Senior Software Engineer
Microsoft
Hyderabad, Telangana, India
5d ago

Do you enjoy breaking things technically but are also capable of providing insight into fixing the issues identified? Is your passion understanding the security ramifications of software systems?

What about the opportunity to work at the kind of scale most companies only dream of? Then this is an opportunity you may be interested in.

Microsoft’s Cosine, Devices and Gaming Security Group is responsible for some of Microsoft’s largest and most important online services including Xbox LIVE, Microsoft Game Studios, and more.

CDG Security has a world class penetration testing team that helps ensure a secure experience for millions of users all over the world.

We are primarily focused on offensive security and application security but also work closely with our defense teams to continually improve our operational awareness.

Responsibilities

  • Application Security Automation : You will collaborate with security teams across Microsoft to automate static and runtime analysis capabilities, enabling rapid detection of high confidence security vulnerabilities in source code, and modern web services.
  • Our mission is to help secure all of Microsoft's services at scale.

  • Application Security Reviews : You will work closely with the owners, and engineers of complex, critical services to quickly understand business context and real-world impact.
  • You will utilize your experience, together with industry Tools, Techniques, and Procedures (TTPs) to detect security vulnerabilities, and triage security findings to assess for severity.

    You will continue to be a security mentor to service partners throughout the life of the service.

  • Vulnerability mitigation : We don't just find vulnerabilities, we offer solutions, and validate fixes. You will assist service partners to fix security vulnerabilities, raise awareness around secure coding practices, and drive compliance with both internal and external security standards.
  • Research, Training, and Tool Development : Our threats are dynamic, you will need to understand your adversary, and perform research to stay ahead of emerging threats.
  • You will use your research, and that of your peers, to raise security awareness across Microsoft, improve tools and policies, and change the industry.

  • As a senior member on the team you should be able to bring the team along with you in critical scenarios and mentor the new folks as well act as a technical leader / mentor.
  • Qualifications

  • BS or MS in Computer Science, a related field, or equivalent experience
  • Strong coding skills including C#, ASP.NET, Javascript
  • 8+ years of experience testing web services, identifying and remediating OWASP top 10 security flaws, and understanding large complex systems quickly
  • Experience of penetration testing and / or static code analysis
  • Strong background in customizing static, dynamic and runtime analysis tools
  • Solid verbal and written communication skills
  • Solid teamwork and cross group collaboration skills
  • Ability to deal with ambiguity
  • Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.

    Benefits / perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

    Report this job
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form