Senior Security Engineer (AI)

TL;DR

Senior Security Engineer (AI): Securing Edge client code by engaging with developers, performing proactive vulnerability research, and managing reactive security responses with an accent on defence in depth, secure by default principles, and vulnerability analysis at scale. Focus on identifying high-risk attack surfaces, stopping active threats, and contributing security improvements to the Chromium project.

Location: Redmond, United States. Employees within a 50-mile commute of a designated Microsoft office in the U.S. are expected to work from the office at least four days per week.

Salary: USD $119,800 – $234,700 per year (typical US range)

Company

hirify.global is committed to empowering every person and organization to achieve more, fostering a culture of inclusion where everyone can thrive.

What you will do

• Analyze complex issues using multiple data sources to identify security problems and threats.
• Perform research on critical security areas, design preventive solutions, and escalate impactful findings.
• Plan and execute strategies for growing Edge’s security capabilities and mitigating risks for customers.
• Oversee security response work, acting on reports from vulnerability researchers.
• Collaborate with other security teams across Microsoft to design new mitigations and with the Chromium community to improve browser security.
• Interact with the external security community, researchers, and conference presenters.

Requirements

• Doctorate in Statistics, Mathematics, Computer Science, Computer Security, or related field OR Master’s Degree with 3+ years OR Bachelor’s Degree with 4+ years of experience in software development lifecycle, large-scale computing, threat analysis, cybersecurity, vulnerability research, and/or anomaly detection.
• Knowledge and experience of cybersecurity principles.
• Ability to adopt an adversarial mindset, finding creative ways to break assumptions and identify security gaps.
• Deep understanding of security fundamentals and computer science skills.
• Passion for keeping Microsoft’s customers safe.

Nice to have

• Doctorate with 3+ years, Master's with 6+ years, or Bachelor's with 8+ years experience in relevant fields.
• Experience with relevant security research, ideally in browser vulnerability discovery, along with CVEs.
• Experience with writing basic exploits for native or web applications.
• Development and deployment of fuzz testing and/or static analysis software.

Culture & Benefits

• Fosters a growth mindset, innovation, and collaboration to achieve shared goals.
• Values respect, integrity, and accountability to create an inclusive culture.
• All qualified applicants receive consideration for employment without regard to protected characteristics.
• Additional benefits and pay information are available on Microsoft Careers.
• Provides assistance with religious accommodations and/or reasonable accommodations due to a disability.