The Azure Silicon Cloud Hardware Infrastructure and Engineering (SCHIE) team is instrumental in defining and delivering operational success for Azure that exceeds our customer’s expectations. Our technology and innovations are globally available foundation of Azure Control plane that hosts services with the scale of Azure Compute / Bing / Skype / Azure Storage / AI with millions of multiplayer gaming sessions and large-scale computational solutions. Our teams are responsible for the development of server, silicon and rack infrastructure design with a focus on innovation for Azure infrastructure for Microsoft and their customers. Therefore, securing the fleet to enable our customers to achieve more is a fundamental priority for our business.

We are looking for a Principal Firmware Architect with a background in security to work on Securing Azure Infrastructure, both for the existing Azure fleet and incoming new portfolio. The Platform Security Architect will be responsible for designing and implementing security measures for hardware and firmware systems that power Azure today. The role involves creating security solutions, assessing security risks, identifying vulnerabilities and mitigations to ensure Azure continues to be the world's most secure platform. The Hardware Firmware Security Architect will be familiar with industry-standard security practices and have experience working with security across all cross sections of Silicon, Hardware, firmware, OS and services.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

**Responsibilities**

+ Responsible for conducting regular security assessments and audits on security design to identify vulnerabilities, assessing security risk and develop design and mitigation strategies to ensure they meet Azure’s requirements for Platform Security

+ Responsible for building Azure HW/FW Security Roadmap working with our Security professionals across Azure including our 3P suppliers

+ Responsible for creating System Threat models for the Platform, working with cross functional teams to drive security through each individual component on the system

+ Collaborate with cross-functional teams to ensure security is incorporated (SDL) throughout the development processand integrated into the platform architecture.

+ Develop and maintain security policies, procedures, and standards for the Azure platform

+ Work with incident response teams to investigate security incidents and implement remediation plans

+ Provide security guidance to engineering and operations teams

+ Staying up-to-date with the latest security trends, threats, and technologies

+ Embody our culture (https://careers.microsoft.com/v2/global/en/culture) and values. (https://www.microsoft.com/en-us/about/corporate-values)

**Qualifications**

**Required Qualifications:**

+ Bachelor's Degree in Computer Science or related technical field AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python

+ OR equivalent experience.

+ Proficient understanding and experience with hardware/firmware architecture and design principles.

**Other Requirements:**

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings:

+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

**Preferred Qualifications: **

+ Bachelor's or Master's degree in electrical engineering, Computer Engineering, Computer Science, or a related field.

+ Experience with hardware and firmware security a plus, e.g. Experience with hardware security modules (HSMs), secure boot, secure firmware updates, Attestation, Secure recovery and secure debug workflows at scale.

+ Proficient problem-solving and analytical skills.

+ Proficient written and verbal communication skills.

+ Experience with programming languages (Rust is a plus), Embedded Systems, Hardware peripherals.

+ Familiarity with Operating System Security (e.g. Linux, Windows).

Software Engineering IC5 - The typical base pay range for this role across the U.S. is USD $137,600 - $267,000 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $180,400 - $294,000 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: US corporate pay information | Microsoft Careers (https://careers.microsoft.com/v2/global/en/us-corporate-pay.html)

Microsoft will accept applications for the role until August 12th, 2024.

\#SCHIE #swfwcoe

Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations (https://careers.microsoft.com/v2/global/en/accessibility.html) .