The Principal Security Program Manager at Microsoft's Windows Security team leads end-to-end security assurance efforts, including compliance and risk assessment, while supporting vulnerability research and tooling. This principal-level individual contributor role involves shaping how Windows identifies and mitigates security risks on a large scale, with high executive visibility. Day-to-day responsibilities include owning the Windows EnS security risk assessment framework, partnering with engineering teams to translate threats into platform investments, developing security assurance processes for Windows teams, and managing a small PM team virtually. The ideal candidate has extensive experience in software development lifecycle, threat modeling, and large-scale computing, along with expertise in Microsoft Windows architecture and vulnerability discovery.
Skills
Windows
Linux
Python
C
C++
Go
Rust
Java
SQL
Azure
AWS
Kubernetes
Terraform
GitHub
GitLab
Jira
Confluence
CI/CD
Docker
Prometheus
Grafana
PostgreSQL
MongoDB
Security Compliance
Risk Assessment
Vulnerability Research
Threat Intelligence
Platform Security Architecture
What you'll do
Own the Windows EnS security risk assessment framework, identifying and tracking risks across various components.
Translate emerging threats into actionable platform investments by partnering with engineering and threat intelligence teams.
Develop and drive the security assurance process for Windows teams to ensure broad compliance and a risk-based approach.
Act as virtual lead for a small security PM team, managing coverage and leading planning engagements.
Support vulnerability research efforts and enhance security tooling across the Windows ecosystem.
What we're looking for
Master's degree in a relevant field plus 4 years of experience or equivalent.
Bachelor's degree in a relevant field plus 6 years of experience or equivalent.
Experience in software development lifecycle, large-scale computing, threat modeling, and cybersecurity.
Ability to translate emerging threats into actionable platform investments.
Develop and drive security assurance processes for Windows teams.
Manage PM coverage and lead planning for a small security PM team.
Familiarity with Microsoft Windows architecture preferred.
Market check
Salary context
This
$142,800–$274,800
range sits above
81%
of similar postings on FindRole.
Peer median band
$139,100–$234,700
Median floor and ceiling across peers.
Typical midpoint (25–75%)
$151,812–$207,350
Middle half of comparable postings.
Based on 239 comparable postings.*
* 240 is the maximum number of comparable postings sampled.
Employer
About Microsoft
Microsoft Corporation is a global technology leader producing software, hardware, and cloud services including Windows, Office 365, Azure cloud platform, Xbox gaming, and Surface devices. Industry: Software & Cloud Computing
Microsoft currently has
451 open roles
on FindRole.
Listed pay typically runs
$119,800–$234,700
across 417 roles with salary data.