This role pays more than
55%
of similar roles. Most pay
$173,000–$197,100
— the shaded band above.
At the midpoint, this role pays about
$177k
versus about
$185k
for comparable roles.
Based on 240 similar postings.
Employer
About Microsoft
Microsoft Corporation is a global technology leader producing software, hardware, and cloud services including Windows, Office 365, Azure cloud platform, Xbox gaming, and Surface devices. Industry: Software & Cloud Computing
Microsoft currently has
1580 open roles
on FindRole.
Listed pay typically runs
$119,800–$234,700
across 1408 roles with salary data.
The Microsoft Windows Security team is seeking a Senior Security Program Manager to lead end-to-end security assurance efforts, including compliance and risk assessment, while supporting vulnerability research and tooling across Windows. This senior-level position involves driving the security risk assessment framework, partnering with engineering teams to translate threats into actionable insights, executing and evolving the security assurance process for scalable coverage, leading cross-team initiatives, and influencing without authority by building strong partnerships. The ideal candidate will have a master’s degree in a relevant field plus 3+ years of experience or equivalent, with expertise in software development lifecycle, large-scale computing, threat modeling, and anomaly detection. Preferred qualifications include extensive security research experience, particularly in vulnerability discovery, and the ability to drive initiatives across groups while creating clarity and cohesion within the team.
Drive systematic identification and prioritization of security risks across Windows OS components.
Translate emerging threats into actionable insights to improve platform security architecture.
Execute and evolve the risk-based security assurance process for consistent compliance.
Lead cross-team coordination on high-impact security initiatives, ensuring effective coverage.
Influence stakeholders without direct authority to align on priorities and mitigation strategies.
Deliver end-to-end execution of critical security efforts from definition through implementation.
What we're looking for
Master's degree in Statistics, Mathematics, Computer Science, Cyber Security, or related field and 3+ years of relevant experience.
Bachelor's degree in a related field and 4+ years of experience in software development lifecycle, threat modeling, cyber security, or anomaly detection.
Experience leading end-to-end execution on high-impact security efforts from problem definition through implementation.
Ability to influence without authority by building solid partnerships across engineering and security teams.
Demonstrated experience in security research, particularly vulnerability discovery.
Strong background in driving security risk assessment frameworks and executing systematic identification of risks.