Microsoft Security Program Manager 

United States, Washington 

311287287

Our team is responsible for driving the effectiveness of the Security Development Lifecycle (SDL) program throughout Azure. We are committed to empowering engineers to write secure code, operate services securely, and mitigate threats. We are looking for a Security Program Manager 2 who will evolve and drive improvements to Azure’s SDL and Threat Modeling programs to address modern threats. You will simplify and automate assessments, evolve technical requirements through a process of continuous improvement, and provide technical security guidance to engineers developing services.

Required/Minimum Qualifications

• Bachelor’s Degree AND 2+ years of experience in engineering, product/technical program management, data analysis or product development
  • OR equivalent experience.
• 1+ years experience managing cross-functional and/or cross-team projects.
• 1+ year of experience in application security, cloud security, or networking security.
  

Other Requirements

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings.Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Additional or Preferred Qualifications

• Bachelor's Degree AND 4+ years experience in engineering, product/technical program management, data analysis, or product development
  • OR equivalent experience.
• 4+ years experience managing cross-functional and/or cross-team projects.
• 1+ year(s) experience reading and/or writing code (e.g., sample documentation, product demos).
• Certifications such as CISSP, Security+, or SANS SEC401 Security Essentials.
• Understand cloud computing, web platofrms, networking, and AI.
• Familiarity with one or more programing languages (C#, JavaScript, C++, Java, Python, etc).
• Working knowledge of the Security Development Lifecycle, static/dynamic analysis tools, and threat modeling.
• Ability to quickly ramp up on new security technologies.
• Comfortable presenting technical security content internally and to external customers and partners.
• Customer obsession: Desire and eagerness to help customers successfully deploy our technologies.
• Comfortable working autonomously in a fast-paced environment where new challenges exist around every corner.
• Ability to prioritize, manage time and stay organized.
• Ability to take on complex systems and processes and drive simplification and improvements.
• Ability to overcome ambiguity, maintains focus, and drive to clarity to provide innovative solutions.

Technical Program Management IC3 - The typical base pay range for this role across the U.S. is USD $98,300 - $193,200 per year.

Technical Program Management IC4 - The typical base pay range for this role across the U.S. is USD $117,200 - $229,200 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:

• Design or evolve automation, tools, and programs to shift security controls “to the left”.
• Design and specify new security controls to expand Azure’s SDL process.
• Integrate feedback from security response processes into the SDL.
• Perform technical security reviews and risk assessments.
• Provide security guidance and create technical content.
• Work across organizational boundaries to coordinate with other subject matter experts and achieve shared objectives.
• Using the OKR framework, define key results and establish data-driven processes to achieve the desired outcomes.

• Embody our