2 days ago Be among the first 25 applicants
Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end‑to‑end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry are securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life‑changing innovations that impact billions of lives around the world.
Are you passionate about building secure, intelligent systems that identify threats before adversaries do? Do you want to shape the future of security building on AI tools? Our team, IDSEC AI, is on a mission to scale proactive security across Microsoft’s products by unifying vulnerability identification and exploit detection. We’re building systems that combine AI, large‑scale code and binary analysis, and real‑time intelligence to find and mitigate security issues across the software supply chain. We are looking for a Senior Software Engineer with a strong foundation in AI and security to help design and deliver scalable systems that operate across millions of assets and billions of signals.
You will be working at the intersection of secure software engineering, advanced detection, and practical AI—enabling defenders to stay ahead of the threat curve. If you’ve ever wanted to build secure‑by‑design systems with the latest in machine learning, large language models, and static/dynamic analysis at cloud scale—this is your opportunity.
Responsibilities
* Conducting Research
o Identifies, conducts, and supports others in conducting research into critical security areas, such as competitor products, current attacks, adversary tracking, and academic literature. Partners cross‑functionally to design solutions to prevent attacks. Designs lead to engineering projects. Investigates business‑critical security issues. Advocates priorities and elevates findings appropriately.
o Drives the evolution of security research by building intelligent tooling and agentic systems that scale across Microsoft’s ecosystem. Enables autonomous threat detection, mitigation, and response, transforming manual workflows into adaptive, self‑healing processes.
o Works with others to synthesize research findings into recommendations for mitigation of security issues and shares across teams. Drives change within the team based on research findings and contributes to the professional community through publications.
o Analyzes complex issues using multiple data sources to develop insights, identify security problems and threats. Creates new solutions to mitigate security issues. Balances security and operational needs. Identifies and recommends process improvements.
o Recommends prioritization and validation methods for technical indicators. Synthesizes threat data to generate trends, patterns, and insights that align with intelligence requirements or customer requests.
o Leads efforts to clean, structure, and standardize data and data sources. Leads data quality efforts to ensure timely and consistent access to data.
o Takes product schedules, dependencies and risk assessments into consideration in performing security design and analysis.
o Identifies, prioritizes, and targets complex security issues that cause negative impact to customers and drives adoption of relevant mitigations.
* Solution Generation
o Identifies, prioritizes, and targets complex security issues that cause negative impact to customers and drives adoption of relevant mitigations.
o Solves classes of issues systematically and with transparency to customers, collaborating across disciplines, and using research results to drive architecture or product direction.
o Collaborates with engineering teams to embed agentic capabilities into security products, enabling continuous learning and self‑improving defences.
o Engages with customers and partners to improve security issues, analyzes security issues or patterns, and advocates for customers and partners.
* Orchestration
o Helps to make connections and assist in developing agreements between groups to clarify priorities and identify dependencies. Provides coordination across groups.
o Leads the development and deployment of internal tooling platforms that support agentic workflows, including automated incident response, telemetry enrichment, and security posture evaluation.
o Protects tools, techniques, information, and results of security practices. Assesses operational security and develops new techniques to evaluate it.
o Effectively manages multiple workstreams and resources during incidents, maintaining a commitment to quality throughout the lifecycle.
o Leads large‑scale security reviews and works with DevOps leads, engineering leads and researchers to mitigate risks.
* Industry Leadership
o Uses subject matter expertise to identify potential security issues, tools, mitigations, and processes and drives change through sharing, coaching, and conferences.
o Assists with analyzing work to identify potential tools and deploy best practices for secure configurations.
o Influences the broader security community by advocating for agentic approaches to threat detection and response.
Qualifications
Required Qualifications
* Relevant experience in the software development lifecycle, distributed systems, cloud services, large‑scale computing, modeling, cybersecurity, and/or anomaly detection
* Proficiency in one or more modern programming languages such as C#, Python, Go, or Rust
* Experience working with large‑scale data processing pipelines or AI/ML inference systems
* Strong understanding of security fundamentals, including secure coding practices, authentication/authorization, and common vulnerability classes
* Demonstrated ability to deliver secure, high‑quality code in a fast‑paced environment
* OR a Master’s Degree in Statistics, Mathematics, Computer Science, or a related field
Preferred Qualifications
* Experience applying AI to code (e.g., code understanding, analysis, or generation)
* Background in ML model evaluation, interpretability, or adversarial robustness
* Experience with Azure or other cloud platforms
* Familiarity with modern CI/CD pipelines, secure software supply chain practices, and SBOM tooling
* Experience building or scaling systems for vulnerability management, security automation, or detection engineering
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.
Seniority level
Not Applicable
Employment type
Full‑time
Job function
Engineering and Information Technology
Industries
Software Development
#J-18808-Ljbffr