Senior Security Operations Engineer – MAPP Partner Enablement

Share job

Required Qualifications:

• 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
  • OR a Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
• 5+ years of experience with the CVE lifecycle, exploitability assessments, and detection engineering principles.
• 5+ years of experience working with external partners or customers in a security or technical enablement context.
• 5+ years of experience being able to manage ambiguity, prioritize effectively, and deliver results.

Other Requirements:

• Microsoft Cloud Background Check. This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter
• Citizenship & Citizenship Verification: This position requires verification of citizenship due to citizenship-based legal restrictions. Specifically, this position supports United States federal, state, and/or local government agency customers and is subject to certain citizenship-based restrictions where required or permitted by applicable law. To meet this legal requirement, and as a condition of employment, the successful candidate’s citizenship will be verified with a valid passport.
• Controlled Technology: This role will require access to information that is controlled for export under export control regulations, potentially under the U.S. International Traffic in Arms Regulations or Export Administration Regulations, the EU Dual Use Regulation, and/or other export control regulations. As a condition of employment, the successful candidate will be required to provide proof of citizenship, U.S. permanent residency, or other protected status (e.g., under 8 U.S.C. § 1324b(a)(3)) for assessment of eligibility to access the export-controlled information. To meet this legal requirement, and as a condition of employment, the successful candidate’s citizenship will be verified with a valid passport. Lawful permanent residents, refugees, and asylees may verify status using other documents, where applicable.

Preferred Qualifications:

• 7+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection
  • OR Master's Degree or Doctorate in Statistics, Mathematics, Computer Science or related field.
• CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, and/or Security+ certification.
• Familiarity with Microsoft security products and services (e.g., Defender, Sentinel, Azure Security Center).
• Experience with compliance and regulatory frameworks (e.g., GDPR, ISO 27001, FedRAMP).
• Exposure to monetization strategies or business development in a security context.
• Proficiency in Microsoft Office and collaboration tools.
• Proven ability to lead cross-functional initiatives and influence outcomes without direct authority.
• Excellent communication and collaboration skills across technical and non-technical stakeholders.

Security Operations Engineering IC4 - The typical base pay range for this role across the U.S. is USD $119,800 - $234,700 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $158,400 - $258,000 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft will accept applications for the role until June 2, 2025.

#MSRC #MSRCJobs #SecurityIncentivesandPartnerships

• Operationalize Detection Guidance: Coordinate the end-to-end delivery of detection guidance for critical vulnerabilities, ensuring clarity, consistency, and partner usability—without directly authoring detection content.
• Partner Enablement: Serve as a strategic liaison to MAPP partners, helping them interpret detection logic, understand CVE impact, and accelerate deployment of mitigations.
• Business Strategy & Monetization: Collaborate within the MSRC, Legal, and Business Development partners to define monetization pathways for detection content, including licensing models, usage agreements, and value-based delivery frameworks.
• Program Orchestration: Manage the monthly MAPP Security Release process and other recurring partner deliverables, ensuring alignment across MSTIC, GHOST, Defender, and other internal stakeholders.
• Process & Tooling Innovation: Identify and implement improvements to detection guidance workflows, telemetry validation, and partner feedback loops.
• Impact Measurement: Define and track KPIs that demonstrate the effectiveness of detection guidance and partner enablement efforts, including adoption rates, time-to-protection, and customer coverage.
• Strategic Influence: Help position MAPP as a business enabler and strategic differentiator within Microsoft’s security ecosystem.

Other

• Embody our culture and values