improve security outcomes
  • Experience solving problems with a proactive approach to identifying and mitigating security risks
  • Experience effectively communicating complex security concepts to diverse audiences
  • Experience collaborating with various stakeholders to achieve security objectives
  • Experience in managing identity and authentication systems or Identity isolation

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Security Operations Engineer

8 matching positions

Senior Security Operations Engineer

VideoAmp is on a mission to create the best employee and workplace experience wh...
Location
Location
United States , Los Angeles; St. Petersberg
Salary
Salary:
138000.00 - 155000.00 USD / Year
videoamp.com Logo
VideoAmp
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Technology, or a related field
  • 5+ years of experience in a security engineering or operations role, preferably in a cloud-based Linux environment
  • Deep hands-on experience with AWS and Snowflake environments
  • Proficiency in CI/CD pipelines and release processes, with experience operating SAST tooling such as CodeQL or SonarQube
  • Strong working knowledge of security frameworks and standards including NIST, CIS, and ISO
  • Experience with security tools including Tenable, SentinelOne, Sumo Logic, and vulnerability scanners
  • Hands-on experience with infrastructure automation and configuration management tools such as Terraform
  • Strong scripting skills in Go, Python, shell, or comparable languages
  • 3+ years of experience with container technologies and orchestration platforms (e.g., Docker, Kubernetes)
  • Demonstrated ability to partner with Product, Architects, and Principal Engineers to embed security by design across the organization
Job Responsibility
Job Responsibility
  • Assess vulnerabilities across systems and infrastructure — prioritizing those that are immediately exploitable or present on critical assets — and drive both immediate fixes and long-term mitigation strategies
  • Tune and configure security tooling (Tenable, SentinelOne, Sumo Logic) to improve detection accuracy, reduce false positives, and maintain a high signal-to-noise ratio
  • Implement and maintain security controls including access controls, network segmentation, and security monitoring infrastructure
  • Configure and maintain automated compliance tests in Vanta, mapping controls to SOC 2 and other applicable frameworks to support continuous audit readiness
  • Develop and maintain security policies and procedures, ensuring alignment with industry and regulatory standards
  • Design and execute cybersecurity strategies that protect critical applications, data, and systems — adapting to evolving threats while remaining aligned with business objectives
  • Collaborate with Development and DevOps teams to embed security best practices throughout the software development lifecycle and infrastructure delivery pipeline
  • Participate in incident response activities, including investigating alerts, triaging events, and driving resolution of security incidents
  • Automate security processes using scripting languages and infrastructure tooling to reduce manual toil and improve response times
  • Stay current on emerging threats, vulnerabilities, and technologies, and translate findings into actionable improvements
What we offer
What we offer
  • Discretionary and flexible paid time off
  • In addition to standard US holidays off, VideoAmp employees also partake in Spring, Summer and Winter breaks
  • Comprehensive medical, dental, and vision benefits for you and your dependents—including multiple options fully covered by VideoAmp
  • Unlimited financial wellness sessions with Origin financial advisors
  • 401k Plan with matching
  • HSA & FSA
  • Commuter Benefits
  • Cell Phone Reimbursement
  • Paid Maternity and Parental Leave for All Family Additions
  • Equity
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • 7+ years of hands-on experience working in cybersecurity incident response
  • Hands-on experience with incident response in Azure or Microsoft 365
  • Proficient with Kusto data query languages
  • Ability to work under pressure, structure unstructured problems and provide clarity where ambiguity exists
  • Ability to operate with autonomy, influence others, and a bias for action
Job Responsibility
Job Responsibility
  • Coordinates with investigators to prioritize investigation objectives, understands attack paths, and systematically executes mitigation and protection actions to evict threat actors for any security incident impacting any of Microsoft’s products or services
  • Conducts hands-on mitigation where possible
  • engages service owners when there is a risk of a production outage
  • Maintains hands-on knowledge of mitigation and protection steps for various asset types (e.g. M365, Azure, AI) and publishes self-service guidance for impacted engineering teams
  • Briefs executive stakeholders on eviction plans and associated status
  • Maintains and evolves an inventory of threat actor Tactics, Techniques, and Procedures (TTPs) and the corresponding eviction capabilities
  • Define and prioritize requirements and use cases for Microsoft’s threat actor eviction platform
  • operationalize as they are delivered
  • Drives strategic change to accelerate eviction scenarios (e.g. lean business cases to garner support for broader Microsoft product initiatives or features)
  • Participates in an on-call rotation
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • OR Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • OR Doctorate in Statistics, Mathematics, Computer Science, or related field
  • OR equivalent experience.
  • Ability to meet Microsoft, customer and / or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire / transfer and every two years thereafter.
Job Responsibility
Job Responsibility
  • Govern Entra the end-to-end Entra application lifecycle for Entra tenants. This includes defining the specifications and features required for an application governance platform to succeed at scale.
  • Defining Entra application policies and executing policy enforcement and risk reduction.
  • Automation to scale to manage hundreds of tenants across multiple Azure clouds.
  • General Entra tenant governance which includes things like Conditional Access Policies, Azure Policies, Custom Roles, etc. in addition to the core focus area of Entra applications.
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions t...
Location
Location
United States , Multiple Locations
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate in Statistics, Mathematics, Computer Science, or related field
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
  • equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • 6+ years of hands‑on experience or leading engineering functions administering Microsoft Entra ID (Azure AD), covering identity management, application integrations, group and entitlement management, and end‑to‑end lifecycle processes for directory and access components
  • 5+ years experience managing Windows/Azure Virtual Desktop or similar virtualization technologies within an enterprise environment
  • 5+ years of experience administering on‑premises Active Directory, including user, group, and computer management, Group Policy administration, PowerShell, and structured OU governance
  • and experience driving hybrid identity digital transformation for an enterprise
  • 5+ years of experience in resolving complex identity incidents, applying advanced Tier 2/3 expertise, rigorous root cause analysis, and dependable enterprise-level on call support across Active Directory, Entra ID, and AVD
Job Responsibility
Job Responsibility
  • Drive Identity Lifecycle Management across On-Prem Active Directory and Entra
  • Administer and troubleshoot Active Directory and Entra AD Identities, GPOs, OUs, Groups, and Devices
  • Ensure Secure Access & Compliance oversee identity governance for Entra Online, and guest accounts lifecycle
  • Lead Advanced Troubleshooting & Escalations while participating in on-call rotations and direct end user support
  • Resolve complex identity-related incidents and provide Tier 2/Tier 3 support for critical issues
  • Enable Automation & Innovation by developing PowerShell scripts, building workflows with Power Automate/Apps, and integrating support ticketing systems for operational efficiency
  • Innovate with AI-driven automation for ticket triage, predictive identity health, compliance evidence generation, and identify areas of self-help automation
  • Deliver Insights & Service Improvements by creating Power BI dashboards for KPIs and SLA adherence, analyzing customer sentiment, and enhancing knowledge bases through dynamic content automation
  • Fulltime
Read More
Arrow Right

