×

Please log in to continue...

Login

Principal Platform Security Architect

The Azure Silicon Cloud Hardware Infrastructure and Engineering (SCHIE) team provides the foundation to host services at scale for Azure Compute, Bing, Skype, Azure Storage, and AI. Our teams are responsible for the development of server, silicon, and rack infrastructure. Securing the fleet to enable our customers to achieve more is a fundamental priority for our business.

We are looking for a motivated Principal Platform Security Architect to work on securing Azure infrastructure, both for the existing fleet and incoming new portfolio. The Platform Security Architect will be responsible for designing and implementing security measures for hardware and firmware systems that power Azure today. The role involves, creating security solutions, assessing security risks, identifying vulnerabilities, and mitigations to ensure Azure continues to be the world’s most secure platform. The Platform Security Architect must be familiar with industry-standard security practices and have experience working with security across a cross section of silicon, hardware, firmware, OS, and services.

Responsibilities:

  • Responsible for conducting regular security assessments and audits on security design to identify vulnerabilities, assessing security risk and develop design and mitigation strategies to ensure they meet Azure’s requirements for Platform Security.
  • Responsible for building Azure HW/FW Security Roadmap working with our Security experts across Azure including our 3P suppliers.
  • Responsible for creating System Threat models for the Platform, working with cross functional teams to drive security through each individual component on the system.
  • Collaborate with cross-functional teams to ensure security is incorporated (SDL) throughout the development process and integrated into the platform architecture.
  • Develop and maintain security policies, procedures, and standards for the Azure platform.
  • Work with incident response teams to investigate security incidents and implement remediation plans.
  • Provide security guidance to engineering and operations teams.
  • Staying up-to-date with the latest security trends, threats, and technologies.

Qualifications:
Required Qualifications:

  • Bachelor’s Degree in Computer Science, or related technical discipline AND 8+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python
    • OR equivalent experience.
  • Deep understanding of hardware and firmware security design, and vulnerability assessment and penetration testing of the same.
  • Experience with hardware security modules (HSMs), secure boot, secure firmware updates, attestation, secure recovery, and secure debug workflows at scale.
  • Working experience with architecting or implementing industry-standard security protocols, including secure communications (e.g., TLS, HTTPS), cryptographic algorithms, public key infrastructure, and key management technologies.

Preferred Qualifications:

  • The successful candidate should have experience with multiple programming languages (Rust is a plus), embedded systems, and hardware peripherals.
  • Familiarity with Operating System Security (e.g. Linux, Windows).
  • Familiarity and understanding of Supply Chain Security.

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

Software Engineering IC6 – The typical base pay range for this role across the U.S. is USD $158,500 – $276,600 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $202,800 – $304,200 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

#azurehwjobs

Job Category
Job Type
Salary
Country
City
Career Level
Company
JOB SOURCE