Senior Program Manager - Security - Skype

Job Category: Software Engineering: Program Management
Location: Redmond, WA, US
Job ID: 829501-105971
Division: Applications and Services Engineering

Lync Server is a well-established and highly successful product, and has been growing very rapidly. Lync Server has recently
merged into the Skype organization, with the goal of enabling communication across the planet for billions of people. This is
a very exciting time filled with huge amounts of opportunity. Running a Real Time communication service has many technical
challenges: we need to maintain at least 99.99% availability, grow capacity to keep up with new Office 365 customers, deliver
new features much faster than ever before, and manage thousands of globally-distributed servers.

Now that the Lync has become a part of the Skype division, the engineering teams are building the largest
consumer-to-business to business-to-consumer communications capability ever imagined. We are breaking down barriers to
communication and redefining how people communicate at work, at home, anywhere, any time. We enable millions of
conversations around the world each day, from the boardroom to the dining room, from small phone to big screens, and
everything in between.

The team

Product Security (ProdSec) Team is responsible for overseeing the security of all the features developed at Skype+Lync Division. As a member of ProdSec team, you will help build an infrastructure that scales for hundreds of millions of users and is secure at the same time. ProdSec team partners with other business units to create products that are secure and users trust them for their day-to-day communication needs.

Microsoft is seeking a motivated and dynamic engineer to be part of ProdSec team who can partner with various business units and provide them security guidance.

Key Responsibilities

- Work in an agile development environment and partner with engineering and product team to ensure that our products adhere to the security best practices.
- Conduct regular security reviews of both software and processes. Review and create threat models.
- Participate in code reviews and educate the engineering teams on best practices for writing secure code.
- Coordination and remediation of application security incidents.
- Promote security training and awareness in the organization.
- Work with pen testers and other external vendors.

Expertise/Experience

C/C++ and/or C# programming experience.
Full understanding of web stack.
Domain expert in security with respect to web development and enterprise app development. Understanding of SDL is a plus.
Good understanding of cloud technology. Azure is a plus.
Experience with automating tools and deployments.
Excellent verbal and written communication skills.
Leadership qualities including the ability to work effectively with cross-functional teams and be able to mediate diverse opinions.
A working knowledge of Agile Development.
BS or MS degree in Computer Science or Engineering OR equivalent years of relevant work experience.
Minimum of 6-8 years of applicable work experience.