Senior Security Engineer

343 Industries is the developer of the blockbuster Halo series of video games. As part of Xbox Game Studios, the Halo franchise encompasses games, television series, novels, comics, licensed collectibles, apparel and more. We are looking for new Spartans to join our team to build the next generation of games and experiences in our award-winning sci-fi universe.

As a senior security engineer you will assist in efforts across multiple teams to align with the strategy and deliver standards and guidance, which will enhance the security posture for the studio. You will work with engineering teams to identify areas of opportunity and will define plans to close gaps. You will look for ways to implement automation and drive towards a secure by default environment. You will be working to solve issues related to the latest security trends and early warning indicators, as well as help design solutions for emerging threats. Along the way, you will be a trusted voice who shares your knowledge and expertise with the engineering team and other teams in the studio. The 343 IT Security team is a fast-paced team that constantly provides new opportunities to learn and grow. 343 Industries has developed a set of key studio values which simultaneously define, shape, and drive our workplace:?~~~. Candidates are expected to be familiar with these values and should be prepared to demonstrate ways in which they reflect this vision.

Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Responsibilities

• Provide subject matter expertise and best practices regarding:

• Security for Azure cloud solutions

• Windows security for workstations and servers

• Data security and sharing

• Security of Work From Home scenarios

• Identity and access control for both on-prem and Azure including technologies such as Azure Entra / Active Directory / MFA / PIM / Security Group Management / Group Policy / Intune Policy

• Remediation of unapproved software

• Logging and auditing for security events

• Communicate complex and technical issues to diverse audiences, orally and in-writing, in an easily understood, informative, and actionable manner.

• Rapidly react to changing situations and develop new plans based on recent discoveries.

• Evaluate capabilities and features to identify gaps against our security standards and drive security gap resolution.

• Analyze and improve situational awareness and incident response capabilities.

• Ensure update compliance for Windows and Linux systems (both on-prem and in Azure).

• Engage in broader security related 343 studios efforts.

• Own and implement security baselines in Microsoft Security Tools such as Microsoft Azure, Entra, Intune, Defender, etc.

• Up to 25% of job role can include supporting security functions related to IT Engineering Team with designing, deploying, configuring and troubleshooting critical IT infrastructure for the studio, including a rotating on-call responsibility.

Embody our Culture (~~~) and Values (~~~)

Qualifications

Required/Minimum Qualifications

• 5+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response

• OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.

• CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, Security+, and/or other security certifications.

• Experience with supporting cloud-based security solutions at an enterprise level.

Other Requirements:

• Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Additional or Preferred Qualifications

• 7+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection

• OR Master's Degree or Doctorate in Statistics, Mathematics, Computer Science or related field. Experience working with encryption, remote access technologies, authorization, PKI, modern authentication and cloud app authorization architectures, and security protocols such as SAML and OAUTH.

• Experience with Linux, network, and other appliance security best practices.

• Experience with working collaboratively with engineering teams to drive architectural changes that improve the stability and security of each environment.

• Demonstrated success in dealing with ambiguity and problem definition under timeline constraints.

• Experience planning, researching, and developing security policies, standards, and procedures.

• Experience with configuring, administrating and troubleshooting Windows Workstation and Server platforms.

• Understanding of different protocols and services (TCP/IP, DNS, DHCP, NTP, WSUS).

• Robust understanding of fundamentals on TCP/IP concepts, load balancing, GTM, ACL, routing, network analysis and performance and application issues using standard tools.

Security Operations Engineering IC4 - The typical base pay range for this role across the U.S. is USD $112000.00 - $218400.00 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $145800.00 - $238600.00 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: ~~~

Microsoft will accept applications for the role until May 14, 2024.

#gamingjobs

#343careers

Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations (~~~) .