Do you want to help secure some of Microsoft’s most critical and high‑impact online services?

Are you passionate about solving hard security problems, learning offensive security techniques, and building skills that shape the future of secure cloud computing?

The Microsoft Specialized Clouds (MSC) Security Fundamentals group is responsible for securing some of Microsoft’s largest and most influential online services. The SERPENT team is looking for a Penetration Tester with strong interest in penetration testing, vulnerability assessment, and security research to help strengthen the security posture of these services.

This role is an excellent fit for early-in-career engineers who want to build deep expertise in offensive security while contributing to real‑world impact.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

• Identify security vulnerabilities and variants across critical cloud services.
• Perform source code reviews, dynamic analysis, and operational security assessments.
• Validate software quality and adherence to security development practices.
• Work with engineering and defense teams to improve detection, response, and operational awareness.

Security Automation

• Contribute to static and runtime analysis capabilities to detect software security issues.
• Help design automated analysis workflows for managed code and modern web services.
• Explore and prototype automation that improves consistency, speed, and depth of security assessments.

Research, Training, and Tool Development

• Stay current on offensive security tactics, penetration testing tools, and defensive techniques.
• Conduct research that supports training and awareness for internal engineering teams.
• Support innovation efforts across MSC Security, including tooling, methodology improvements, and knowledge sharing.

• Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field
  • OR equivalent experience.

Other Requirements:

• Microsoft Cloud Background Check:
  • This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

Preferred Qualifications:

• Master's Degree in Statistics, Mathematics, Computer Science, or related field OR Bachelor's Degree in Statistics, Mathematics, Computer Science, or related field AND 2+ years experience in security or related field OR equivalent experience.

Penetration Testing IC2 - The typical base pay range for this role across the U.S. is USD $84,200 - $165,200 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $109,000 - $180,400 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:
https://careers.microsoft.com/us/en/us-corporate-pay

This position will be open for a minimum of 5 days, with applications accepted on an ongoing basis until the position is filled.