Security Operations Engineer - Microsoft

Service Engineer

The mission of Microsoft Digital Security & Resilience (DSR) is to enable Microsoft to build the most trusted devices and services, while keeping our company safe and our data protected. ​As part of the Microsoft Security organization, and a steward of Microsoft and our customer’s data, a core function of Microsoft DSR is ensuring the security of every aspect of the business. Microsoft DSR is responsible for company-wide information security and compliance, with a strategic focus on information protection, assessment, awareness, governance, and enterprise business continuity. As customer zero, we deploy and secure these services inside Microsoft and then share best practices with enterprise customers at scale across the globe. We have exciting opportunities for you to innovate, influence, transform, inspire, and grow within our organization and we encourage you to apply to learn more! 

Job Description:

Security boundaries have changed, and identity is the new perimeter.   With such a shift, there is a strong emphasis on carefully analyzing, and in many cases, hitting Refresh on the components that comprise the enterprise identity and access management platforms as we know them.

Microsoft is seeking an identity and security focused service engineer to join the Digital Security & Resilience (DSR) organization as we undergo the journey to ensure that the right identities get access to the right resources at the right time, protected each step of the way.  

With your experience in Azure Active Directory and Identity & Access Management, you will help steer our own identity-centric digital transformation and support hundreds of thousands of employees as they seek to empower every person on the planet to accomplish more.

Key responsibilities:

• Provide engineering and operational support for a highly visible Identity platform 
• Drive increased efficiencies through automation 
• Own, triage, investigate and resolve service issues 
• Constantly focus on innovation to enable product improvements 
• Communicate and collaborate with stakeholders and team members effectively 
• Remain current on new technologies, methods and procedures
• Highly customer focused
• Candidates demonstrate that they have a deep understanding of the technical concepts relevant to technologies Azure, Identity and Access management
• Familiarity and demonstrated experience with SaaS, Single Sign On, Multifactor authentication solutions
• Experience with network tracing and troubleshooting (i.e.Fiddler, Wireshark and Netmon)
• Proven experience with troubleshooting authentication and connectivity issues
• Respond to and resolve emergent service problems and build automation to prevent problem recurrence.
• Highly effective communication and collaboration across teams
• Proficiency with one or more general purpose programming languages and/or scripting languages –PowerShell, Kusto Query Language. Other languages like C#, JavaScript will be an added advantage to this role

Responsibilities include but are not limited to:

• Troubleshoot and root cause issues across Identity service offerings and components to ensure SLAs are met.
• Measure, calculate, and improve service performance by driving scalable solutions back into the service
• Drive bugs/Feature Requests related to problem management tickets
• Document processes, best methodologies and technical instructions for Support Groups based off the problem management findings

Required Knowledge, experience and skills: 

• 3+ years of Expert-level knowledge on identity technologies: Azure Active Directory, Active Directory, Federation Services, Credential management
• 3+ years of Strong knowledge on PowerShell/Scripting Knowledge, Windows Services infrastructure to automate day to day activities.
• Proven experience with large scale Identity management 
• You have a strong customer focus and understand the importance of Live Site 
• Experience in supporting engineering/supporting Multi-Factor Authentication
• Extensive troubleshooting/debug experience
• Ability to understand, and reason about, interactions between complex systems. 
• Solid understanding of monitoring, alerting, and observability philosophies and best practices. 
• Ability to analyze, decompose, design, and integrate systems or systems architectures. 
• Experience with multiple OS platforms including Windows, Mac and Linux.

Preferred, not required:

• Familiar with Agile,SDL & SRE principles
• Phish resistant certificate-based authentication
• Azure AD Multi-Factor Authentication (Microsoft Authenticator app,Windows Hello for Business,FIDO2 security key,OATH hardware/software token
• Programming experience with C#
• Experience with Windows Conditional Access policies and multifactor authentication
• The ability to analyze problems and make appropriate decisions quickly
• Ability to drive large, complex programs and solutions
• Excellent interpersonal and group dynamic skills
• Strong written & verbal communication and presentation
• Understanding of cyber security products and concepts.

The ideal candidate will have experience in a team environment, experience running and designing enterprise scale services and platforms, technical depth in cloud platforms, agile development practices, and experience in designing & tuning telemetry. In addition, this position requires an individual who can demonstrate the ability to ensure highly resilient and scalable service designs through partnership with other members of the service team.

#DSR

#MSFTSECURITY

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.  We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.