Microsoft Senior Application Security Engineer 

United States, Washington 

284857311

About this job

is responsible for

to hire a Senior Application Security Engineer. As an engineer on the team, you willbe responsible for

our culture every day.

Required Qualifications:

• Bachelor's Degree in Computer Scienceor related technical field AND 4+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or TypeScript.
  • OR equivalent experience.
• 4+ years of experience in application Security engineering/Privacy engineering
• 1+ years of experience with application security standards such as The Open Worldwide Application Security Project (OWASP ASVS)/Top 10, Common Weakness Enumeration (CWE 25).
• 1+ years experience with common security libraries, security controls, and common security flaws.

Other Requirements:

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings:

• Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Preferred Qualifications:

• Experience Security and Privacy threat modeling new features.
• Outstanding collaboration and partnership skills, with proven ability to drive results across teams.
• Understanding of Responsible AI, Privacy and Compliance regulations such as The General Data Protection Regulation (GDPR), California Privacy Rights Act (CPRA), System and Organization Controls 2 (SOC 2),ISMS Family of Standards (ISO27k) and others.
• Experience of Privacy, Compliance, ResponsibleAIand Security audits.
• Familiarity with web proxies such as Burp, The Open Worldwide Application Security Project (OWASP ZAP) or Fiddler.
• Development or scripting experience. Java, Ruby, Ruby on Rails,GraphQL, REST.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:

• dataand clients, through code reviews and automation.
• Implement Privacy, Responsible AI and Security controls and checkpoints to detect and prevent issues early in the software development lifecycle.
• Work with engineering and product teams in the design phase of products and features, conducting threat modeling and performing security architecture and design reviews.
• Help engineering and product teams to understand Security, ResponsibleAI ,Complianceand Privacy requirements.
• On-call support for escalations.
• Implement defense in depth mechanisms to prevent Security and Privacy vulnerabilities.
• Embody ourand