Experience Inc. Jobs

Microsoft’s Azure Security organization delivers industrial control systems (ICS) and Operational Technology (OT) cybersecurity assurance programs for Microsoft's global datacenter portfolio by securing critical infrastructure systems used for electrical power, building automation, and physical security.

We are looking for a Principal Security Assurance Engineer to join the world-class team that helps secure Microsoft datacenters which form the backbone of Microsoft’s Cloud Ecosystem, Azure and AI services.

If you have a curiosity and drive to build deep customer insights and translate them to detailed technical and business requirements that can be executed across the organization; if you possess a deep understanding of cybersecurity, technical architectures, possess exceptional communication skills, are data and evidence driven, thrive in diverse environments and are a lifelong learner who enjoys creating long-term business value, then this is the role for you.

We are a team that is customer obsessed, has a drive for results, and believes that effective collaboration is how we all achieve more. As part of our team, you will engage directly with our datacenter organization and teams, analyze a wealth of data and systems, and identify new opportunities for the team to execute on. Most importantly, you’ll be part of a team that grows, learns, and succeeds together.

Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Embody our Culture (https://www.microsoft.com/en-us/about/corporate-values) and Values (https://careers.microsoft.com/us/en/culture)

Responsibilities

As a member of this team, you will be partnering across global datacenter engineering and operations as well as security engineering to deliver control and process improvements that discover and defend datacenter operational technologies (OT) from cyber threats, as well as enhance cybersecurity across multiple sectors through engagement with OT providers and consumers, effectively helping everyone.

You will work across several divisions to create technical requirements with artifacts to drive clarity, consensus, and alignment. Your focus is on operational and information technologies for datacenters, leading activities that define security standards and best practices, perform operational threat modeling and risk identification, and the co-design of innovative data center solutions ensuring new technologies are adopted and implemented safely.

A successful candidate will possess a range of experiences working in complex organizational landscapes, fostering collaboration and building consensus on cybersecurity programs and solutions for attack prevention, threat detection, incident response, and risk management. You must be able to speak and present effectively to all levels of business and be willing to jump into any situation to help provide support, clarity, technical leadership, and oversight as needed. Cybersecurity for connected OT systems is an evolving industry; your approaches need to be innovative while ensuring life safety and systems integrity is not compromised.

Responsibilities include:

• Cybersecurity risk analysis and consulting for complex issues

• Coordinate application security testing activities and risk mitigations for datacenter applications and tooling used for critical infrastructure

• Develop application security assurance analytics for application fleet

• Lead complex cybersecurity design reviews for datacenter systems by collaborating with experts across various specialties

• Develop and improve cybersecurity standards and baselines for datacenter systems

• Leverage enterprise systems and tooling for cybersecurity assurance activities

Qualifications

Required/Minimum Qualifications

• 7+ years experience in software development lifecycle, large scale computing, modeling, cyber security, anomaly detection

o OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field

o OR equivalent experience.

• 5+ years of experience in cybersecurity assurance

• 2+ years of experience with industrial controls systems and operational technology

• 5+ years of experience in risk assessments and technology design reviews for complex systems

Other Requirements

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role.

These requirements include, but are not limited to the following specialized security screenings: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Preferred Qualifications

• 5+ years of experience demonstrating ability to work in a team environment helping bring projects to successful completion

• Deep technical knowledge of enterprise or online service provider security solutions for large environments

• Ability to manage, prioritize and successfully execute multiple concurrent projects

• Proven ability to apply clear critical thinking in complex, stressful situations.

• Ability to escalate, report and engage as needed to ensure a project is delivered as needed across teams with diplomacy and tact

• Experience with industrial control systems and operational technology

• Experience and familiarity with national and international standards and frameworks for cybersecurity, industrial control systems, industrial automation

• Datacenter operational technology background and experiences

• Experience supporting or engineering various layers of the technology stack (infrastructure, networking, servers, storage, applications, services) including bare metal and cloud / virtual environments.

Security Assurance IC5 - The typical base pay range for this role across the U.S. is USD $133,600 - $256,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $173,200 - $282,200 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft will accept applications for the role until May 2, 2024.

#DSR

#MSFTSecurity

Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations (https://careers.microsoft.com/v2/global/en/accessibility.html) .