Microsoft Security Software Engineer 

India, Telangana, Hyderabad 

915290662

Required Qualifications :

• Bachelor of Science in Computer Science, Mathematics, Engineering or equivalent experience or education

• 6+ years’ experience in a hands-on security role, with demonstrable software engineering skills • Expert level knowledge regarding multiple classes of vulnerabilities, including cross-site scripting, buffer overflows, SQL injection, TOCTOU (Time of Check Time of Use) vulnerabilities, cryptographic weaknesses, insecure direct object references, and others, and the ability to communicate about them to technical and non-technical audiences

• Demonstrated coding skills in one or more popular languages and platforms, including C#, Java, C++, JavaScript/Typescript, SQL, assembly, Ruby, Python, GoLang, and others, and the ability to pick up new languages, platforms, and frameworks platforms quickly

• Experience in technical disciplines outside the security space, including general software development, networking, database management, big data and full-stack development is a strong plus

• Masters of Science in Computer Science, Mathematics or Engineering is a strong plus

• Knowledge of Microsoft Azure or competing cloud services is a plus

•Vulnerability discovery and variant hunting:Using the best available and most appropriate methodologies, including threat modeling, penetration testing, security design analysis, fuzzing, SAST and DAST, etc., you will examine chosen target systems in detail, looking for vulnerabilities and weaknesses, perform variant hunting looking for larger patterns, conduct qualitative and quantitative analysis over those patterns, and drive solutions upstream in a data-driven, shift-left fashion.

•Solution design and delivery:You will help design solutions for security problems, partner with service teams and other security stakeholders to ensure rapid adoption of solutions and mitigation of threats from beginning to end.

•Threat modeling:You will review the design of services from a security perspective to identify vulnerabilities and weaknesses in the architecture, make appropriate recommendations, and guide teams to implement those recommendations.

•
Software Development:You will prototype and create tools and scanners to automate the discovery and prevention of vulnerabilities across Azure services

• A deep technical understanding of multiple classes of security defects.

• An understanding of a broad set of technologies, languages, and platforms and ability to quickly learn and adapt to new.

• Excellent communication skills, ability to collaborate within a diverse team and to work independently.

• High standards for security domain knowledge along with a track record for writing quality code on popular platforms and languages.