Security Engineer II

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world.

We are looking for a Security Engineer II to join Microsoft Security to help develop and protect infrastructure, applications and data at scale. We are building and maintain solutions that give Microsoft the ability to succeed in an ever-changing business environment. The role focused on designing, implementing and automating security solutions across a mix of cloud and on-prem environments, while collaborating with product and engineering teams to embed security into every stage of the development lifecycle. Successful candidates will have in-depth technical security experience within Security Operations, and Engineering. They should be able to combine their technical skills with enthusiasm, ingenuity, results-orientation, and ability in working with the rest of the team.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Qualifications

Required Qualifications:

• Bachelor’s degree in Computer Science, Cybersecurity, or related technical field; or equivalent hands-on experience.
• Experience in security engineering, incident response, or infrastructure/cloud security.
• Technical Skills
• Strong scripting/programming experience (Python, PowerShell, Bash; Go or C# a plus).
• Experience automating tasks and workflows using APIs, SDKs, or orchestration platforms.
• Knowledge of security principles and technologies (network security, authentication, encryption, identity, logging).
• Hands-on experience with cloud platforms
• Familiarity with CI/CD tooling
• Experience with security tools (EDR, SIEM, SOAR, vulnerability scanners, CSPM).
• Understanding of operating system internals (Windows and Linux).

Preferred Qualifications:

• Strong problem-solving and analytical mindset.
• Excellent communication skills, able to explain technical risks to non-technical stakeholders.
• Collaborative, team-first approach with ability to influence without direct authority.
• Continuous learner with a passion for security and automation.

Responsibilities

Security Engineering & Operations:

• Design, build, and maintain security tools, systems, and infrastructure that protect against advanced threats.
• Develop and maintain automation and scripting solutions (e.g., Python, PowerShell, Bash, Go)
• Build integrations between security platforms, SIEMs, ticketing systems, and cloud services.
• Participate in architecture reviews, threat modeling, and design discussions to ensure secure system design.

Detection & Incident Response:

• Develop detection logic, playbooks, and automation for SIEM/SOAR platforms (e.g., Sentinel, Splunk, Chronicle).
• Support investigations of security incidents, providing technical expertise in containment, eradication, and recovery.
• Automate common incident response tasks to reduce mean time to detect (MTTD) and mean time to respond (MTTR).
• Implement security controls across Azure, AWS, and GCP environments (IAM, network security, container security).
• Automate security configuration baselines and compliance checks using Infrastructure-as-Code (Terraform, Bicep, ARM).
• Collaborate with DevOps and engineering teams to embed security into CI/CD pipelines (DevSecOps).

Vulnerability & Risk Management:

• Conduct vulnerability assessments, interpret results, and drive remediation with engineering teams.
• Write custom scripts and tools to aggregate and prioritize vulnerability data across heterogeneous systems.
• Support penetration testing and red team exercises by building defensive countermeasures.
• Partner with engineering teams to integrate secure coding practices and threat modeling into the SDLC.
• Mentor other engineers in scripting, automation, and security engineering best practices.
• Contribute to security knowledge sharing, runbooks, and engineering documentation.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

Industry leading healthcare

Educational resources

Discounts on products and services

Savings and investments

Maternity and paternity leave

Generous time away

Giving programs

Opportunities to network and connect

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations .