Senior Service Engineer (Security)

Microsoft Digital (MSD) builds and manages the critical products and services that Microsoft runs on. We boldly pursue big ideas that power transformational advances at Microsoft and for our customers, while helping Microsoft teams work smarter, faster, and more securely every day. Microsoft Digital employees have deep technical and business expertise, customer insights, and a clear point of view that comes from first-hand, large-scale experience with Microsoft and industry solutions. We are engineers, technology leaders and experts, digital transformation change agents, and customer advocates.

As a Senior Service Engineer (Security) in the Network Defense Engineering team, you will empower network engineering and software development teams to achieve their security, reliability, and availability goals. You will take ownership of service design by driving efforts to identify, define, recommend, and build optimal configurations of technology solutions, considering cost management, service health, security, resiliency, reliability, and scalability of network infrastructure services. You will be maintaining momentum across key initiatives such as tools and engineering, architecture and service security reviews, and proactive threat detection. You’ll build scalable ACLs, control-plane protections, and telemetry-driven detection systems using vendor CLI (Arista, Cisco), secure configuration standards, and tools like KQL and regex. This role requires systems-level awareness; understanding how changes in one area can affect broader environments. You’ll collaborate with networking and security teams to harden systems, reduce attack surface, and respond to threats. You’ll also support penetration testing, SOX compliance, and lead security audits and reviews. Expect to advocate for secure practices, influence security policies, and represent the team in cross-functional efforts. You will also conduct deep dive analyses in vulnerability management and ensure compliance of network infrastructure, while adhering to and promoting prescriptive guidance for security, privacy, and compliance standards. You will leverage your ability to analyze and interpret data to support AI-driven security insights and automation. You will have experience managing, monitoring, and securing network infrastructure components critical to service reliability. Deep knowledge of security frameworks, vulnerability management, and threat detection.

This position is based at the Redmond campus with 3 days work in the office and 2 days work from home. Relocation support within the United States is available. 

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Required Qualifications:

• Bachelor's Degree in Computer Science, Information Technology, Bachelor's Degree in Computer Science, Information Technology, or related field AND 3+ years technical experience in software engineering, network engineering, service engineering, or systems engineering
  • OR equivalent experience. 
• 3+ years experience administering physical networks (LAN/WAN, routers, switches, firewalls) in enterprise or hybrid environments. 
• Experienced implementing network security measures (e.g., AAA systems, VPNs, firewalls, segmentation, credential rotation). 
• Experienced with network protocols (TCP/IP, DNS, DHCP, BGP, OSPF), and tools like Cisco IOS, Palo Alto. 
• Experienced with cloud networking (Azure, AWS) and hybrid infrastructure management. 
• Experienced with diagnostic and problem-solving for network performance and security issues. 
• Experienced creating and maintaining comprehensive network documentation and diagrams. 

Preferred Qualifications:

• Bachelor's Degree in Computer Science, Information Technology, or related field AND 8+ years technical experience in software engineering, network engineering, service engineering, or systems engineering
  • OR equivalent experience.
• Industry certifications such as CCNP, CCIE, Security+, CISM, OSCP, or SANS GCIA/GCIH
• Experience in SOC, SecOps, or InfoSec environments, including threat suppression and incident response

Service Engineering IC4 - The typical base pay range for this role across the U.S. is USD $119,800 - $234,700 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $158,400 - $258,000 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft will accept applications for the role until October 5, 2025.

You will define standards, manage access, identify and address security gaps, leverage advanced data analysis skills for solution management, and publish self-service guidance and services. You will independently implement reliable, scalable, and high-performance solutions across teams, respond to incidents during on-call (DRI) rotations, including complex incidents with major customer or business impact, and drive incident management, root cause analysis, and automation for prevention of recurring issues.

• You will collaborate within and across teams, mentor and coach other engineers, share insights and best practices, and foster operational excellence by coordinating multiple work streams and resources in crisis situations. This role requires capabilities in continuous improvement, failure analysis, quality assurance, capacity management, cloud infrastructure services, distributed systems, network hardware, project management, risk analysis, and safeguarding network and data integrity.
• You’ll independently implement high-performance solutions across teams while maintaining a quality checklist. You’ll also create and monitor telemetry data and influence analytics to better identify patterns that reveal errors and unexpected problems.
• You will respond to incidents and complex issues by identifying and troubleshooting the issue, deploying the appropriate fixes, and implementing automations to prevent recurring issues. You’ll also follow prescriptive guidance for security, privacy, and compliance standards.
• You will collaborate within and across teams by proactively and systematically sharing information. You’ll also resolve conflicts across teams and engage with partners to meet mutual objectives.
• You will improve the development and operations of related sets of systems, platforms, or products by sharing insights and best practices. You’ll do this by continually developing your understanding of insights and best practices, and by mentoring other engineers.