Principal Software Engineer - Identity & Governance

Microsoft•Redmond, WA

About The Position

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. We are looking to fill the role of Principal Software Engineer - Identity & Governance. Our team drives identity security and access governance by eliminating standing privileges through least-privilege access (LPA) and delivering just-in-time access via an advanced Privileged Access Management (PAM) solution. This includes approval workflows, session controls, and telemetry for high-risk accounts and workloads. We’re also pioneering AI-driven agents that automate compliance checks, streamline access reviews, and detect anomalies - helping enterprises strengthen security posture while maintaining agility at scale. Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Requirements

Bachelor's Degree in Computer Science or related technical field AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience.

Nice To Haves

Bachelor’s or Master’s Degree in Computer Science or related technical field OR equivalent experience.
8+ years of technical engineering experience, including: - Strong coding and design skills in C++, .NET, Java, Python, TypeScript or equivalent experience - Expertise in distributed systems, cloud-native architectures, and identity/security solutions. Deep understanding of authentication and authorization protocols (OAuth, OpenID Connect, SAML). Proven experience building secure, scalable enterprise solutions on Azure or similar cloud platforms.
Proven experience in architecting and delivering secure, scalable enterprise solutions. Deep knowledge of security best practices, identity protocols (OAuth, OpenID Connect, SAML), and experience implementing secure software solutions. Familiarity with cloud-native architectures, distributed systems, and modern DevOps practices.

Responsibilities

Lead design and delivery of complex, scalable features that strengthen identity security and access governance, ensuring resilience and exceptional user experience.
Drive technical strategy and architecture decisions across multiple services, influencing partner teams and aligning with compliance and security requirements.
Champion modern engineering practices, including AI-driven approaches, automation, and cloud-native patterns, across the full development lifecycle.
Mentor and guide engineers, fostering technical excellence and continuous improvement in security, reliability, and performance.
Collaborate cross-org to solve challenging technical problems, streamline processes, and reduce operational costs while improving live-site health.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume