Security configuration baseline settings are a key security control to protect our Azure cloud services. The security threat landscape is constantly evolving, and service owners must keep up with security threats and make required changes to security settings to help mitigate these threats.

In this role, you will identify security configuration baseline settings for Azure cloud services and identify opportunities to harden configurations by partnering with software engineers and security data analysts. You will have the opportunity to work with internal customers, external customers, and compliance auditors. Additionally, you will define requirements for building baseline experiences to support the baseline configuration lifecycle.

Responsibilities

• Contribute to expanding scope and coverage for the Azure Security Controls Benchmark and related cloud product benchmarks
• Work with a variety of Azure Resources including Compute, Analytics, Databases, Management and Governance and other Azure Products (https://azure.microsoft.com/en-us/services)
• Collaborate across the division and other organizations to establish and enable measurement of Azure, Dynamics 365, and Power Apps products
• Partner with multiple component teams to define and implement the end-to-end baseline lifecycle
• Ensure the ongoing documentation of the security configuration baseline lifecycle and change management processes for Azure Security Controls Benchmark
• Work with external customers to understand requirements and respond to feedback
• To be successful in this role, you must have knowledge of strong skills in written and oral communications, a can-do attitude and the willingness to tackle hard problems in innovative ways. You must also thrive in a team environment that values cross team collaboration and building on the success of others

Qualifications

Required Qualifications: 

• 2+ years of experience working on cloud products/services
• 1+  year/s of experience working in the Security domain ideally with experience as a security advisor in corporate, public, or private security

Preferred Qualifications:

•  2+years hands on experience defining security configuration baselines and writing risk assessments
• Advanced working knowledge of cloud products
• Great technical writing and verbal communication skills 
• Knowledge of industry standard and compliance regulations related to configuration baselines
•  Ability to work in a team environment that promotes collaboration 
• Bachelor’s degree a related discipline such as Computer Science or Computer Information Systems
• Advanced working knowledge of Windows System Internals and Linux Distros with a passion for evaluating detailed OS settings and how those settings inter-operate
• Knowledge of security monitoring

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter. 

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.  We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

#AzureSecCSS

#AzureSecOpen