Job Details
Posted date: Aug 08, 2025
There have been 7 jobs posted with the title of Security Engineer II all time at Microsoft.Category: Security Engineering
Location: Redmond, WA
Estimated salary: $158,000
Range: $100,600 - $215,400
Employment type: Full-Time
Work location type: Up to 50% work from home
Role: Individual Contributor
Description
The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world.Are you driven by the challenge of outsmarting cyber adversaries and making a tangible impact on organizational security? As a Cyber Security Analyst on our Investigations team within Cyber Defense Operations (CDO), you will be at the heart of our mission to safeguard critical assets and data. This is more than just a technical role—it’s an opportunity to shape the security posture of a global organization and contribute to a culture of innovation and resilience.
In this role, you’ll join a high-performing team that thrives on collaboration, curiosity, and continuous improvement. You will leverage cutting-edge security technologies, automation, and intelligence to proactively detect, investigate, and respond to sophisticated threats. Your work will directly influence security initiatives across the company, from building advanced detection capabilities to driving incident response and containment strategies.
You’ll have the chance to work alongside some of the brightest minds in cybersecurity, partner with internal and external experts, and contribute to the development of innovative solutions that raise the bar for cyber defense. If you are passionate about learning, eager to tackle complex challenges, and motivated by the opportunity to make a real difference, we invite you to join us and help shape the future of our cyber defense strategy.
Team Culture
At the heart of our Investigations team is a culture built on trust, curiosity, and a shared commitment to excellence. We believe that the best security outcomes are achieved when diverse perspectives come together to solve complex problems. Our team thrives on open communication, mutual respect, and a willingness to challenge assumptions in pursuit of better solutions.
We foster an environment where continuous learning is encouraged, and every team member is empowered to take initiative, share ideas, and drive innovation. Whether collaborating on high-impact investigations, mentoring colleagues, or exploring new technologies, you’ll find opportunities to grow both personally and professionally. We celebrate our successes, learn from our challenges, and support each other every step of the way.
If you’re looking for a place where your expertise will be valued, your voice will be heard, and your contributions will make a real difference, you’ll feel right at home on our team.
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.
• Threat Detection & Incident Response: Proactively detect, analyze, and respond to advanced threats, adversary techniques, and suspicious activities using intelligence and a wide range of security event data to identify and mitigate risks to systems and data.
• Comprehensive Investigations: Conduct detailed triage and in-depth investigations of diverse security events, implementing containment and mitigation processes, and driving issues to closure while participating in shift and on-call rotations for active incident handling.
• Collaboration & Communication: Work closely with internal security partners, threat intelligence teams, product groups, researchers, and detection engineers to identify threats, share insights, and communicate effectively with both technical and non-technical stakeholders.
• Automation & Tool Development: Build, deploy, and tune scalable systems and technical solutions that automate security event detection, response, and repeatable tasks, while identifying opportunities to improve efficiency in detection and response processes.
• Continuous Improvement & Innovation: Stay current on emerging vulnerabilities, threat landscape trends, and response strategies; innovate in detection methodologies and contribute to the development of advanced security detections and automation solutions.
• Security Program Enhancement: Leverage security business intelligence and analytics to drive prioritization, improvements, and efficiency within organizational security programs and proactively inform security initiatives across the company.
• Learning & Knowledge Sharing: Demonstrate enthusiasm for continuous learning, quickly adopt new technologies and concepts, and contribute to a culture of knowledge sharing and mentorship within the team.
Other : Embody our Culture and Values
Qualifications
Required Qualifications:Bachelor's Degree in Statistics, Mathematics, Computer Science or related field OR 3+ years of experience in cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response.2+ years of professional software development life-cycle experience in large-scale computing, modeling or one of the following: C#, JavaScript, or Python.Understanding of attack methods, vulnerabilities, exploits, and malware.Familiarity with Windows internals, Linux, and Mac OS environments.Qualifications Preferred:
Certifications such as CEH, CISSP, CISM, CCSP, GCIA, GCIH, GCFA, OSCP, Security+.Experience analyzing a wide variety of network and host security logs to detect and resolve security issues.Understanding of common threat analysis models such as the Diamond Model, Cyber Kill Chain, and MITRE ATT&CK.Deep understanding of system internals on Windows, MacOS, and Linux.Exposure to security-related subjects and trends such as digital forensics, reverse engineering, penetration testing, and malware analysis.Experience developing on Azure PaaS technologies (e.g., Functions, Storage, Logic Apps).Experience automating and developing with Python, Jupyter Notebooks, PowerShell, or R, and working with REST APIs.Experience correlating across large and diverse datasets (Azure Data Lake, Azure Data Explorer, Cosmos DB).Knowledge of network architecture (LAN and WAN) and the threat landscape.Knowledge of KQL is an added advantage.2+ years working with SQL-based databases.Strong verbal and written communication skills.Security Operations Engineering IC3 - The typical base pay range for this role across the U.S. is USD $100,600 - $199,000 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $131,400 - $215,400 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay
Microsoft will accept applications for the role until August 16th, 2025.
#CDO #ICE
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
Check out other jobs at Microsoft.