Skip to main content


Are you passionate about information security?   Are you intuitively able to understand weakness in systems?   Are you fascinated and obsessed with staying current on computing threats?   Are you seeking an opportunity to have enterprise wide impact securing Microsoft’s critical assets?   Microsoft’s Digital Security and Risk Engineering (DSRE) is continuing to make investments in building a world class penetration testing team.   Our organization has responsibility for identifying and managing technical security risk across Microsoft’s enterprise environment, including Microsoft Global office locations, world wide data center environments, and IT applications and services in Azure.    

We have an immediate opening on our team for a security penetration testing engineer with expertise in web applications or development platforms.  

Key Responsibilities:    

• Plan, research, and execute testing of computer systems and applications to simulate real world attacks on Microsoft IT services and infrastructure.    

• Develop security toolsets and contribute to automated testing platforms used by other penetration testers  

• Perform research to stay current with penetration testing tools, methodologies, tactics, and mitigations.    

• Build and maintain penetration testing procedures and methodologies    

• Produce high-quality papers, presentations, and recommendations for penetration findings  

• The ideal candidate is a highly-motivated software engineer that has an interest and background Red Team/Penetration testing, and has excellent verbal and written communication skills.    


• BS in computer science or equivalent experience  

• Strong coding skills including C++, .NET, PowerShell, Python, understanding of web protocols and technologies  

• Experience in penetration testing tools: NMAP, Metasploit, Cobalt Strike, Burp Suite Pro, etc.  

• Strong skills in providing written and verbal presentations  

• Demonstrated ability to anticipate and manage change in a highly dynamic environment  

• 2+ years of experience in penetration testing/Red Team and security code review experience desired   CISSP, Certified Ethical Hacker, or similar certifications  

Microsoft is an equal opportunity employer.   All qualified applicants will receive consideration for employment without regard to race, color, gender, sexual orientation, gender identity or expression, religion, national origin, marital status, age, disability, veteran status, genetic information, or any other protected status.

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to

Job #



United States, Redmond (WA)

Job families

Information technology (IT) & operations


Information technology & operations