Security Operations Engineer II

Share job

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions.

The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate.

Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

• Develop and maintain automation solutions to enhance Security Operations Centre (SOC) efficiency.
• Provide technical insight on automation platforms, scalable automation solutions, and security engineering practices.
• Collaborate with cross-functional teams to define scope, responsibilities, and automation strategies.
• Continuously improve automation frameworks to drive operational excellence.
• Align with Microsoft’s values through teamwork, coaching, and knowledge sharing.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

• 5+ years of experience in Security Operations or related automation roles.
• Strong experience with security automation tools such as SOAR, SIEM, and scripting-based automation frameworks.
• Hands-on experience with Microsoft Cloud Security Technologies such as Azure Sentinel, Azure Defender, MDE, Azure Data Explorer, and Azure Log Analytics.
• Experience with automation tools such as Logic Apps, Power Automate, or similar Low Code/No Code platforms.
• Proficiency in scripting languages like Python, PowerShell, or equivalent for automating security tasks.
• Experience with data processing and analysis using KQL, SQL, Splunk, or PowerBI.
• Strong understanding of SDLC, DevOps methodologies, and CI/CD pipelines.
• Ability to work effectively in ambiguous environments and adapt to evolving security challenges.
• Excellent problem-solving, analytical, and communication skills.
• Ability to collaborate with security analysts, engineers, and leadership to drive automation initiatives.

• Design and implement automation solutions to improve security operations efficiency and effectiveness.
• Identify automation opportunities and develop scripts, workflows, and integrations.
• Contribute to engineering requirements that enhance security posture through automation.
• Work with security teams to enhance detection, triage, and response processes using automation.
• Ensure high availability and reliability of automation platforms.
• Develop and maintain technical documentation related to automation workflows and integrations.
• Analyze operational performance data and identify opportunities for automation-driven enhancements.
• Zartner across teams to drive holistic solutions to systemic security challenges.
• Support SOC teams by developing automation tools for precision alerting, faster triage, and optimized response processes.
• Advocate for automation best practices and innovative solutions within the organization.