Senior Security Operations Engineer

The Security Operations Engineer is a senior individual contributor responsible ...
Location
Location
Poland
Salary
Salary:
Not provided
apollo.io Logo
Apollo.io
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Security Operations, Incident Response, or Security Engineering
  • Hands-on experience with SIEM platforms (experience with Panther is highly valued), log analysis, and detection engineering
  • Experience investigating security incidents in cloud-native environments (GCP preferred
  • AWS and Azure also relevant) and SaaS applications
  • Experience automating security workflows and investigations
  • Proficiency in Python
  • familiarity with Ruby preferred
  • Ability to operate independently, prioritize effectively, and make sound technical decisions under pressure
Job Responsibility
Job Responsibility
  • Monitor, triage, and investigate security alerts and events across cloud infrastructure, SaaS applications, and corporate systems
  • Conduct end-to-end security investigations, including scoping, containment, eradication, recovery, and documentation
  • Own investigations independently while collaborating effectively during high-severity incidents
  • Configure and maintain SIEM detections in Panther, including use cases, correlation rules, alert logic, and tuning
  • Onboard, validate, and maintain log sources to ensure visibility, accuracy, and reliability
  • Design and improve investigation and response workflows to streamline triage, escalation, and resolution
  • Leverage AI-assisted tools to accelerate alert analysis, enrichment, and investigation efficiency
  • Perform proactive threat-hunting activities to identify malicious or anomalous behavior not surfaced by existing detections
  • Investigate abuse, fraud, account compromise, and automation misuse scenarios in close collaboration with Fraud teams
  • Identify detection gaps and propose, implement, and validate improvements
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, Security Operations

