Security Software Engineer II

Viva Learning is on a mission to empower employees with personalized, integrated learning experiences. As part of our continued investment in secure and scalable learning solutions, we are seeking a Software Engineer II to join our team. This role will focus on strengthening our security posture across data pipelines, telemetry systems, and compliance workflows, especially in response to evolving SFI (Security Future Initiative) requirements and internal security reviews.  

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Responsibilities

• Implement and drive security improvements across Viva Learning’s data export and telemetry systems, ensuring compliance with Microsoft’s internal security standards and external regulatory requirements
• Collaborate with engineering and PM teams to address security consult feedback, including remediation of identified gaps and implementation of best practices
• Own the security review lifecycle for new features and infrastructure changes, including threat modeling, secure design reviews, and privacy assessments
• Develop and maintain secure data handling processes. Partner with stakeholders across engineering, compliance, and privacy to ensure timely delivery of SFI wave asks and audit readiness
• Contribute to the development of automation and tooling to streamline security validation and reporting

Qualifications

Required Qualifications: 

• 5+ years of experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection
• 5+ years of experience with coding or scripting in languages such as C#, Python, C++, Go, PowerShell, .NET, Rust, or other comparable programming languages
• Strong understanding of identity and access management concepts, including OAuth, Entra applications, authentication and authorization flows, and service principal configurations
• Good understanding of secure software development practices, including threat modeling, secure coding, and vulnerability remediation. Knowledge of data governance, privacy regulations (e.g., GDPR), and secure data export practices
• Experience with cloud platforms (preferably Azure), data pipelines, and telemetry systems
• Familiarity with Microsoft’s internal security and compliance frameworks (e.g., SDL, SFI) is a plus
• Excellent collaboration and communication skills, with a track record of working across cross-functional teams

Preferred Qualifications: 

• Experience working on enterprise SaaS products or learning platforms  
• Proficiency in scripting or automation for security validation (e.g., PowerShell, Python)

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

#DPG #EXP #Viva