OVERVIEW

Microsoft’s Cloud Operations & Innovation (CO+I) is the engine that powers our cloud services.
We are seeking a skilled and motivated Cybersecurity Engineer with a strong background in network security, cloud infrastructure, and automation. If you have a passion for security and a keen interest in securing enterprise environments through modern tools and practices, including Azure DevOps, Microsoft Defender, and OT/ICS security, we want to hear from you.
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Do you want to empower billions across the world? Come and join us in CO+I and be at the forefront of the action!

REQUIRED QUALIFICATIONS:

• 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
• OR Bachelor’s Degree in Statistics, Mathematics, Computer Science or related field.
• Strong background in Firewalls or Intrusion detection or prevention systems
• Experience working in hybrid cloud environments and securing enterprise infrastructure.
• DevOps & Automation: Proficiency in CI/CD pipeline development, secure deployment practices, and automation scripting (PowerShell, Python).

BACKGROUND CHECK REQUIREMENTS:

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

• Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

While not required, we also look for the following Preferred Qualifications:

• Relevant cloud infra certifications such as SC-200, AZ-500, or equivalent.
• CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, PCCSE, PCNSE, PCSAE, CCNP Security, CCIE Security and/or Security+ certification.
• Hands on experience with SIEM/SOAR platforms and Microsoft Defender suite
• OT/ICS Security: Any experience with industrial control systems is preferred (not mandatory)

RESPONSIBILITIES:

• Manage and optimize network security infrastructure including NGFWs (e.g., Palo Alto Networks), IDS/IPS, and segmentation.
• Develop and maintain secure Azure cloud environments using Infrastructure-as-Code (IaC) tools such as Terraform or ARM templates.
• Build and maintain CI/CD pipelines in Azure DevOps with integrated security controls.
• Collaborate with SOC and engineering teams to enhance detection capabilities and automate response workflows.
• Integrate and tune Microsoft Defender solutions including Defender for Endpoint, Identity, and Cloud.
• Support OT/ICS security initiatives through monitoring, protocol analysis, and segmentation.
• Contribute to detection engineering efforts and SIEM content development.
• Document processes, playbooks, and technical configurations.

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

• Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter