×

Please log in to continue...

Login

Principal Security Engineer

The Azure Silicon Cloud Hardware Infrastructure and Engineering (SCHIE) team is instrumental in defining and delivering operational success for Azure that exceeds our customer’s expectations. Our technology and innovations are globally available foundation of Azure Control plane that hosts services with the scale of Azure Compute / Bing / Skype / Azure Storage / AI with millions of multiplayer gaming sessions and large-scale computational solutions. Our teams are responsible for the development of server, silicon, and rack infrastructure design with a focus on innovation for Azure infrastructure for Microsoft and their customers. Therefore, securing the fleet to enable our customers to achieve more is a fundamental priority for our business.

We are looking for a highly motivated Principal Security Engineer with a background in security to work on Securing Azure Infrastructure, both for the existing Azure fleet and incoming new portfolio. The Principal Security Engineer will be responsible for designing and implementing security measures for hardware and firmware systems that power Azure today. The role involves creating security solutions, assessing security risks, identifying vulnerabilities and mitigations to ensure Azure continues to be the world’s most secure platform. The Principal Security Engineer ideally will have knowledge of industry-standard security practices and have experience working with security across all cross sections of Silicon, Hardware, firmware, operating systems, and services.

Responsibilities:

  • Responsible for conducting regular security assessments and audits on security design to identify vulnerabilities, assessing security risk and develop design and mitigation strategies to ensure they meet Azure’s requirements for Platform Security.
  • Responsible for creating System Threat models for the Platform, working with cross functional teams to drive security through each individual component on the system.
  • Collaborate with cross-functional teams to ensure security is incorporated throughout the development process and integrated into the platform architecture.
  • Solid understanding of Security ciphers, threat vectors, security mitigation strategies to close identified vulnerabilities.
  • Experience with Penetration testing strategies, fuzzing etc.
  • Develop and maintain security policies, procedures, and standards for the Azure platform.
  • Work with incident response teams to investigate security incidents and implement remediation plans.
  • Provide security guidance to engineering and operations teams.
  • Staying up-to-date with the latest security trends, threats, and technologies.

Qualifications:
Required Qualifications:

  • Bachelor’s Degree in Computer Science, or related technical discipline AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python
    • OR equivalent experience.
  • 6+ years of professional experience in hardware and firmware security.
  • Experience with hardware security modules (HSMs), secure boot, secure firmware updates, Attestation, Secure recovery and secure debug workflows at scale.
  • Experience with fuzzing, penetration testing, Red team like activities.

Other Requirements:

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.

Preferred Qualifications:

  • Security Qualifications.
  • The candidate should have experience with programming languages (Rust is a plus), Embedded Systems, Hardware peripherals.
  • Familiarity with Operating System Security (e.g. Linux, Windows).
  • Familiarity and understanding of Supply Chain Security.
  • Working experience with architecting or implementing industry-standard security protocols, including secure communications (e.g., TLS, HTTPS), cryptographic algorithms, Public key infrastructure, key management technologies.
  • Experience with vulnerability assessment.
  • Excellent problem-solving and analytical skills.
  • Excellent written and verbal communication skills.

Software Engineering IC5 – The typical base pay range for this role across the U.S. is USD $133,600 – $256,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $173,200 – $282,200 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay

Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.

Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.

#azurehwjobs

Job Category
Job Type
Salary
Country
City
Career Level
Company
JOB SOURCE