Senior Software Engineer

Overview About the Team Consumer Copilot Security is at the core of Microsoft's mission to deliver trusted, human-centered AI experiences. We make security and resilience intrinsic to every Copilot interaction—across devices, platforms, and ecosystems. Our work spans secure identity flows, defenses against emerging threats like prompt injection, and privacy-first systems that scale globally. We are looking for a Senior Software Engineer to join our team. Copilot is becoming an autonomous system that reasons, plans, and acts on behalf of hundreds of millions of users—across consumer and enterprise experiences, surfaces, and modalities. It books meetings, drafts documents, executes multi-step workflows, and orchestrates actions across tools, data, and services. The scope and autonomy are expanding fast. So is the trust surface. Copilot Security & Trust Engineering makes Copilot a trusted companion—safe to use without fear as autonomy becomes the default. The Identity & Isolation team owns the foundational systems that make this possible: authentication and identity experiences that reduce friction and increase trust, workload isolation and adaptive sandboxing that constrain agent authority and blast radius, and agentic access control that governs what Copilot can do, with what data, and on whose behalf—continuously and at runtime. About the Role Copilot for consumers depends on a rock-solid identity and isolation foundation that makes personalized AI experiences safe and seamless across Windows, Edge, web, and mobile. As Copilot evolves into an agential system—planning, reasoning, and taking actions on behalf of users—the identity layer must evolve with it: authenticating users across surfaces, authorizing agent actions at runtime, isolating execution contexts, and enforcing trust boundaries that hold under adversarial pressure. We're seeking a Senior Software Engineer to design and build core identity and isolation systems across Copilot experiences, partnering closely with Microsoft's central identity platform and related teams. You'll own significant features end-to-end—from design through production operation—tackling novel risks at the frontier of agential AI while applying proven identity patterns where they fit and inventing new ones where they don't. This role demands solid backend engineering skills, working knowledge of modern consumer identity protocols, and the ability to ship reliable, secure systems at scale. You'll operate with a high degree of independence, make sound trade-offs between risk and velocity, and mentor others on the team. Why This Role Matters Your work will secure AI experiences for hundreds of millions of users worldwide. Most identity roles focus on maintaining existing systems with well-understood patterns. Here, the problems are new—how do you manage authentication across chained agent tool calls? How do you enforce authorization boundaries when an agent's plan evolves at runtime? How do you isolate execution contexts that share memory and data—and your code ships into a product operating under real-world adversarial pressure? Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. Starting January 26, 2026, Microsoft AI (MAI) employees who live within a 50- mile commute of a designated Microsoft office in the U.S. or 25-mile commute of a non-U.S., country-specific location are expected to work from the office at least four days per week. This expectation is subject to local law and may vary by jurisdiction.