New job, posted less than a week ago!
Job Details
Posted date: Sep 10, 2025
Category: Software Engineering
Location: Redmond, WA
Estimated salary: $222,050
Range: $139,900 - $304,200
Employment type: Full-Time
Travel amount: 25.0%
Work location type: 3 days / week in-office
Role: Individual Contributor
Description
The Azure Silicon Cloud Hardware Infrastructure and Engineering (SCHIE) team builds the foundation of the Microsoft Cloud. Our teams are responsible for server, silicon and rack infrastructure design and development. Securing the fleet to enable our customers to achieve more is a fundamental priority for our business.We are looking for a Principal Platform Security Architect to work on securing Azure infrastructure, both for the existing Azure fleet and for new hardware. The Platform Security Architect will be responsible for designing and implementing security measures for hardware and firmware systems that power Azure today. The role involves creating security solutions, assessing security risks, identifying vulnerabilities and mitigations to ensure that Azure continues to be the world’s most secure cloud platform. The candidate will be familiar with industry-standard security practices and have experience working with security at the intersection of silicon, hardware, firmware, operating systems, and services.
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Lead security assurance by running in-depth security assessments and audits, uncovering hidden vulnerabilities, and shaping robust mitigation strategies that keep our platforms resilient against evolving threats. Shape the future of cloud security by contributing directly to our Azure hardware and firmware security roadmap, collaborating with world-class experts across Azure and our supplier ecosystem to drive next-generation protections. Be the architect of trust by creating comprehensive system threat models and partnering with cross-functional teams to weave security into every layer and component of the platform. Champion security by design, partner with cross-functional teams to embed security throughout the development lifecycle (SDL) and into the very foundation of our platform architecture. Set the bar for trust, define and evolve security policies, procedures, and standards that safeguard the Azure platform at scale. Be on the front lines, collaborate with incident response teams to investigate security events, drive rapid remediation, and strengthen defenses. Empower builders and operators — provide actionable security guidance to engineering and operations teams, ensuring secure innovation without slowing momentum. Stay ahead of the curve, track cutting-edge security trends, emerging threats, and breakthrough technologies to keep our platform one step ahead. Embody our culture and values.
Qualifications
Minimum Qualifications
Bachelor's Degree in Computer Science or related technical field AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience.6+ years of professional experience in hardware and firmware security.Proficient understanding of hardware and firmware design principles and practices.Experience with vulnerability assessment and penetration testing. Other Requirements:
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings:
Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
Preferred Qualifications:
Experience with hardware security modules (HSMs), secure boot, secure firmware updates, attestation, secure recovery and secure debug workflows at scale Working experience designing or implementing industry-standard security protocols, including secure communications (e.g., TLS, HTTPS), cryptographic algorithms, public key infrastructure, and key management technologies. SoC security — designing and securing silicon platforms at the heart of cloud-scale systems. Applied cryptography — from today’s proven methods to tomorrow’s breakthroughs in post-quantum crypto, building resilience against even the most advanced adversaries. Supply chain security — safeguarding trust from silicon fabrication to firmware deployment, ensuring end-to-end integrity across complex ecosystems. The successful candidate should have experience with C/C++ (Rust is a plus), Embedded Systems, Hardware peripherals, and Windows or Linux Experience with penetration testing Proficient problem-solving and analytical skills. Proficient written and verbal communication skills.
Software Engineering IC5 - The typical base pay range for this role across the U.S. is USD $139,900 - $274,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $188,000 - $304,200 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:US corporate pay information | Microsoft Careers
Microsoft will accept applications for the role until September 20th, 2025.
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form.
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire/transfer and every two years thereafter.
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
#SCHIE #azurehwjobs
Check out other jobs at Microsoft.