Principal Security Engineer
Microsoft · Redmond, WA · 3 days ago
HybridEngineering$143k–$275k/yrFull-time
Responsibilities
- Designed and developed firmware for Hardware Security Modules (HSMs), security accelerators, and Root of Trust (RoT) solutions.
- Contributed to all phases of product development, including architecture, design, implementation, integration, and validation for security-focused SoCs.
- Defined and implemented bootloader and embedded kernel architectures to support secure and reliable system initialization.
- Developed secure firmware supporting security protocols, key management, attestation, and cryptographic services.
- Implemented and optimized secure boot flows to ensure trusted device startup and firmware integrity.
- Wrote, debugged, and optimized embedded firmware with a focus on performance, reliability, and security.
- Diagnosed and resolved complex firmware issues through root cause analysis, debugging, and troubleshooting.
- Applied cryptographic principles and security protocols to protect embedded systems and hardware assets.
- Developed firmware for embedded devices running Real-Time Operating Systems (RTOS), utilizing OS primitives such as task scheduling, interrupts, threading, synchronization, and memory management.
- Collaborated with cross-functional hardware, software, and security engineering teams to deliver secure embedded solutions.
- Ensured firmware compliance with security requirements and industry best practices for trusted computing environments.
Qualifications
- Bachelor's Degree in Computer Science or related technical field AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience.
- Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include but are not limited to the following specialized security screenings: Microsoft Cloud Background Check.
- 10+ years of professional experience designing, developing security critical code.
- Familiarity with standard Cryptography algorithms.
- Familiarity with secure boots, attestation, recovery.
- Problem solving, debugging, and troubleshooting skills, advanced design and development skills.
- Experienced with ROM, Bootloader, and embedded runtime development.
- Ability to debug and resolve issues spanning multiple subsystems.
- Proven and demonstrable skill in Rust, C, C++.
- Experience in working in pre silicon environments.
- Familiar with PCIe, NVME, I3C, I2C, SPI, SPI-FLAS.