Microsoft Azure is at the center of Microsoft's cloud services strategy. Azure brings together virtualization, compute, storage, authentication, authorization, media and more to enable anyone to bring their business in the cloud. The Azure Security Engineering organization focuses on ensuring a secure Azure platform for developers and a secure experience for millions of users worldwide. The Azure Security Assurance team is seeking a Security Engineer with demonstrated experience in network, platform and application layer security. As part of the Security Assurance team, you will perform penetration testing, vulnerability analysis, develop software to remediate classes of defects, and provide consultation to teams to help them develop software and services securely. We are looking for an engineer with the ability to work independently and collaboratively, to work on and learn about leading edge security challenges. You will play a key role in advancing security by working with other Security
Penetration testing: examine chosen target systems in detail, looking for vulnerabilities and weaknesses, and, in collaboration with other penetration testing and red teams around the company, demonstrate the value of an "assume breach" mentality. Emerging Threat and Vulnerability Research: Be on the forefront of emerging threats which affect cloud services through collaboration, independent study, and original research, including proactive security research on the technologies that Azure and our customers utilize and depend on. A very high level of creativity and thirst for knowledge are a must
Required Qualifications: Bachelors of Science, Bachelors, BA, BA CS, Computer Science, Mathematics, Engineering degree or equivalent experience 2 years of experience in security and software engineering Preferred Qualifications: Expert-level knowledge in multiple classes of vulnerabilities, including cross-site scripting, buffer overflows, SQL injection, TOCTOU vulnerabilities, cryptographic weaknesses, insecure direct object references, and others Strong coding skills in one or more popular languages and platforms, including C/C++, C#, Java, Javascript/Typescript, SQL, assembly, Ruby, Python,