Senior Software Engineer - Global Hunting Oversight and Strategic Triage

at  Microsoft

The mission of Microsoft Security Response Center (MSRC) is to enable Microsoft to build the most trusted devices and services, while keeping our company safe and our data protected. As part of the Microsoft Security organization, and a steward of Microsoft and our customer’s data, a core function of MSRC is ensuring the security of every aspect of the business. MSRC is responsible for company-wide information security and compliance, with a strategic focus on information protection, assessment, awareness, governance, and enterprise business continuity. As customer zero, we deploy and secure these services inside Microsoft and then share best practices with enterprise customers at scale across the globe. We have exciting opportunities for you to innovate, influence, transform, inspire and grow within our organization and we encourage you to apply to learn more!

REQUIRED/MINIMUM QUALIFICATIONS

• Bachelor’s Degree in Computer Science, or related technical discipline AND 4+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python
• OR equivalent experience.

OTHER REQUIREMENTS:

• Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

ADDITIONAL OR PREFERRED QUALIFICATIONS

• Bachelor’s Degree in Computer Science or related technical field AND 8+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python
• OR Master’s Degree in Computer Science or related technical field AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python
• OR equivalent experience.

We are seeking highly skilled individuals proficient in key programming languages such as KQL(Kusto Query Language)/Azure Data Explorer, or possess experience in database modeling and management. A strong background in security development, incident response, and a deep understanding of threat modeling related to coding are essential for this role. Candidates with security research experience will be given preference.
As part of our team, you will be involved in deep investigations, occasionally requiring direct engagement with customers alongside analysts. This skillset is particularly beneficial for Senior Software Engineers and Principal Engineers. Additionally, you will take ownership of larger projects, manage customer and stakeholder relations, and mentor junior team members.

Responsibilities:

• Development of scalable technologies and platforms that support incident response and proactive assessments
• Development of automation for investigations, incident response, threat research and hunting
• Development of analyst and researcher technologies necessary to perform investigations
• Work with partner teams through influence and collaborative projects.
• Collaborates with appropriate stakeholders to determine user requirements for a scenario. Leverages a variety of feedback channels to incorporate insights into future designs or solution fixes.
• Independently creates a clear and articulated plan for testing and assuring quality of solutions, and defines success for outcomes of tests
• Leverages subject-matter expertise of incident response technologies with appropriate stakeholders drive a workgroup’s project plans, release plans, and work items.
• Drives creation and conducting experimentation (Proof-of-concepts) to determine the effectiveness of changes, monitors developments for prototyping and testing incident response technologies, and interprets results from experimentation
• Participates in code reviews to ensure coding standards are followed.
• Participates in daily development stand-ups
• Maintains operations of live service as issues arise on a rotational, on-call basis. Implements solutions and mitigations to more complex issues impacting performance or functionality of Live Site service and escalates as necessary. Reviews and writes issues postmortem and shares insights with the team.
• Drives efforts to ensure the correct processes are followed to achieve a high degree of security, privacy, safety, and accessibility. Creates and assures the presence of visible evidence to demonstrate compliance for technologies developed.
• Applies and extrapolates best practices to reliably build code that is based on well-established methods while also applying best practices for new code development. Demonstrates and maintains an up-to-date understanding of both global and local regulations for technologies and system applications to ensure regulations are followed and met.
• Work independently and effectively, and thrive in ambiguity