Microsoft Azure is undergoing explosive growth (100%+ y/y) as customers around the world realize the benefits of moving their services and applications on to the cloud. Security and reliability are the foremost concerns for our customers as they move their services to Azure, outside of their corporate network. The Azure Security team ensures that Azure is the most secure and resilient cloud platform. The team owns the core security services spanning across the Azure stack, providing low level platform services as well as protection for customer applications running in the cloud. We are responsible for identity and access management, secrets/key management, encryption and data protection, Azure security monitoring, anti-malware protection, secure boot and attestation of customer VMs, Linux security, and other security capabilities for the Azure platform.
Access management team is part of Azure Security team acting as the gate keeper for access to Azure platform. The team owns the Just-In-Time Access Service (JIT), Access Monitoring Service (AM) and Breakglass Access Alerting Service. These services collectively enforce the principle of least privilege by ensuring that only authorized users and clients have minimum needed access to core Azure services, when required and for the duration of requirement.
The JIT service is a policy-driven, context-sensitive access management system that provides temporary authorization to users to access Azure platform services. All users of core Azure platform services use JIT to gain access to services and resources for operational needs. Access Monitoring Service is responsible for actively monitoring potential, effective and actual access to Azure production systems and alerting when access anomalies are detected. Our target systems for access management and monitoring include all Azure infrastructure services including compute, networking, storage, monitoring, security and engineering systems. Breakglass alerting service fires near realtime notifications when people use accounts that are meant to only be used for breakglass scenarios. We are looking for very technical and passionate developers to own feature areas in these services and realize our vision of a secure Azure platform.
* 4+ Years of professional experience working in Software Engineering
* Bachelor's degree in Computer Science, or equivalent
* Good coding skills in C#/C/C++ and good problem-solving skills
* Knowledge of Security is a plus
* Knowledge of running and supporting Enterprise Scale Services is a plus
* Knowledge of User Interface Design is a plus
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
In this role, you will own or more feature areas in JIT to enable resource management, extend JIT to support new types of resource, build REST APIs for JIT and Access Monitoring Service, develop auditing frameworks and libraries and contribute to various other very interesting features in access control. We have projects to improve the JIT User Interface and so candidates with interest in UX development are also welcome to contact. Candidates for this role are expected to be self-driven in owning their feature areas, ensuring high-availability, tracking performance with monitors and alerts and working closely with our partners to deliver features. With security being a top-priority for Azure, this role gives excellent and highly visible opportunities to make a significant impact in securing Microsoft's vision of the cloud.
The position requires that the candidate is detail and results oriented with a good balance of passion for technology, problem solving skills and eagerness to accept ownership and accountability.
Microsoft develops, licenses, and supports software, services, devices, and solutions.