aicareerspace
Back to jobsJob overview

About the role

Principal Security Operations Engineer at Microsoft

Required Skills

security engineeringsecurity operationsautomationkql/kustocloud securitythreat detectionsiemincident response

About the Role

Principal Security Operations Engineer role focusing on risk burndown for Microsoft's critical cloud services. Blends technical security engineering with program management to drive cross-team initiatives and automate security controls. Directly impacts Microsoft's cloud security posture through data-driven risk mitigation.

Key Responsibilities

  • Investigate security incidents and provide technical support for high-impact response efforts
  • Partner across engineering and security teams to coordinate cross-team efforts and resolve blockers
  • Apply data-driven approach to define, track, and report risk metrics for leadership visibility
  • Serve as technical advisor and mentor to security engineers on automation and secure-by-design patterns
  • Drive automation and efficiency by improving pipelines, validation frameworks, and onboarding flows

Required Skills & Qualifications

Must Have:

  • Bachelor's Degree in Statistics, Mathematics, Computer Science or related field OR 7+ years experience in software development lifecycle, large-scale computing, modeling, cyber security
  • 7+ years experience in security engineering, security operations, or technical program management in large-scale cloud/enterprise environments
  • Understanding of security graph models, adversary techniques, attack path analysis, or breach path quantification
  • Hands-on experience with automation of telemetry/logging pipelines to validate security coverage at scale
  • Demonstrated expertise in identity, secrets, or infrastructure security with hands-on risk reduction experience

Nice to Have:

  • Master's Degree or Doctorate in Statistics, Mathematics, Computer Science or related field OR 10+ years experience in software development lifecycle, large-scale computing, modeling, cyber security
  • CISSP, CISA, CISM, SANS GCIA, GCIH, OSCP, Security+ certifications
  • 2+ years leading a security function (e.g., SOC, TVM)
  • Experience building automated solutions for vulnerability management, threat detection, and security configuration drift
  • Experience with AI/ML in security contexts such as anomaly detection or predictive modeling

Benefits & Perks

  • Industry leading healthcare