The Senior Security Program Manager will lead the end-to-end security assurance efforts for the Microsoft Windows Security team, focusing on security compliance, risk assessment, and vulnerability research. This role is pivotal in enhancing platform security architecture and collaborating with various teams to address emerging threats and vulnerabilities. The position requires a strong background in security and software development, as well as the ability to influence and drive initiatives across groups. The team is dedicated to protecting billions of Windows devices through innovative security practices.

• Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 3+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection.
• OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 4+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection.
• Ability to meet Microsoft, customer and/or government security screening requirements.
• 10+ years of experience in a software engineering or security-related engineering.
• Demonstrated experience in security research, especially around vulnerability discovery.

• Drive the Windows EnS security risk assessment framework by executing systematic identification, prioritization, and tracking of security risks across OS, firmware, silicon, drivers, and ecosystem dependencies.
• Partner deeply with engineering, architecture, and threat intelligence teams to translate emerging threats, vulnerability trends, and attacker techniques into clear, actionable insights and platform improvements.
• Execute and evolve the security assurance process for Windows teams, enabling a scalable, risk-based approach that supports shared responsibility while ensuring consistent security review coverage and compliance.
• Lead cross-team security initiatives and coordination by driving planning, aligning stakeholders, and ensuring effective PM coverage across key areas of the team’s charter.
• Influence without authority by building solid partnerships across EnS security engineering and partner teams, ensuring alignment on priorities, risks, and mitigation strategies.
• Deliver end-to-end execution on high-impact security efforts, from problem definition through implementation, tracking measurable outcomes and continuously improving processes.

• Employees at Microsoft are often offered comprehensive, “world-class” benefits—including health and mental-wellness programs, competitive pay with bonuses and stock awards, and retirement/savings options. Time-off and flexibility are common, with generous vacation and holidays, parental and caregiver leave, and flexible work schedules, alongside learning support, employee resource groups, product discounts, and matching-gifts/volunteering programs. Specific benefits can vary by region.