Security Operations Engineering

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create lifechanging innovations that impact billions of lives around the world. We are looking for a Senior Security Engineering Manager to join our organization and lead a high-performing automation team in Cyber Defense Operations Center (CDOC) and drive innovative strategies in incident investigation and response through automation. You'll manage major incident volumes, optimize processes, and significantly improve response time via automated solutions. This role offers the opportunity to transform incident intelligence into actionable insights, collaborate with product and partner teams to enhance detection capabilities, and lead automation initiatives to reduce manual workloads. You'll also play a key role in talent management, coaching, and strategic planning. Role: • Lead and mentor a team of Security Engineers to develop/maintain automation solutions for Security Operation Centre. • Provides technical insight on the following: Automation platform and development, At Scale automation. • Ensures strong KRA and KPI management. • Provide clarity in scope of work and define accountabilities between teams.  • Embraces the values of Microsoft through coaching and collaboration.   • Partnering with peer teams working in similar areas. Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Responsibilities

• Drive key business KPIs. • Deliver business insights and drive program improvements.

• Drive engineering requirements to improve security posture using automation solutions.

• Discover potential automation opportunities or insights to enhance operational efficiency.

• Transform the business to scale with the growth of Microsoft.

• Partners across the company, drive holistic and comprehensive fixes for systemic issues.

• Provide supervision for employees, technical analysis, monitoring and detection support functions.

• Enable the team for precision of alerting, speed in triage, and efficiency in response. Drive continuous improvement into the product, process, and technology through analysis and solution design.

• Accountable for operational performance including real-time SLA management, development of data driven business metrics, escalation, and communication.

• Champion security through participation in product reviews, service health reviews and cross-team product group engagements

• Systematic problem-solving mindset.

Qualifications

• 10+ years of exposure to Security Operations and 4+ years’ experience of directly managing a team.

• 5-8+ Years Experience with Low Code/No Code platforms like Logic Apps, Power Automate for automation solutions.

• Good understanding of security tools such as SOAR, NIDS/NIPS, HIDS/HIPS, SIEM, security analysis, logic apps & automation tools.

• Demonstrated leadership skills, abilities, and experience.

• Ability to work effectively in ambiguous situations and respond favorably to change.

• Experience with Microsoft Cloud Security Technologies such as Azure Sentinel, Azure Defender, MDE, Azure Data Explorer and Azure Log Analytics or related products like ArcSight, Splunk and Logstash.

• Ability to rapidly automate data handling and data curation using PowerShell, Python, Azure Data Factory, and various Azure-based tools.

• Skilled working with extremely large data sets to answer complex and ambiguous questions, using tools and languages like: SQL, KQL, Jupyter Notebook, Spark, R, U-SQL, Python, Splunk, and PowerBI.

• Demonstrated understanding of SDLC and programming languages.

• Demonstrated strategic thinking, quantitative and analytical skills, team leadership, and collaboration.

• Excellent problem resolution, judgment, negotiating and decision-making skills.

• Excellent written and oral communication skills needed. Able to communicate with a variety of audiences including engineers, executive management, and customers.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.