Does protecting over 1 billion customers and making the cyber world a better place sound exciting? Do you have what it takes to be part of the top security response team in the world? Are you looking for a challenging cross-company role in Incident Response and ready to defend customer security, privacy, and trust in Microsoft? This may be the opportunity for you.
The Microsoft Security Response Center (MSRC) seeks motivated, experienced security professionals to join our team. As the company accelerates our transformation in a mobile-first, cloud-first world, there has never been a more exciting time to be part of the MSRC. We strive to always serve our customers at the highest-level while being constantly agile and adopting the challenger mentality that will transform Microsoft.
There are few places in Microsoft that have a direct impact on as many customers as the Microsoft Security Response Center's Incident Response Team. This Senior Security Program Manager position is responsible for coordinating Microsoft's response to the most critical security issues the company faces. When you read in the news about hackers, when the integrity of our products is at stake, or when an 0-day vulnerability is being used to attack customers, the successful candidate will work with teams across Microsoft to rapidly defend Microsoft and its customers against these threats.
The opportunity for leadership that accompanies this individual contributor position is unique. As the successful candidate you will regularly connect with the most senior leaders at Microsoft, up to and including the CEO. On an accelerated schedule, you will assess security threats and drive teams across the company, using methods that include software fixes, anti-malware signatures, documentation, press statements, and more. Using the SSIRP process, you will manage and lead all parties, make key risk decisions, and inform executive leadership in an overall effort to protect customers, make Microsoft products and services more secure, and protect Microsoft brands. The SSIRP process extends across all Microsoft services, devices, and other products, and has been a company-wide One Microsoft effort for over 10 years.
* 5 years or more experience in project management or incident response * Minimum of 2 years' experience working directly on product or service security vulnerabilities, or incident management.
* A degree in Computer Science, or similar field, or its equivalent experience. * A demonstrated interest in information security or prior experience in product development and product release are a plus.
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
This role requires a commitment beyond most roles at Microsoft including on-call work and some non-standard work hours. You will regularly make high-stakes decisions with executive visibility and company-wide impact on extremely short timelines with limited information. You will be part of a team that manages high-severity privacy and network incidents, offering further opportunities for growth. Excellent communications, strong interpersonal awareness, attention to detail, and the ability to foster cooperation and trust across groups are key success factors for this role. Strong program management skills for organizing information, breaking down complex problems, and working effectively in situations involving uncertainty are must-haves. A solid understanding of Microsoft organizations, technologies and products, especially as they relate to security, will ensure a quick start. Microsoft organizations, technologies and products, especially as they relate to security, will ensure a quick start.
Microsoft is a technology company that develops and supports software, services, and devices.