Microsoft Senior Security Engineering Lead 

United States, Washington 

150985035

As the Sr Security Engineering Lead, you will lead a small team of security analysts and engineers of Full-Time Employees (FTEs) and Contingent Staff Group (CSG) members. In addition to working with key stakeholders and leadership within the sStudio you will also collaborate closely with Gaming Security, Microsoft Security, and various partners to ensure ongoing alignment, manage engineering dependencies, and build robust security solutions. Your responsibilities will include envisioning and architecting security solutions, developing a strategic agenda across the organization, and ensuring alignment and accountability.

Required/minimum qualifications

• 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), and information technology (IT) operations

  o OR Master's Degree in Statistics, Mathematics, Computer Science or related field.
• 3+ years of experience managing and leading multi-disciplinary teams.
• 3+ years leading a security function (e.g., Security Operations Center [SOC], threat and vulnerability management [TVM]).
• 5+ years of experience in operational security, with at least 3+ years in a senior or architectural role.

Preferred qualifications

• Relevant security certifications, such as CISSP, CISA, CISM, SANS, OSCP, or cloud security certifications (e.g., Microsoft Azure Security Engineer, AWS Certified Security Specialty).
• 4+ years in a technical role within a AAA Game Studio.
• 1+ year(s) experience reading and/or writing code for automation.
• 3+ years of experience with AWS, GCP, or Azure.
• Technical skills in areas such as network security, cryptography, identity management, threat modeling, application security, and risk management.
• Written and verbal communication skills with the ability to engage with teams across all levels and functions globally.
• Customer-first, business-savvy, and holds a growth mindset to uphold our culture and values.
• Experience with designing Cloud security guardrails and controls.
• Experience with industry compliance, security, and regulatory standards such as ISO 27001, NIST 800-53 Rev.
• Expertise in securing directory services such as Active Directory, Okta, and Entra ID.
• Experience with CIS benchmarks and other industry security standards.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:

Microsoft will accept applications for the role until December 30, 2024.

Responsibilities

• Engage with the Leadership team, presenting security proposals and initiatives that require executive sign-off. Effectively translate complex technical issues into understandable terms for creative and non-technical stakeholders.
• Serve as the Product Owner for the security team, working closely with Production and the scrum team to plan, prioritize, and execute sprints, ensuring alignment between security objectives and broader studio goals.
• Envision and architect high-quality distributed services, infrastructures, and components to enable security for our Gaming businesses
• Partner with Microsoft Gaming, Microsoft Security, and partners to ensure ongoing alignment, engineering dependencies, and build solutions
• Lead through model, coach, care, a team of security professionals.
• Drive proactive security measures across cloud, onsite and partner environments.
• Development of detailed roadmaps to coordinate the efforts of the engineering teams
• Effectively collaborate across large organizations and multi-disciplinary teams
• Maintain in-depth knowledge of technologies, architectures, and emerging technologies, and how these can apply to our product, business, service, and technology stack.
• Design process and Operational Improvement opportunities across Security Compliance Programs.
• Provide strategic Cloud Security Architecture guidance to studios and business teams