Software Engineer - Infrastructure team (Detection Engineer)
Multiple Locations | Software Engineering | Mar 25, 2024 | Job number 1702491

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.


The TI Engineering team is focused on building cutting edge solutions, countering adversary-based threats to Microsoft and its customers through dissemination of threat intelligence, proactive hunting, incident response, and the development of new solutions and methods to detect adversary activity, investigate and respond to the attacks.

Our mission is to monitor, disrupt, and shield against cyber threats by the most sophisticated actors.

We use state of the art cloud technologies, big data solutions, AI at hyper scale and modern UX platforms to deliver the highest value for our customers. 

Are you passionate about building next-gen security services?

Are you excited about Security and Cloud technologies?

Are you looking for a live, fast-paced environment, where you can make an impact and grow?


Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.


Security Assurance: Implement and maintain security measures, such as access controls, encryption, and vulnerability management, to safeguard services against potential threats and ensure compliance with security standards and regulations. Conduct regular security audits, perform incident response activities related to security breaches, and proactively address security vulnerabilities to enhance the overall security posture of the service.

Data Management and Governance: Ensure the reliability, availability, and integrity of data systems and pipelines. Implement robust monitoring and alerting data quality, latency, and throughput, ensuring that data is accurate and accessible for analysis and decision-making. Collaborate with data engineers and data scientists to design resilient data architectures, optimize data storage and retrieval mechanisms, and implement data governance policies to safeguard sensitive information and comply with regulatory requirements.

Service Reliability: Ensuring the reliability and availability of software services by implementing robust monitoring, alerting, and incident response systems. Focus on minimizing downtime and service disruptions to meet reliability targets.

Automation and Tooling: Develop and maintain automation tools and infrastructure to streamline repetitive tasks, improve efficiency, and reduce human error. Leverage tools for deployment, configuration management, and scaling to support the reliability and scalability of services.

Performance Optimization: Analyze system performance metrics and conduct capacity planning to ensure services can handle current and future traffic demands effectively. Identify performance bottlenecks, optimize resource utilization, and implement improvements to enhance service performance.



  • Network Security Protocols and Tools: A strong understanding of network security protocols (such as TCP/IP, DNS, HTTP/HTTPS) and tools used for monitoring and detection.
  • Programming Languages: Proficiency in one or more programming languages (e.g., Python, PowerShell, Bash) to create custom scripts and automate tasks.
  • Security Incident and Event Management: Experience with tools for log analysis and threat detection.
  • Cloud Security: Knowledge of cloud security principles and practices, especially in platforms like AWS, Azure, or GCP
  • Or bachelor’s degree in computer science, Information Technology, or related field.



Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances.  We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.


Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.