Principal Security Operations Engineer

About The Position

Requirements

• Doctorate in Statistics, Mathematics, Computer Science, or related field AND 3+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
• OR Master's Degree in Statistics, Mathematics, Computer Science, or related field AND 4+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
• OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 6+ years experience in software development lifecycle, large-scale computing, threat modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), or operations incident response
• OR equivalent experience.

Nice To Haves

• 9+ years' experience in identifying security controls/detection, security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.
• 3+ years people management
• 10+ years experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection
• CISSP, OSCP, GCIA, or SANS certifications is a plus.

Responsibilities

• Maintains strategic focus on analytical efforts of teams; ensures consistent access to resources needed for state-of-the-science metrics and key performance indicators (KPIs) needed to identify and mitigate security issues. Partners with teams to meet required objective and key results (OKRs).
• Sets direction for team in developing and prioritizing recommendations to improve security posture through scaled tactical tools. Collaborates and influences across teams as needed.
• Drives team outcomes in identifying, recommending, developing, and implementing automation to improve efficiency and effectiveness of security operations. Drives the lifecycle of specific automation and how it fits into the overall automation landscape. Accountable for measurable business impact of automation improvements. Drives strategic alignment between products and technology; mitigates product deficiencies by driving requirements into products. Cascades strategic vision throughout teams appropriately (e.g., open source, products, technology).
• Is accountable for decisions regarding supplier portfolio and service levels needed to support security strategy and threat mitigation. Collaborates with internal and external parties to improve the security posture of mutual customers.
• Maintains strategic perspective on customer and partner experience; elevates trends and mitigation strategies with leadership as appropriate. Secures resources to make necessary improvements to enhance customer and partner experience. Educates, guides, and aligns to reduce risk in the security space for organizations.
• Influences decisions regarding resource allocation to detection priorities. Establishes strategic direction and focus on intrusion direction; partners with stakeholders to ensure prompt and thorough mitigation of identified issues. Drives partnership with engineering teams to align priorities related to detection in publicly released products and services.
• Maintains teams' focus on researching attempted or successful efforts to compromise systems security, including seeing through to resolution and aligning partnerships as needed. Ensures teams have comprehensive response plans and resources needed to prevent recurrence. Drives highest severity incidents that have companywide impact. Displays strong command and control presence to lead through extremely ambiguous challenging situations quickly and calmly. Ensures learnings from incidents get integrated into protective systems and processes.
• Sets security policy and standards strategy and ensures resources are dedicated to develop and implement security policy accordingly. Drives mitigation of security strategy gaps for the organization and trends in the industry. Defines security policies that align with Microsoft strategy and support achieving global security compliance and risk mitigation.
• Establishes accountabilities for teams and leaders to execute security controls and countermeasures needed to uphold security standards. Contributes to industry thought leadership to ensure Microsoft is best-in-class; aligns with strategic vision. Provides strategic guidance to teams and stakeholders regarding managing security gaps.
• Elevates work of team to effectively prioritize threat analysis efforts and partners appropriately on identified threat patterns. Guides teams and secures resources and partnerships as needed to address threats. Integrates available threat insights to drive overall security strategy.