Microsoft Senior Security Engineer 

Taiwan, Taoyuan City 

65042764

We are looking for aSenior Security Engineerfocused on Cyber Security with a history of engineering excellence and experience in running and managing cloud services. You will be part of Security teamfocusing on keepingand its users safe and secure– across the full stack and all dimensions.drive security improvementsIf you liveand breatheapplication security, can navigate complex systems,crave learning new things,this role is for you. You’ll be focused on driving continuous security improvements across the lifecycle of our services from deployment to live site management. You’ll also demonstrate a history of managing multiple priorities, deep technical and online services skills, a focus on using metrics and data, and a strong "live site first” mindset.

Required Qualifications:

• 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
• 3+ years of experience with writing tools, automation / scripting (Powershell, Python or similar) AND programming (C++, C# or equivalent object oriented programming language)
• Experience making enhancements in subcomponents within and around services/products to deliver and manage software in production.
• Strong written and verbal communication skills with the ability to scale your communication from other developers up to leadership AND effectively manage and prioritize multiple tasks in accordance with high level objectives/projects.
• Willing to work as part of an on-call rotation to mitigate security incidents.

Other Requirements:

• Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter

Preferred Qualifications:

• Experience with Azure services and capabilities (and/or other cloud platforms like AWS).
• Experience with PKI & Cryptography AND auth process with Entra technologies AND experience with networking, DNS, IP protocols, firewalls, and load balancer concepts.
• Any of the following: CCNA, CSYA+, Network ++ and CEH.
• Good knowledge of ARM artifacts and industry standard deployment methodologies.
• Experience with metrics related to service availability and security fundamentals.
• Previous experience in creating SIEM use cases, Complex KQL queries and creating playbooks

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:Microsoft will accept applications for the role until May 10, 2025.

Core Responsibilities:

• Evaluate and implement automation and tooling security solutions to ensure consistent processes and tasks are performed with a high level of accuracy and reduced defects.
• Evaluate and contribute to service design and architecture to improve the security posture of the cloud service.
• Shape security strategies, review threat models, service specifications used by the service.
• Work individually and with teams to drive security goals and objectives across services.
• Perform security assessment of existing systems and code and drive remediations.
• Implement and manage appropriate access control policies to ensure compliance with security requirements.
• Identify security problems and recommend monitoring solutions & automation to improve the security posture of our service offering.
• Prioritize alerts and issues and perform triage to confirm security incidents.
• Performing analysis on true positive alerts to determine root cause and impact.
• Collaborate with teams to create and potentially execute incident mitigation and remediation plans.
• Evaluate security risks and their impact on the Microsoft platform and its online services.
• Create technical documentation for other analysts and other teams to follow.