Microsoft Corporation Security Program Manager in Boston, Massachusetts
Microsoft is looking for a Security Program Manager who will play a critical role in the development and delivery of our Cloud Native solutions to on premises and cloud based customers. The Security Program Manager will be a proven engineering leader who will manage our product security compliance. You will blend your positive attitude with the magnitude of Microsoft to empower our worldwide customers.
We've architected and delivered one of the most technically sound mobile core solutions to major telco customers across the globe. We've brought cloud native technology, microservices, open source software, and kubernetes to the forefront of telecommunications and are in position to reap the organizational and agility benefits they offer. We need a champion to create security policies and processes consistent with the architecture. We need someone who knows how lead the creation threat models, report CVEs to customers, lead mitigation programs for the vulnerabilities, represent security policies to customers, and lead incident management responses. You will have world class Microsoft corporate security teams as a backstop, but you will be in the forefront of our security implementation.
This position will require someone who can operate across all issues and at all levels. While it is a position with significant influence across the organization, it requires someone who will understand issues, create action plans, develop monitoring methods and metrics, and seek out the next issue to conquer.
Bring your vision and your experience to our team at Microsoft.
Develop and document a comprehensive Security Policy for Microsoft’s cloud native telco products
Define and manage the execution of DevSec in our CI/CD pipeline. Implement tools and create processes to manage continuous scanning for vulnerabilities and tracking the corresponding updates in engineering and products
Manage vulnerability reporting to customers
Create and champion a systematic and product level defense in depth approach to a Kubernetes based microservice product architecture
Lead the security hardening of our telco products using Kubernetes tools and working with appropriate design teams..
Work with system and software engineers to create threat models
Provide product and system information to answer all security questions in customer RFPs.
Represent Microsoft security program and design to customers.
Create, document, implement, and monitor an incident management process. Lead the corporate response.
Experience managing CVE reporting associated with the integration of open source software in telco products
BS and 10 years of experience in security system design, with at least two years experience with Open Source Software.
Understanding of Kubernetes security tools and methods.
Experience creating product and corporate security programs
Prior incident response management
Ability to design product security architectures and processes.
Abillty to lead or faclitiate security threat modeling.
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form (https://careers.microsoft.com/us/en/accommodationrequest) .
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
- Microsoft Corporation Jobs