Principal Software Engineer

Share job

Looking to growth hack your career? Looking to be part of the transformational Microsoft Azure cloud journey as part of the C+AI team? Passionate to leverage latest technologies to enable the next big opportunity in the Commercial Cloud business of Microsoft? Passionate about designing and building highly secure services and infrastructure, hand-on understanding of cybersecurity and cyberthreats? Passionate to engineer high scale end to end capabilities on Azure which powers $120B+ of revenue? Obsessed about customers and partner experiences?

The Azure Commerce + Ecosystems (C+E) team enables one of Microsoft’s most business-critical needs, building the services and tools to enable commerce across Microsoft. Given Microsoft's global presence in over 240 markets, close to 150 million transactions a day, and billions of dollars in revenue, commerce services need to be true internet scale and have state of the art availability, reliability, security and responsiveness.

Join the Azure Commerce + Ecosystems (C+E) team – Commerce Financial Services (CFS) Team that is responsible for running Microsoft Commercial Commerce engine, licensing and fulfilments for millions of customers, through millions of transactions per day and processing of $120B+ of Microsoft revenue running completely on Azure platform leveraging multitude of Azure offerings across PaaS, IaaS and serverless.

As we embark on our next rung of growth, we have bold goals to build a modern commerce platform for Microsoft which focus on simplification of licensing, faster go-to market, improve experience of partners and customers in both commercial and consumer space.

Security is the most critical priority for all the current services that we have and also the modern services that we are building. Every day we are investing and maturing our security posture, and we aspire to have a world class “commerce and finance grade” secure services and related operations.

Our Team Culture:

• Work environment where exploration, experimentation and innovation are encouraged
• Modern customer experiences by latest technologies and matured engineering processes
• Empowered individuals and teams to realize their full potential
• Data and insights driven roadmap of products and decision making
• Focus on outcome, customer pain points and high quality of delivery

• Excellent technical understanding and hands-on experience on designing, delivering and operating services with deep focus on multiple aspects of cybersecurity, threat intelligence, risk mitigation and overall protection covering service, data and compliance.
• Excellent understanding of industry leading cybersecurity standards, practices and products.
• In-depth technical understanding of Security and Data Security Architectures, Identity Management and Lifecyle, Azure/Cloud Defender Products, Microsoft Information Protection Standards, Data Classification and Protection, DDOS Protection Techniques, SIEM, CASB, WAF, Secure Gateways, PKI, Threat Detection Techniques, Architecture concepts like Zero Trust, Security Posture Analysis and Maturity of different Azure/Cloud Resources, Code/Infrastructure/Network Level Security.
• Prior experience in modernizing security architecture and posture of services and products.
• High standards for security domain knowledge along with a track record for writing quality code on popular platforms and languages.
• Good understanding of AI Security and overall Responsible AI practices.
• Excellent communication skills and great ability to drive security modernization conversation with global security experts within organization.

We are looking for a Principal Software Engineer with primary expertise on security. The ideal candidate should have a blend of technical skills in building and managing secure services, excellent understanding, experience and passion on cybersecurity. Someone who can define and drive security posture of commerce services and bring industry standards to every architecture, design and infrastructure that we build.

Below are some of the high-level responsibilities that you will be taking care -

• Accountable to develop and execute security strategies, a primary point of contact for security posture modernization for all the services. You will ensure consistent adoption of security practices across services.
• Review the design of services from a security and threat perspective to identify vulnerabilities and weaknesses in the architecture, make appropriate recommendations and guide teams to implement those recommendations. Remediate blockers for the team in their design or execution.
• Drive security testing and periodic drills, examine the testing results in detail, look for vulnerabilities and weaknesses, drive repair items and solutions to address identified gaps.
• Deliver security strategy and related technical presentations to leadership, influence for right investment and prioritization security modernization execution, provide status of security modernization, drive security architecture design sessions and contribute towards overall awareness and maturity of people’s understanding on security.
• Responsible for engaging and collaborating with members from product research, design and PM disciplines as well to make sure that security is considered in comprehensive manner in all stages of development.