Job is more than three months old.
Job Details
Posted date: Aug 14, 2024
There have been 6 jobs posted with the title of Senior Security Technical Program Manager all time at Microsoft.Category: Program Management
Location: Redmond, WA
Estimated salary: $183,700
Range: $117,200 - $250,200
Employment type: Full-Time
Travel amount: 25.0%
Work location type: Up to 50% work from home
Role: Individual Contributor
Description
Security is foundational to all product and service offerings from Microsoft. Microsoft’s Secure Futures Initiative is the number one priority for the company.We are hiring a Senior Security Technical Program Manager in Redmond, WA with a deep-rooted interest in identifying security issues before they impact millions of users.
As part of the Microsoft AI(Artificial Intelligence) Security team, you will collaborate with product engineering to innovate software design to defend against a continued and emerging security threat landscape.
As a core member of the Application Security team, you will advise teams on critical security design elements, proactively identify architectural vulnerabilities and collaborate on solutions and design modifications to improve the overall security posture of MAI offerings. You will partner with product engineering, penetration testers and security personnel, acting as a subject matter expert and mentor to others on the security discipline.
Start your journey with Microsoft AI, Edge Browser, Microsoft Search and Bing, Microsoft News, Microsoft Maps and Microsoft Advertising today!
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Be the security contact for teams building new innovative services and technologies in the next version of Microsoft AI.Specify new security controls needed to reduce risks identified from security reviews and threat modelling exercises or from security incidents and specify these new controls as requirements to be added the organization’s SDL (Security Development Lifecycle) process.Proactively research new technologies, make technology recommendations.Drive and cultivate a positive culture of security across the engineering teams. Train product engineering to recognize bad patterns and innovate ways for developers to learn to identify security bad practice.Work with our security engineering team and product teams to identify, define and implement security controls and automationLeverage a broad and current understanding of security to envision new protections and baseline secure by design beahviorEmbody our Culture and Values
Qualifications
Required/ Minimum QualificationsBachelor's Degree AND 4+ years experience in engineering, product/technical program management, data analysis, or product development
OR equivalent experience.
2+ years experience managing cross-functional and/or cross-team projects.
4+ years experience in security development and engineering, security consulting, or application penetration testing.
2+ years of experience with Security threat modeling for new features.Preferred/Additional Qualifications:
Experience with application security standards such as OWASP(Open Web Application Security Project) ASVS(Application Security Verification Standard)/Top 10, CWE (Common Weakness Enumeration) 25.Experience with common security libraries, security controls, and common security flaws.Outstanding collaboration and partnership skills, with proven ability to drive results across teams.Coding skills in one or more general purpose scripting languages.Experience managing security compliance related engineering programs.
Familiarity with web proxies such as Burp, OWASP ZAP(Zero Hour Auto Purge) or Fiddler.
Development or scripting experience. Java, Ruby, Ruby on Rails, GraphQL, REST.
Demonstrated experience in successfully designing, delivering, and iterating on complex projects with a diverse set of stakeholders.
Experience conducting security assessments on Web Applications, Mobile Applications, Cloud Services running on variety of operating systems including containers.Technical Program Management IC4 - The typical base pay range for this role across the U.S. is USD $117,200 - $229,200 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $153,600 - $250,200 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay
Microsoft will accept applications for the role until Aug 21, 2024
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
#Search# #WWE# #Security# #Penetration Testing# #Pen Test#
Check out other jobs at Microsoft.