Penetration Tester

Overview

The Penetration Tester at Microsoft helps secure some of the company’s most critical and high-impact online services. This role is ideal for early-in-career engineers focused on offensive security, penetration testing, vulnerability assessments, and security research, contributing to the security posture of Microsoft Specialized Clouds.

Responsibilities

Penetration Testing: Identify security vulnerabilities across key cloud services, perform source code reviews, dynamic analysis, operational security assessments, and validate software quality practices. Work closely with engineering and defense teams to boost detection and response.

Security Automation: Contribute to static and runtime analysis, help design automated workflows for managed code and modern web services, and prototype tools to improve assessment consistency and speed.

Research, Training, and Tool Development: Stay updated on offensive security tactics and tools, conduct research to support internal training, and drive innovation in tooling and methodologies.

Qualifications

Required: Bachelor’s Degree in Statistics, Mathematics, Computer Science or related field (or equivalent experience).

Preferred: Master’s Degree or Bachelor’s with 2+ years experience in security. Must pass Microsoft's Cloud Background Check upon hire and biannually thereafter.

Salary & Duration

Base pay range in the U.S. is USD 84,200 - 165,200 per year, with higher ranges in major metropolitan areas. This position is open for a minimum of 5 days with ongoing applications.

Key skills/competency

• Penetration Testing
• Vulnerability Assessment
• Security Research
• Cloud Security
• Automation
• Source Code Review
• Dynamic Analysis
• Operational Security
• Tool Development
• Research