We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
Microsoft jobs

Principal Security Research Manager

Microsoft
United States, Texas, Irving
7000 State Highway 161 (Show on map)
Mar 25, 2025
OverviewSecurity represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers' heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Do you want to lead a team of highly motivated world-class security engineers responsible for researching security issues across Microsoft products. You'll lead the Microsoft Security Response Center Vulnerabilities and Mitigations Team (MSRC V&M) Team as a Principal Security Research Manager, exploring new ways to find, eradicate, and prevent security flaws in our codebase. You'll have the opportunity to work across Microsoft with developers, pen testers and security personnel to get ahead of those that wish to do harm to our customers. This is a unique opportunity to impact every major product that Microsoft has running and learn to solve security at the scale and complexity of Microsoft.Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day.
ResponsibilitiesPeople Management* Managers deliver success through empowerment and accountability by modeling, coaching, and caring.* Model - Live our culture; Embody our values; Practice our leadership principles.* Coach - Define team objectives and outcomes; Enable success across boundaries; Help the team adapt and learn.* Care - Attract and retain great people; Know each individual's capabilities and aspirations; Invest in the growth of others. Conducting Research* Provides direction to teams to ensure efforts are dedicated to prioritized Security Research efforts in multiple projects in different security areas. Oversees teams researching highest priority security issues and to fully investigate cause, motivation, and impact. Collaborates across teams to appropriately address and mitigate issues. Advocates for follow through with senior leadership. Ensures feedback loops are active and inform future research efforts.* Ensures teams research, synthesize findings, and make recommendations aligned to key priorities for the business. Collaborates across teams, organizations, and leaders as needed to advocate for adoption of recommendations. Determines and ensures dissemination of research to those who most benefit. Balances value of dissemination over risk of divulging techniques. Builds and maintains relationships with stakeholders who benefit from research insight. Drives change within organization based on research findings. Leads team and role models contribution to professional community by publishing, advancing the Microsoftbrand, creating and patenting IP. Maintains sustained interaction with research partners (e.g., industry, academia, government).* Ensures work of the team upholds standards of analysis and design. Recognizes and conveys the impact of security problems and threats. Provides thought leadership across teams and creates mechanisms for best practice sharing and strategic impact of insights generated by analyses. Drives Microsoft to be a visible leader in security expertise.* Leads teams that develop enterprise governance on technical indicator sharing advanced analysis and synthesis of threat data that provides high impact insights.Guides teams to use insights to identify novel areas of threat and vulnerability analysis. Drives productization of tools for standard use across teams.* Leads and guides teams to develop data sources, including cleaning, structuring, and standardizing data. Leads teams to uphold data quality standards and mitigates impact to timely and consistent access to data sources. Drives curation of sources of data and partners to develop and sustain data access across teams.* Allocates resources of team and prioritizes work, including real-time re-prioritization when needed. Coordinates resources across groups to support the work of the team. Serves as escalation point for conflicting priorities. Secures additional resources as priorities and strategic direction shift.Solution Generation* Contributes to crafting standards to address complex security issues. Influences standards within and outside Microsoft. Provides guidance to others as needed. Leads teams to focus on highest priority issues. Guides team in developing and deploying models, best practices, and guidelines to address patterns of issues. Frames strategy for the team and empowers them to execute accordingly.* Works across multiple teams, divisions, and functional areas to support technical implementation of solutions and automation that increase the ability to harden against, detect, and mitigate issues (e.g., signature detection, malware, threat analysis, reverse engineering). Ensures teams develop and maintain areas of expertise, expands into new areas of expertise, and shares best practices across teams. Works across Microsoft to drive strategy across the organization. Drives alignment across organizations and may have impact outside Microsoft. Drives teams to use results from research and experimentation to drive architecture or product direction. Prioritizes efforts to further develop knowledge areas needed to drive direction in the industry.* Collaborates across teams to ensure progress. Ensures obligations are fulfilled while planning for future capabilities and potential. Provides oversight across functional areas. Fosters collaboration across teams and functional areas. Holds teams accountable to standards. Influences teams and partners to uphold andcreate new standards. Actively retires outdated/redundant standards. Drives for engineering efficiency and clarity in standards.Orchestration* Works across multiple teams, divisions, and functional areas to provide technical perspective. Synthesizes perspectives to inform Microsoft position on security issues and prioritize points for advocacy. Influences Microsoft's standing in the industry. Builds structural relationships to enable streamlined and efficient communications and collaboration. Maintains one strategy across teams and organizations.* Defines processes and environments to protect tools, techniques, information and results of security practices. Ensures teams are properly handling information/secrets. Educates others on proper procedures. Coordinates efforts across teams and with senior leaders as needed.* Directs teams to lead postmortem and root cause analyses for complex and/or large scale live site issues to create repair items, specifies tools, and systems that support incident management, and mitigates and resolves issues across organizations. Guides teams to manage complete incidents with multiple bridges and ensures Incident Management System(s) are implemented, executives and customers are updated during and after incidents, and that quality postmortem and root-cause analysis processes are executed.* Oversees teams in security and architectural design reviews for suite of features. Uses empirical evidence to identify and develop best practices for designing, implementing and validating software. Manages costs and budget associated with security reviews. Advises, evaluates, informs, and applies Security by Design Principles to products, services and research.Industry Leadership* Leads the work of technical experts and leverages expertise across a spectrum of specialties to ensure work is properly resourced and prioritized. Conveys critical technical issues to upper management in actionable terms. Advocates for accomplishments and needs of the teams. Persuades others to support key priorities. Establishes and maintains ethical behavior for the team in areas of subject matter expertise, including coordinated disclosure and ethical hacking. Drives participation in conferences and industry events. Ensures best practices are shared within and across teams.* Collaborates with leaders of other engineering teams to identify and propose potential business opportunities, services, and/or product offerings. Manages efforts to research, develop, and implement new tools, technologies, and/or processes that may improve the availability, reliability, efficiency, and/orperformance of products. Leverages technical expertise to anticipate and identify trend changes and adapt work accordingly. Makes business recommendations, such as cost-benefit, invest-divest, forecasting, and impact analysis with effective presentations of findings. Other : Embody our Culture and Values
Applied = 0
MORE JOBS LIKE THIS

(web-6468d597d4-w6ps7)