Principal Software Engineer - AI Safety and Security

Overview

Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft's mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers' heterogeneous environments, as well as ensuring the security of our own internal estate.

Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world.

Artificial Intelligence (AI) has the potential to change the world around us. At Microsoft, we are committed to the advancement of AI driven by ethical principles. Are you passionate about the safety and security of AI and how our lives and society will be impacted? We are seeking an experienced Principal Software Engineer - AI Safety and Security to join a high impact team sitting at the intersection of cybersecurity and generative AI.

As a Principal Software Engineer - AI Safety and Security, you will develop and execute the technical strategy for internal platform capabilities, partnering closely with cross-functional teams across the company, to secure Microsoft's flagship AI and agentic products. You will build infrastructure to enable sophisticated threat detection and forensic investigation, produce threat intelligence and insights, and accelerate response to safety and security incidents.

More about our team:
We are the Artificial Generative Intelligence Security (AeGIS) team, and we are charged with ensuring justified confidence in the safety and security of Microsoft's generative AI products. This encompasses providing infrastructure for AI safety and security; serving as a coordination point for all things AI incident response; researching the quickly evolving threat landscape; red teaming AI systems for failures; and empowering Microsoft with this knowledge.

We partner closely with product engineering teams to mitigate and address the full range of threats that face AI services - from traditional security risks to novel security threats like indirect prompt injection and entirely AI-native threats like the manufacture of sexual exploitation and abuse material (SEAM) or deep fake production or the use of AI to run automated scams.

We are a mission-driven team intent on delivering trustworthy AI and response processes when it does not live up to those standards. We are always learning. Insatiably curious. We lean into uncertainty, take risks, and learn quickly from our mistakes. We build on each other's ideas, because we are better together. We are motivated every day to empower others to do and achieve more through our technology and innovation.

Together we make a difference for all of our customers, from end users to Fortune 50 enterprises. Our team has people from a wide variety of backgrounds, previous work histories, and life experiences, and we are eager to maintain and grow.

Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Responsibilities

• Detection Engineering:
  Create novel detection capabilities; build infrastructure that enables meta-cognition, mechanistic interpretability, and anomaly detection, to identify patterns of attack signatures at scale, in partnership with AI Incident Response and Threat Hunting teams.
• Threat Intelligence:
  Deliver data integrations across multiple data sources and platforms; serve diverse stakeholder needs for threat intelligence; partner with data science to operationalize pipelines that aggregate and correlate multi-source signals; deliver actionable insights, trend analyses, and automated reporting integrated with detection and response workflows.
• Mitigations:
  Develop mitigation strategies against emerging attack techniques and implement scalable defensive tools and architectures, in partnership with AI Red Team, security research, and product teams across the company. Build and maintain data pipelines and integrations with Azure Data Factory, Spark, Kusto, and more. Provide hands-on technical leadership: prototype in code, review designs and Pull Requests (PRs), define APIs and data contracts, build comprehensive architectures, and establish evaluation frameworks to de-risk complex systems.
• AI Logging and Observability:
  Develop…