Microsoft Senior Network Security Automation Engineer 

Taiwan, Taoyuan City 

856416404

As a group, CO+I is focused on personal and professional development for all employees and offers trainings and growth opportunities including Career Rotation Programs, Diversity & Inclusion trainings and events, and professional certifications.

Required Qualifications:

• 4+ years of experience in Network Security Engineering (multi-vendor next-gen firewall experience, IDS/IPS, network engineering (routing/BGP) and network/infrastructure automation (Python, Ansible etc).
  • OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
• Strong background in Firewalls or Intrusion detection or prevention systems.
• High proficiency in Python
• Hands-on experience with Ansible for network automation and configuration management.
• Ability to design, develop, and integrate RESTful APIs
• Networking & Security Fundamentals: Solid understanding of routing, IPSec, firewall policies
• Proficiency with Git and collaborative development workflows

Background Check Requirements:

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

• Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

While not required, we also look for the following
Preferred Qualifications:

• Cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), cloud security, and operations incident response.
• CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, PCCSE, PCNSE, PCSAE, CCNP Security, CCIE Security and/or Security+ certification.
• Any experience with industrial control systems is preferred (not mandatory).
• Experience with Nautobot for network source-of-truth alignment, and Django would be considered highly beneficial

Responsibilities:

• Manage and optimize network security infrastructure including NGFWs (e.g., Palo Alto Networks, Checkpoint), IDS/IPS, and segmentation.
• Develop and maintain secure Azure cloud environments using Infrastructure-as-Code (IaC) tools such as Terraform or ARM templates.
• Build and maintain CI/CD pipelines in Azure DevOps with integrated security controls.
• Document automation workflows, APIs, scripts, and system designs.
• Proactively identify and investigate potential issues and patterns in security controls and drive mitigation strategies, while also implementing automation to improve efficiency and effectiveness across the network.
• Install, upgrade, and maintain security hardware, operating system and software.
• Identify gaps in security policy and administration, recommend solutions, and implement new and revised security standards, while working with partner teams to drive consistency and awareness.
• Maintain standards and drive improvements for our customer and partner experience, responding appropriately to emerging issues and advocating for our customer experience through development and analyzation of key metrics, performance indicators, and other data sources (e.g. bugs, unhealthy data pipeline). Respond to escalations and recommend improvements as appropriate to address gaps.
• Participate in on-call rotation to support security services.
• With minimal guidance, analyze attempted or successful efforts to compromise systems security and, alongside partner teams, create recommendations to limit exposure, implement response plans, and take action.
• Analyze potential or actual intrusions identified from monitoring activities and create detections based on available data (e.g., Indicators of Compromise [IOC] and Tools Tactics Procedures [TTP]).

Other

• Embody our and .