Security Operations Engineer 2

Share job

Date posted

Aug 05, 2025

Job number

1857067

Work site

Up to 50% work from home

Travel

None

Role type

Individual Contributor

Profession

Security Engineering

Discipline

Security Operations Engineering

Employment type

Full-Time

The Cloud & AI organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Microsoft is one of the largest enterprise service companies in the world.

The Identity & Access Management (IAM) Protect team manages Entra tenants for all Microsoft Cloud. We are looking for a Security Operations Engineer II who will join our mission of protecting Microsoft Cloud by building and operating security services that will enforce security policies across thousands of services. In this role, you will play a pivotal role in shaping the future of security at Microsoft and leverage your insights to protect Microsoft services and customers. Your primary focus will be to design, develop, and maintain scalable user lifecycle management systems & expanding our managed environments to meet business requirements.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.

Required/minimum qualifications

Bachelor's Degree in Statistics, Mathematics, Computer Science or related field OR 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response.

• 2+ years of experience designing, developing, or maintaining secure software systems, with applied knowledge of authentication, data protection, access control, and secure coding practices

• 2 years experience access management concepts, principles, and technologies, such as identity and access management (IAM), role-based access control (RBAC), privileged access management (PAM), multifactor authentication (MFA), single sign-on (SSO), and password management.

Other Requirements:

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:

• Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Additional or preferred qualifications

Master's Degree in Statistics, Mathematics, Computer Science or related field OR 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.

CISSP CISA CISM SANS GCIA GCIH OSCP Security+

Prefferred Qualifications:

• Experience with Microsoft technologies, such as Active Directory (AD), Azure Active Directory, Azure AD Connect, Azure AD Identity Protection, Azure AD Privileged Identity Management, and Microsoft Identity Manager.
• 1+ years experience in KQL, SQL, or similar scripting languages for data analysis and automation.
• Communication, collaboration, and leadership skills, with the ability to influence and drive results across multiple teams and levels.
  Ability to manage complex and cross-functional projects, with attention to detail and quality.
• Ability to influence and drive strategy at organization level scope.
  Ability to set vision, deliver and communicate solutions to complex technical problem
• Experience working across organizations/divisions, and bringing people together to achieve the goal.
• Experience in the Identity management and access control space is a huge plus.

Security Operations Engineering IC3 - The typical base pay range for this role across the U.S. is USD $100,600 - $199,000 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $131,400 - $215,400 per year.

Microsoft will accept applications for the role until August 11, 2025.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:

https://careers.microsoft.com/us/en/us-corporate-pay

#IAMProtect #MSFTSecurity #securityjobs #cybersecurity

• Develop a deep understanding of the Identity and Access Management (IAM) solution for Microsoft 365 (M365) and Azure services.
• Use data to define and assert production service isolation across identities
• Work with our penetration testing, incident response teams, and business leaders to ensure that learnings from security incidents are prioritized and remediated.
• Collaborate closely with M365, Azure, and other security teams across Microsoft, as well as service teams to roll out the latest security policies with the right level of automation and enforcement.
• Define key success metrics and craft data-focused tracking of solution health and adoption.
• Report on project status in various reviews, partner briefings, & security conferences.

Embody our culture and values