Senior Security Operations Engineer
Microsoft
This job is no longer accepting applications
See open jobs at Microsoft.See open jobs similar to "Senior Security Operations Engineer" QueerTech.Operations
USD 119,800-234,700 / year
Posted on Aug 21, 2025
Senior Security Operations Engineer
Redmond, Washington, United States
Save
Date posted
Aug 20, 2025
Job number
1861338
Work site
Up to 50% work from home
Travel
0-25 %
Role type
Individual Contributor
Profession
Security Engineering
Discipline
Security Operations Engineering
Employment type
Full-Time
Overview
The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world.
Do you love the excitement and learning opportunity to study, analyze, and deal with the most complex threats to digital security in today's world? Do you have the “learner” mindset, are willing to un-learn old skills and learn new ones every day? Are you passionate about solving the challenges of security response teams? If yes, then this opportunity is for you.
The Telemetry Enforcement Engineering team, within Cyber Defense Operations is looking for a Senior Security Operations Engineer to drive the centralization of access and curation of critical security data while applying operational rigor to ensure real-time availability and accuracy of thousands of mission-critical data sources. About CDO - Cyber Defense Operations. An organization led by Microsoft’s Chief Information Security Officer enables Microsoft to deliver the most trusted software and services. The CDO vision is to ensure all information and services are protected, secured, and available for appropriate use through innovation and a robust risk & management framework.
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.
Qualifications
Required Qualifications:
- Bachelor's Degree in Statistics, Mathematics, Computer Science or related field OR 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response.
- 3+ years of hands-on experience with Microsoft Kusto clusters (KQL), Azure Cosmos DB, Azure Access Control methods.
- 3+ years assisting in tuning and optimizing data source and data pipeline availability rules and alerts.
- 3+ years developing and maintaining incident response playbooks and standard operating procedures (SOPs).
- 3+ years collaborating with IT, DevOps, and other teams to remediate vulnerabilities and improve security controls/policies.
Other Requirements:
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
- Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Preferred Qualifications:
Master's Degree or Doctorate Statistics, Mathematics, Computer Science or related field OR 10+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.
- 8+ years of security operations work experience, with 5 years of experience collaborating with IR/SOC.
- Proficient conducting root cause analysis and post-incident reviews.
Security Operations Engineering IC4 - The typical base pay range for this role across the U.S. is USD $119,800 - $234,700 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $158,400 - $258,000 per year.
Security Operations Engineering IC5 - The typical base pay range for this role across the U.S. is USD $139,900 - $274,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $188,000 - $304,200 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay
Microsoft will accept applications and processes offers for these roles on an ongoing basis.
#MSFTSecurity
Responsibilities
- Data-Driven Analysis - Analyzes key metrics and key performance indicators (KPIs) and other data sources (e.g., bugs, unhealthy data pipeline) and identifies trends in security issues and escalates appropriately. Recommends improvements and/or metrics to address gaps in measurement. Leverages multiple sources of data in conducting and interpreting analysis. Evaluates data sets for anomalies and other patterns.
- Technical Insight: Provides technical insight on incident analysis and management, threat mitigation and an ability to translate into platform requirements, partnering closely with software development teams.
- Operational Rigor: Demonstrates exceptional operational rigor with real-world experience in cyber security operations, threat mitigation and incident response.
- Stakeholder Management: Manages critical stakeholder calls and meetings (including non-business hours) while addressing critical security incidents.
- Security Knowledge: Possesses extensive hands-on knowledge of security concepts including cyber-attacks, techniques, threat vectors, risk management, and incident management.
- Data Engineering & Management: Understand and administer data source access, availability, while proactively defining controls & policies to improve access and availability.
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
Industry leading healthcare
Educational resources
Discounts on products and services
Savings and investments
Maternity and paternity leave
Generous time away
Giving programs
Opportunities to network and connect
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.
This job is no longer accepting applications
See open jobs at Microsoft.See open jobs similar to "Senior Security Operations Engineer" QueerTech.