Principal Software Engineer
 Microsoft | |
 United States, Washington, Redmond | |
 Dec 24, 2024 | |
|
OverviewMicrosoft runs on trust.Earning and keeping that trust has never been more important. In Customer Security and Trust (CST), program managers, engineers, analysts, investigators, data scientists, attorneys, and business professionalsare responsible forsome of the most exciting projects at Microsoft focused on protecting our customers. The Cybersecurity & Trust Engineering team (CSTE) in CST is the central driving force of Engineering and Cybersecurity initiatives for CST andfor Microsoft Corporate, External and Legal Affairs (CELA) as a whole.The Security and Privacy Engineering (SPE) team is responsible for embedding security and privacy considerations into all facets of the organization's operations. SPE team is instrumental in identifying critical risks, providing engineering and cybersecurity expertise to implement effective mitigations, and working closely with diverse stakeholders across the company and external organizations to safeguard information assets and ensure compliance with all relevant regulations and standards. We are hiring a Principal Software Engineer to join our team. This role will be part of the SPE team, contributing to security initiatives within the organization and across CELA Division with the opportunity of bigger impact. You will contribute to strategic projects and assignments to help increase the security posture of cloud infrastructure and services, assessing security and privacy risks and contribute to improvements and remediation of issues. This is a unique opportunity within Microsoft to work in a dynamic and collaborative team with impact across many services harvesting the power of the cloud, apply your Security and technical skills to empower analysts and investigators to keep our digital world safe for consumers and businesses across the globe. A successful candidate will be passionate about secure development practices and architecture, reliability, cloud computing and automation necessary to strengthen the resiliency and security posture of our services and infrastructure. Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. #CELA
ResponsibilitiesEstablishcollaborationwithEngineering teams in CSTE and across CELA on new features,services, and updates to the product Participate in threat model reviews and helpidentifysecurity flaws early in the design phases Foster onboarding and adoption of Security Development Lifecycle (SDL) Help design implementation of Defense in Depth and Zero Trust strategies while ensuring secure by design, security by default, and secure by deployment principles Lead security architecture reviews Provideguidance and recommendations for secure development Fix security issues in code or infrastructure Participate in code reviews to evaluate security risks and improvements Lead cloud incident response activities as they occur Promote security awareness andprovidetraining and good coding practices Supports operational security and security incidents as well as security reviews Help define, document, evolve, and evangelize secure engineering standards and best practices across multiple areas including automation Contribute to, and establish a strategic view of riskto our services and iterative and consistentsecurity improvements OtherEmbody our culture and values | |