Feeds

Join Microsoft. Save the world

Redmond cruises for rough trade at hacker convention

  • alert
  • submit to reddit

Top 5 reasons to deploy VMware with Tegile

A party in a gay club was followed up by a recruitment pitch by Microsoft at last week's Black Hat Conference in Amsterdam. After enjoying the bohemian delights of Digital Darkness - such as shackles on the wall and heavily pixelated porn beamed onto the ceiling - the assorted hackers, pen testers and bug finders at the invite-only gig were given fliers (transcript below) inviting them to join the world's biggest software company.

A team of three from Microsoft attending the world's premier hacker get-together hoping to bring the sort of people Steve Ballmer's mum probably warned him about (some even had piercings and tattoos!) into the fold. Some might consider this as cruising for "rough trade" but perhaps it makes sense for Redmond to get these guys on the inside pissing out rather than the other way around...

Security Software Engineer
Can you 0wn someone just because they browsed your web site? Is the first thing you do after installing new software seeing how you can break it and get root? Can you tell me what \x90\x90\x90\x90\x90\x90\x90\x90 is? Can you modify a HTTPS request sent from an application to its server? Do you start code reviews by following a malicious input to see where it is parsed? Then we want you to save the world and have a blast doing it. As part of the SWIat Proactive team, you'd get to investigate the latest products being released by Microsoft before they are shipped for security vulnerabilities. We're trying to make all software secure all the time so computing is safe for everyone. If you think you have what it takes to be part of our team then we want to hear from you.

Candidates should have knowledge of Windows architecture and other in-depth knowledge of a product and the ability to find variations of security bugs. Candidates should possess a keen mind, be solid coders, and be fluent in C/C++. Knowledge of common hacking/networking tools, exploit writing, network cryptography, penetration testing, assembler or managed code is a plus. Security-mindedness is mandatory. A Bachelor's degree in Computer Science is preferred. Come and change a million lives by making Microsoft's products more secure!

applynow@microsoft.com

=======

Security Program Manager

"I wish they would have fixed some of these problems before they shipped this."

Ever thought or made a statement like this? Believe you could do better? If so, we have a job for you...

We are looking for smart, technical program managers to review products before they ship. You will ensure that products meet security standards and don't ship with issues that later need to be patched. As part of this position, you will need to review product designs and threat models, review bugs filed to make sure major issues aren't punted, and use tools to examine the products surface area.

We are looking for experienced candidates with strong communications skills, deep security and technical knowledge and strong process/planning experience required. A Bachelor's degree in Computer Science is preferred.

applynow@microsoft.com

=======

Security Software Engineer

Do you enjoy probing and analysing security vulnerabilities, finding holes in assumptions or sparring with product security measures? Do you want to make the world a safer place? Are you interested in a fast-paced job full of new opportunities? If so, you might be a candidate for the Secure Windows Initiative React Team (SWIat) Team! Use your knowledge and passion to strengthen Microsoft's product's defences. SWIat React is responsible for analysis and penetration testing all externally reported vulnerabilities. In addition, we work directly with all product teams to enhance security in their products with our findings.

Analyse and report externally reported vulnerabilities, test and validate our patches, drive process and tools back into product teams, and build custom tools to make Microsoft update and products safer and better. Not enough security for you? Well, you will also get a chance to work on any outbreaks of virii or worms! Wish you were on the front line of Slammer? Sasser? Blaster? MyDoom? You will! It's an exciting job, and at the end of the day, you'll be able to say, "I helped save the world".

Candidates should have knowledge of Windows architecture and other in-depth knowledge of a product and the ability to find variations of security bugs. Candidates must be sharp, must be solid coders, and must be fluent in C/C++. Knowledge of common hacking/networking tools, exploit writing, networking, cryptography, penetration testing, assembler is a plus. Security-mindedness is mandatory. A Bachelor's degree in Computer Science is preferred. Come and help make Microsoft's products more secure!

applynow@microsoft.com

®

Related stories

Microsoft is crawling toward trustworthy code experts
Too cool for secure code
Ballmer to crackers: this PC ain't big enough for the both of us

Remote control for virtualized desktops

More from The Register

next story
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
Mozilla, EFF, Cisco back free-as-in-FREE-BEER SSL cert authority
Let’s Encrypt to give HTTPS-everywhere a boost in 2015
You really need to do some tech support for Aunty Agnes
Free anti-virus software, expires, stops updating and p0wns the world
Meet OneRNG: a fully-open entropy generator for a paranoid age
Kiwis to seek random investors for crowd-funded randomiser
Got an iPhone or iPad? LOOK OUT for MASQUE-D INTRUDERS
UNjailbroken iOS 7, 8 open to evil, says secbiz FireEye
USB coding anarchy: Consider all sticks licked
Thumb drive design ruled by almighty buck
Attack reveals 81 percent of Tor users but admins call for calm
Cisco Netflow a handy tool for cheapskate attackers
prev story

Whitepapers

Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Simplify SSL certificate management across the enterprise
Simple steps to take control of SSL across the enterprise, and recommendations for a management platform for full visibility and single-point of control for these Certificates.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.