Security Operations Engineer 2

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

 

The Identity & Access Management (IAM) Protect team manages Entra tenants for all Microsoft Cloud. We are looking for a Security Operations Engineer II who will join our mission of protecting Microsoft Cloud by building and operating security services that will enforce security policies across thousands of services. In this role, you will play a pivotal role in shaping the future of security at Microsoft and leverage your insights to protect Microsoft services and customers. Your primary focus will be to design, develop, and maintain scalable user lifecycle management systems & expanding our managed environments to meet business requirements.

 

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

 

In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Responsibilities

• Develop a deep understanding of the Identity and Access Management (IAM) solution for Microsoft 365 (M365) and Azure services.
• Use data to define and assert production service isolation across identities
• Work with our penetration testing, incident response teams, and business leaders to ensure that learnings from security incidents are prioritized and remediated.
• Collaborate closely with M365, Azure, and other security teams across Microsoft, as well as service teams to roll out the latest security policies with the right level of automation and enforcement.
• Define key success metrics and craft data-focused tracking of solution health and adoption.
• Report on project status in various reviews, partner briefings, & security conferences.

Embody our culture and values 

Qualifications

Required/minimum qualifications

Bachelor's Degree in Statistics, Mathematics, Computer Science or related field OR 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response.

• 2+ years of experience designing, developing, or maintaining secure software systems, with applied knowledge of authentication, data protection, access control, and secure coding practices 

• 2 years experience access management concepts, principles, and technologies, such as identity and access management (IAM), role-based access control (RBAC), privileged access management (PAM), multifactor authentication (MFA), single sign-on (SSO), and password management.  

 

Additional or preferred qualifications

Master's Degree in Statistics, Mathematics, Computer Science or related field OR 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.CISSP CISA CISM SANS GCIA GCIH OSCP Security+ 

Prefferred Qualifications: 

• Experience with Microsoft technologies, such as Active Directory (AD), Azure Active Directory, Azure AD Connect, Azure AD Identity Protection, Azure AD Privileged Identity Management, and Microsoft Identity Manager.
• 1+ years experience in KQL, SQL, or similar scripting languages for data analysis and automation.
• Communication, collaboration, and leadership skills, with the ability to influence and drive results across multiple teams and levels.  
  Ability to manage complex and cross-functional projects, with attention to detail and quality.  
• Ability to influence and drive strategy at organization level scope.
  Ability to set vision, deliver and communicate solutions to complex technical problem
• Experience working across organizations/divisions, and bringing people together to achieve the goal.
• Experience in the Identity management and access control space is a huge plus. 
  

 

Security Operations Engineering IC3 - The typical base pay range for this role across the U.S. is USD $100,600 - $199,000 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $131,400 - $215,400 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: 

https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft will accept applications for the role until August 9, 2025.

 

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.  We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

 

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

 

#IAMProtect