Job Title

Security Researcher II MicrosoftWe are a team in M365 Core called Substrate; we have the massive responsibility to help ensure the security and trustworthiness of the M365 product suite. Our culture is centered on embracing a growth mindset, inspiring excellence, and encouraging teams and leaders to bring their best each day. We want to reshape and modernize security to empower every user, customer, and developer with a secure cloud that protects them with end-to-end solutions.The Security Engineering team within M365 Core helps to identify threats and gaps in the infrastructure that hosts the planet''s largest, most influential organizations. We are looking for individuals forging the pentest discipline in new and modern ways in the era of AI. The role will encompass a blend of research and testing, guiding our engineering organizations to secure their products in the most uniform and durable solutions possible.ResponsibilitiesResearch & Threat Analysis: Investigate emerging AI security threats, attack techniques, and their potential impact on Microsoft 365 Copilot services.Partner with Security Architecture to inform architectural improvements based on research findings.Testing & Exploitation: Design and implement methodologies and tools for evaluating AI agent security, including multiagent system exploitation.Execute comprehensive penetration tests on AI platforms, focusing on prompt injection, jailbreaking, and workflow manipulation.Identify and validate vulnerabilities through handson testing, developing proofofconcept exploits that simulate realworld attack scenarios.Framework & Tool Development: Contribute to the creation of AI security testing frameworks and automated validation tools.Collaborate with AI engineering teams to verify security fixes through iterative testing and validation.Reporting & Knowledge Sharing: Produce detailed technical reports and advisories that translate complex findings into actionable remediation strategies. Share expertise and mentor team members on AI security testing techniques and vulnerability discovery.Required QualificationsBachelor''s Degree in Statistics, Mathematics, Computer Science or related field OR 3+ years experience in software development lifecycle, largescale computing, modeling, cybersecurity, and/or anomaly detection.3+ years of experience in security research, penetration testing, or offensive security roles, with demonstrated expertise in AI/ML security.Strong understanding of AI attack vectors including prompt injection, agent manipulation, and workflow exploitation.Handson experience discovering and exploiting vulnerabilities in AI systems and platforms.Proficiency in Python with experience in AI frameworks and security testing tools.Ability to read and analyze code across multiple languages and codebases.Other RequirementsAbility to meet Microsoft, customer and/or government security screening requirements. These requirements include but are not limited to the Microsoft Cloud Background Check, which must be passed upon hire/transfer and every two years thereafter.Preferred QualificationsDirect experience testing AI agent platforms, conversational AI systems, or AI orchestration architectures.Published security research or conference presentations on AI security topics.Background in software engineering with distributed systems expertise.Security certifications such as OSCP, OSCE, GPEN, or similar.Knowledge of AI agent communication protocols and multiagent architectures.Equal Opportunity StatementMicrosoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.Referrals increase your chances of interviewing at Microsoft by 2x.Brisbane, Queensland, Australia #J-18808-Ljbffr