Senior Security Engineer
1 year ago Public Service Hyderabad 92 views Reference: 33388Job Details
Responsibilities
Key responsibilities include:
These are REQUIRED qualifications. Candidates will be dispositioned if they do not have these qualifications. These MUST be quantifiable.
Required Qualifications
#AzureSecOpen
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.
Key responsibilities include:
- Vulnerability discovery and variant hunting. Using the best available and most appropriate methodologies, including threat modeling, penetration testing, security design analysis, fuzzing, SAST and DAST, etc., you will examine chosen target systems in detail, looking for vulnerabilities and weaknesses, perform variant hunting looking for larger patterns, conduct qualitative and quantitative analysis over those patterns, and drive solutions upstream in a data-driven, shift-left fashion.
- Solution design and delivery: You will help design solutions for security problems, partner with service teams and other security stakeholders to ensure rapid adoption of solutions and mitigation of threats from beginning to end.
- Threat modeling / Architecture reviews: You will review the design of services from a security perspective to identify vulnerabilities and weaknesses in the architecture, make appropriate recommendations, and guide teams to implement those recommendations.
- Follow through and closure. You will partner with engineers, product and program managers, and leaders around the company to ensure the successful completion of work to address your findings.
- Software Development – You will prototype and create tools and scanners to automate the discovery and prevention of vulnerabilities across Azure servicesl
- A deep technical understanding of multiple classes of security defects.
- An understanding of a broad set of technologies, languages, and platforms and ability to quickly learn and adapt to new.
- Excellent communication skills, ability to collaborate within a diverse team and to work independently.
- High standards for security domain knowledge along with a track record for writing quality code on popular platforms and languages.
These are REQUIRED qualifications. Candidates will be dispositioned if they do not have these qualifications. These MUST be quantifiable.
Required Qualifications
- Strong leadership, empathy, and interpersonal skills.
- Bachelor of Science in Computer Science, Mathematics, Engineering or equivalent experience or education
- 10+ years’ experience in a hands-on security role, with demonstrable software engineering skills
- Expert level knowledge regarding multiple classes of vulnerabilities, including cross-site scripting, buffer overflows, SQL injection, TOCTOU (Time of Check Time of Use) vulnerabilities, cryptographic weaknesses, insecure direct object references, and others, and the ability to communicate about them to technical and non-technical audiences
- Demonstrated coding skills in one or more popular languages and platforms, including C#, Java, C++, JavaScript/Typescript, SQL, assembly, Ruby, Python, GoLang, and others, and the ability to pick up new languages, platforms, and frameworks platforms quickly
- Experience in technical disciplines outside the security space, including general software development, networking, database management, big data and full-stack development is a strong plus
- Masters of Science in Computer Science, Mathematics or Engineering is a strong plus
- Knowledge of Microsoft Azure or competing cloud services is a plus.
#AzureSecOpen
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.
Company Description
Microsoft Corporation is an American multinational technology corporation headquartered in Redmond, Washington. Microsoft's best-known software products are the Windows line of operating systems, the Microsoft 365 suite of productivity applications, and the Edge web browser. Its flagship hardware products are the Xbox video game consoles and the Microsoft Surface lineup of touchscreen personal computers. Microsoft ranked No. 14 in the 2022 Fortune 500 rankings of the largest United States corporations by total revenue;[2] it was the world's largest software maker by revenue as of 2022. It is considered one of the Big Five American information technology companies, alongside Alphabet (parent company of Google), Amazon, Apple, and Meta Platforms.
Microsoft was founded by Bill Gates and Paul Allen on April 4, 1975, to develop and sell BASIC interpreters for the Altair 8800. It rose to dominate the personal computer operating system market with MS-DOS in the mid-1980s, followed by Windows. The company's 1986 initial public offering (IPO) and subsequent rise in its share price created three billionaires and an estimated 12,000 millionaires among Microsoft employees. Since the 1990s, it has increasingly diversified from the operating system market and has made several corporate acquisitions, the largest being the acquisition of LinkedIn for $26.2 billion in December 2016,[3] followed by its acquisition of Skype Technologies for $8.5 billion in May 2011.[4]
Microsoft was founded by Bill Gates and Paul Allen on April 4, 1975, to develop and sell BASIC interpreters for the Altair 8800. It rose to dominate the personal computer operating system market with MS-DOS in the mid-1980s, followed by Windows. The company's 1986 initial public offering (IPO) and subsequent rise in its share price created three billionaires and an estimated 12,000 millionaires among Microsoft employees. Since the 1990s, it has increasingly diversified from the operating system market and has made several corporate acquisitions, the largest being the acquisition of LinkedIn for $26.2 billion in December 2016,[3] followed by its acquisition of Skype Technologies for $8.5 billion in May 2011.[4]