Microsoft Looking For Penetration Testing IC3 at Redmond, WA Full Time

Digital Security & Resilience Red Team

The mission of Microsoft Digital Security & Resilience (DSR) is to enable Microsoft to build the most trusted devices and services, while keeping our company safe and our data protected. As part of Microsoft’s Security, Compliance, Identity, and Management organization, and a steward of Microsoft and our customer’s data, a core function of Microsoft DSR is ensuring the security of every aspect of the business. Microsoft DSR is responsible for company-wide information security and compliance, with a strategic focus on information protection, assessment, awareness, governance, and enterprise business continuity. As customer zero, we deploy and secure these services inside Microsoft and then share best practices with enterprise customers at scale across the globe. We have exciting opportunities for you to innovate, influence, transform, inspire and grow within our organization and we encourage you to apply to learn more!

Are you passionate about identifying security vulnerabilities and risks in enterprise-scale systems? Do you want the challenge of conducting penetration tests against some of the world’s most cutting-edge technology implementations? The Digital Security and Resilience Red Team is Microsoft’s internal penetration testing and offensive security team, tasked with identifying security flaws across the entire Microsoft corporate technology estate.

As a member of the DSR Red Team you will plan and execute offensive security activities and penetration tests against the wide variety of systems that enable Microsoft teams to conduct their day-to-day activities. You will develop novel attack techniques against new and existing products and deliver high-quality risk reporting outputs to internal stakeholders across Microsoft.

Preferred work locations:
Atlanta, Georgia

Austin, Texas

New York City, New York

Redmond, Washington

Reston, Virginia

Remote in the U.S.

Responsibilities

Key responsibilities:
Discovery of Problems/Identifying Vulnerabilities

Solution Engineering

Communication/Influence

Perform research to stay current with penetration testing tools, methodologies, tactics, and mitigations.

Develop and maintain penetration testing procedures and methodologies

Produce high-quality papers, presentations, recommendations

Qualifications

Rrequired Qualifications:
2+ years’ experience in identifying security vulnerabilities, software development lifecycle, large-scale computing, modeling, cyber security, and anomaly detection.

Experience using common penetration testing tools; Kali Linux, Burpsuite, Nmap, Nessus, etc

2+ years’ experience with one or more programming languages from: Python, C#, C/C++, PowerShell

Batchelor’s degree in Computer Science or related subject

Preferred Qualifications:
Penetration testing qualifications; GPEN/GXPN, GWAPT, OSCP/OSCE, CRT/CCT/CCSAS

Microsoft Azure Certifications; AZ-900, AZ-500

Excellent written and verbal communication skills

Strong technical writing and presentation skills

The ideal candidate will have strong technical skills, coupled with an passion for identifying security flaws and developing innovative solutions. Adept both at developing novel tooling and techniques, and using existing methodologies, a Red Teamer should always be asking “What If…?” and persistently pushing the boundaries.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.