New job, posted less than a week ago!
Job Details
Posted date: Feb 24, 2026
There have been 8 jobs posted with the title of Principal Security Software Engineer all time at Microsoft.Category: Software Engineering
Location: Redmond, WA
Estimated salary: $247,100
Range: $163,000 - $331,200
Employment type: Full-Time
Work location type: 0 days / week in-office – remote
Role: Individual Contributor
Description
OverviewAs a Security Software Engineer on the Copilot Security Team, you will serve as a Principal level technical leader responsible for designing, building, and governing security‑critical software systems that protect Microsoft’s agentic and autonomous AI experiences at scale.
You will operate across the full Copilot security lifecycle—threat discovery → architectural design → mitigation engineering → production integration → continuous validation—delivering durable, reusable security defenses rather than one‑off fixes. This role combines deep hands‑on engineering with system‑level security thinking, enabling the team’s mission to deliver secure‑by‑design architecture for Copilot across products and integrations.
Success in this role is measured by measurable risk reduction, improved platform resilience, and the long‑term sustainability of Copilot’s security posture—not by isolated vulnerability closures.
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Responsibilities
Security Engineering & Technical LeadershipAct as a technical authority for security engineering decisions across Copilot services, shared platforms, and integrations.Lead threat modeling for complex, distributed, and agentic systems, identifying systemic risks rather than isolated flaws.Drive vulnerability research, exploit analysis, and red‑team collaboration to surface novel and emerging attack classes.Participate in and lead aspects of incident response, post‑incident analysis, and translation of incidents into durable mitigations.Architecture & Defensive Systems EngineeringDesign and ship security defenses in production, including enforcement layers, guardrails, monitoring, detection, and evaluation tooling.Build reusable security modules and services that can be adopted broadly across Copilot components (BizChat, Office Apps and agents).Define and review security architecture patterns, influencing both new feature design and remediation of legacy systems when incremental fixes are insufficient.Risk Management, Governance & MeasurementEstablish and operate risk management frameworks, including maintaining and prioritizing entries in a central risk registry.Translate threats into measurable security requirements, metrics, and dashboards that demonstrate real‑world risk reduction.Drive continuous validation through telemetry, monitoring, and evaluation pipelines, closing the loop from discovery to evidence.Cross‑Functional Influence & MentorshipPartner deeply with adversarial testing, applied science and evaluation, and embedded engineering squads to deliver end‑to‑end security outcomes.Mentor senior and mid‑level engineers through design reviews, threat‑model coaching, and architectural guidance.Communicate complex security tradeoffs clearly to engineering leadership, PM/TPM, and executive stakeholders.
Qualifications
Required Qualifications:
Bachelor's Degree in Computer Science or related technical field AND 8+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience.Preferred Qualifications:Master's Degree in Computer Science or related technical field AND 12+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or PythonOR Bachelor's Degree in Computer Science or related technical field AND 15+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience. Experience serving as a technical lead or architectural reviewer for security‑sensitive systems across multiple services or teams.Experience conducting vulnerability research, red teaming, or adversarial testing, including identifying novel or emerging attack classes.Experience participating in or leading incident response, post‑incident analysis, and translating incidents into durable, reusable security improvements.Experience designing reusable, platform‑level security solutions that eliminate classes of vulnerabilities rather than one‑off fixes.Experience establishing or operating risk management frameworks, including maintaining risk registries, defining mitigation priorities, and tracking measurable risk reduction.Experience building or operating security metrics, dashboards, or evaluation pipelines that demonstrate real‑world security impact.Experience mentoring senior engineers through design reviews, threat‑model coaching, or architectural guidance.Experience securing AI‑driven, agentic, or tool‑invoking systems, including prompt‑based architectures or orchestration layers.Experience communicating security architecture decisions and tradeoffs to engineering leadership, PM/TPM, and executive stakeholders.Ability to operate effectively in highly ambiguous, fast‑evolving security environments, particularly those involving autonomous or generative AI systems.Willingness to engage deeply across organizational boundaries to drive durable security outcomes.Work‑site requirements vary by location and follow organizational guidance.This role may involve working with sensitive or confidential AI model data in accordance with Microsoft Responsible AI and Security policies.Experience designing, building, and operating security‑critical software systems in production, including responsibility for correctness, availability, performance, and long‑term maintainability.Experience leading threat modeling efforts for complex, distributed systems and driving mitigations from design through production deployment.Experience identifying, analyzing, and remediating security vulnerabilities in collaboration with security response, red team, or incident response partners.Experience building or contributing to security defenses such as enforcement layers, guardrails, detection, monitoring, or evaluation tooling in production environments.Experience working with distributed systems, including service‑to‑service communication, identity, authorization, telemetry, and failure isolation.Ability to meet Microsoft, customer, and/or government security screening requirements.#Copilot, #LLM, #Agent, #Security
Software Engineering IC6 - The typical base pay range for this role across the U.S. is USD $163,000 - $296,400 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $220,800 - $331,200 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:
https://careers.microsoft.com/us/en/us-corporate-pay
This position will be open for a minimum of 5 days, with applications accepted on an ongoing basis until the position is filled.
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance with religious accommodations and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.