The Microsoft Offensive Research & Security Engineering (MORSE) team is looking for a learn-it-all engineer that will help secure Microsoft products and devices.

The MORSE team is responsible for securing Microsoft's operating systems, including Windows, cloud computing platforms, and virtualization technologies. These solutions support the daily needs of over one billion customers worldwide. This team performs security design reviews, code reviews, and vulnerability research on key features of Windows and Azure to make sure they meet the highest possible security standards.

In this role, you will help a team of engineers tasked with building automation and tooling to streamline and scale detection of vulnerabilities. The ideal candidate will have some of the following: hands-on experience with native code (C/C++), building developer-facing tools (such as fuzzers, static analysis tools or sanitizers), an understanding of OS security fundamentals, solid computer science skills, and a customer-centric focus.

• Equip Microsoft developers with powerful, easy-to-use security tools to catch security issues earlier
• Improve existing processes and tools to help us deliver our goal of ubiquitous security testing
• Collaborate across silos, with security teams, feature developers, and tooling and infrastructure teams to deliver impact through security tooling solutions.
• Devise new methods to systematically detect vulnerabilities at scale

Required

• Experience in a software engineering or security-related field
• Software engineering in a systems language such as C, C++, or Rust

Preferred

• Public track record of relevant security research.
• Experience with native code review (C/C++) and vulnerability analysis, specifically in Operating Systems.
• Experience with static analysis tools, running queries, and output analysis.
• Familiarity with Microsoft Windows architecture.

This position will be open for a minimum of 5 days, with applications accepted on an ongoing basis until the position is filled.