Overview
AI is rapidly becoming embedded in enterprise applications, agents, and copilots - creating a new security frontier. Microsoft’s Azure AI Foundry team is looking for a Principal Product Manager – AI Security to help define how enterprises secure AI systems across their lifecycle, from development to deployment and operation.
As organizations deploy AI agents that can access data, call tools, and take actions, traditional security models are no longer sufficient. This role will help build the security foundation for agentic systems, addressing emerging threats such as prompt injection, sensitive data exfiltration, unsafe tool usage, model misuse, and adversarial manipulation.
You will lead product efforts to help enterprises detect, prevent, and govern AI security risks, working closely with security engineers, CISOs, and AI developers. This includes integrating AI security capabilities with Microsoft’s broader security stack - including Microsoft Defender, Entra, Purview, and Azure AI Foundry - to deliver a comprehensive security platform for AI systems.
This is a highly technical product role at the intersection of AI systems, cybersecurity, and enterprise cloud infrastructure. You will partner across Microsoft’s Responsible AI, Security, and Azure teams to define how organizations protect AI systems and safely deploy AI-powered applications at scale.
Why Join Us?
You’ll help define the emerging discipline of AI security, building the tools enterprises need to safely deploy AI agents and copilots.
Your work will shape how CISOs, security teams, and developers defend against new classes of AI-native threats in the world’s most trusted cloud platform.
Responsibilities
Lead the AI Security product area within Azure AI Foundry, defining the long-term vision, strategy, and roadmap for securing AI applications and agents.
Design and deliver security capabilities that help organizations identify, mitigate, and monitor AI attack patterns, including prompt injection, jailbreaks, data exfiltration, malicious tool calls, and model misuse.
Partner with security engineers, red teams, and AI researchers to translate emerging AI attack techniques into productized protections.
Integrate AI security capabilities with Microsoft’s broader security ecosystem, including Defender (threat detection), Entra (identity and access), and Purview (data protection and governance).
Work closely with enterprise security leaders, CISOs, and security practitioners to understand real-world AI security challenges and design solutions that fit existing security operations.
Drive 0-to-1 product development, bringing new AI security capabilities from early concept and experimentation through production launch and adoption.
Establish metrics for AI security posture and product success, including risk coverage, detection efficacy, and customer adoption.
Represent Microsoft’s approach to AI security and safe agent deployment in customer engagements, industry conversations, and internal strategy discussions.
Qualifications
Required Qualifications
- Bachelor's Degree AND 8+ years experience in product/service/program management or software development OR equivalent experience.
Other Requirements
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings:
- Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Preferred Qualifications
Familiarity with modern cybersecurity concepts, such as threat modeling, secure system architecture, and attack surface analysis.
Extensive familiarity with AI system architectures, including LLM applications, agents, and tool-using AI systems.
Understanding of common AI attack patterns, such as prompt injection, jailbreaks, sensitive data leakage, indirect prompt injection, and adversarial manipulation.
Experience working with security engineers, red teams, or security operations teams.
Ability to engage credibly with CISOs, security architects, and security engineering teams.
Demonstrated experience building 0-to-1 software products or platforms.
Experience delivering products in enterprise security, developer tools, or cloud infrastructure.
Familiarity with AI security testing, evaluation, or automated red teaming techniques.
Strong collaboration skills with engineering, research, and security teams across large organizations.
Proven communication skills and ability to translate complex technical security concepts into clear product strategy and customer value.
Product Management IC5 - The typical base pay range for this role across the U.S. is USD $139,900 - $274,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $188,000 - $304,200 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay
This position will be open for a minimum of 5 days, with applications accepted on an ongoing basis until the position is filled.
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance with religious accommodations and/or a reasonable accommodation due to a disability during the application process, read more about **requesting accommodations.**