The senior security engineer role provides a unique opportunity to shape the sec...
Location
Location
United States , REMOTE; SAN FRANCISCO; ROSEVILLE; LEHI; WEST PALM BEACH; IRVINE
Salary
Salary:
146000.00 - 170000.00 USD / Year
goodleap.com Logo
GoodLeap
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences
  • Expertise in security event management, monitoring, threat hunting, incident response, playbook creation, orchestration/automations
  • Experience with threat modeling methodologies
  • Expertise with EDR solutions/platforms, such as CrowdStrike, S1, Palo Alto Cortex EDR
  • Experience with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus)
  • Proven ability to establish credibility and build trust with business, engineers, and operational staff
  • Experience designing, configuring, and implementing security and fraud monitoring for core enterprise systems, e.g., ERP, HCM, Salesforce
  • Experience working with and creating solutions based AI and ML toolsets – e.g., creation of AI skills, agents, MCP clients, vibe coding
  • Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases
  • Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK
Job Responsibility
Job Responsibility
  • Lead, participate in, and contribute to security and fraud monitoring, detection, and response activities, inclusive of investigations, threat hunting,etc. Create playbooks for specific incident response scenarios
  • Identify potential misuse and abuse cases in enterprise systems, propose solutions to detect these scenarios, and identify and implement monitoring and detection solutions for such scenarios
  • Support or develop components of the security analytics platform
  • Support embedded (product) security team
  • Support general security operations team with vulnerability management, tools management, and more
What we offer
What we offer
  • bonus
  • equity
  • Fulltime
Read More
Arrow Right

Senior Security Software Engineer - Security Operations

The Role GM’s Cybersecurity Team safeguards the company’s global information ass...
Location
Location
United States , Warren
Salary
Salary:
125200.00 - 158600.00 USD / Year
gm.com Logo
General Motors
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-7 years in software security engineering
  • advanced proficiency in modern programming languages
  • Expert in API development, microservices, event streaming, and idempotent integration patterns
  • Experience deploying software using any modern CI/CD pipeline and automated delivery practices
  • Hands-on with security tooling integrations (e.g., SIEM, EDR, SSPM)
  • Proven AI integration experience: LLM agents, embeddings, vector databases, RAG, prompt engineering
  • Cloud proficiency (Azure/AWS/GCP) and IaC (Terraform/Bicep/ARM/CloudFormation)
  • Data engineering fluency: ETL/ELT, schema design, normalization/enrichment
  • formats (JSON, YAML, syslog, STIX/TAXII)
  • Excellent cross-functional communication
Job Responsibility
Job Responsibility
  • Own architecture & delivery for complex integration services (APIs, microservices, event-driven workflows) with production SLIs/SLOs
  • Build AI-driven workflows (RAG, summarization, classification, agents) that augment investigations, triage, and orchestration
  • Create reusable connectors bridging SIEM/EDR/IAM/SSPM/ITDR/ITSM and cloud telemetry with robust error handling, retries, and DLQs
  • Implement security automation (SOAR-like playbooks) that enrich alerts and trigger deterministic + AI-assisted responses
  • Harden and observe services with CI/CD, automated testing, performance profiling, metrics, and incident runbooks
  • Mentor engineers and lead technical design reviews, coding standards, and reference implementations
  • Translate requirements into clear epics/roadmaps
  • align stakeholders and deliver on time with quality
What we offer
What we offer
  • medical
  • dental
  • vision
  • Health Savings Account
  • Flexible Spending Accounts
  • retirement savings plan
  • sickness and accident benefits
  • life insurance
  • paid vacation & holidays
  • incentive pay program based on company, job level, and individual performance
  • Fulltime
Read More
Arrow Right

Senior Security Engineer and Principal Security Engineer

The Microsoft Windows Security team is looking for a learn-it-all security engin...
Location
Location
United States , Redmond
Salary
Salary:
119800.00 - 234700.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in security or related field OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in security or related field OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • Microsoft Cloud Background Check upon hire/transfer and every two years thereafter
  • 2+ years identifying vulnerabilities in operating systems and/or native (C/C++) applications
  • 5+ years of experience in a software engineering or security-related engineering
  • Demanstrated experience in security research, especially around vulnerability discovery
  • Experience exploiting bugs and bypassing security mitigations in operating systems
  • Familiarity with Microsoft Windows architecture
Job Responsibility
Job Responsibility
  • Participate in security reviews to identify and mitigate risk in Microsoft products, including design reviews, code reviews, and fuzzing
  • Be the security contact for teams building new innovative products and technologies in the next version of Windows and devices
  • Identify security vulnerabilities in a wide variety of key OS features such as network protocols, security features, and Microsoft devices
  • Leverage a broad and current understanding of security to devise new protections
  • Interact with the external security community and security researchers
  • Collaborate with product teams to improve security, and articulate the business value of security investments
  • Fulltime
Read More
Arrow Right