Microsoft Silicon, Cloud Hardware Infrastructure Engineering (SCHIE) is the team behind Microsoft’s expanding Cloud Infrastructure and responsible for powering Microsoft’s “Intelligent Cloud” mission. SCHIE delivers the core infrastructure and foundational technologies for Microsoft's over 200 online businesses including Bing, MSN, Office 365, Xbox Live, Skype, OneDrive and the Microsoft Azure platform globally with our server and data center infrastructure, security and compliance, operations, globalization, and manageability solutions. Our focus is on smart growth, high efficiency, and delivering a trusted experience to customers and partners worldwide.

As Azure business continues to grow the ability to deploy new service offerings and hardware infrastructure on time, in high volume with high quality and lowest TCO is of paramount importance. Azure Firmware Center of Excellence (CoE) team is instrumental in defining and delivering operational success for Azure that exceeds our customers’ expectations.

To achieve this goal, we are looking for a Principal Security Program Manager to join our team. If you have been working in the hardware/firmware security space and want to take the next step in your career, to come help us shape, define, develop, implement and track innovative security solutions for Azure Cloud, then this is a great opportunity for you. As the Principal Security Program Manager Leader for Hardware Security CoE team, you will be responsible to drive cross-org security programs to increase the security posture across Azure Cloud; a critical one being leading E2E Vulnerability Management across all Firmware payloads including our recently announced 1P offerings of MAIA (AI SoC) and Cobalt (Compute SoC).

In order to be successful in this role, you should have passion and interest in security technologies, be able to drive collaboration with multiple teams and have a willingness to develop holistic approaches to product solutions, work through discussions on Security severity, drive the right decision making involving trade offs at the cross section of security, performance, schedule and cost. You should also have a good understanding of Hardware and Firmware, and their intersection with Security and Compliance.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.

Responsibilities

• Develop roadmap, define strategy and drive technical solution implementations for Hardware/Firmware security initiatives including leading the E2E Vulnerability Management workstream across multiple payloads UEFI, BMC, GPUs etc.

• Partner with key stakeholders and manage cross-org collaboration to drive security related investments and present status updates to the Executive leadership team on regular cadence.

• Define measurable OKRs, KPIs, and quantify business impact for new investment areas.

• Manage multiple security hardening workstreams to continuously increase the security posture of Azure Cloud.

• Collaborate with Security Engineering and Firmware Development teams to perform penetration testing, triage security advisories and drive firmware deployment plans.

• Embody our culture (https://careers.microsoft.com/v2/global/en/culture) and values. (https://www.microsoft.com/en-us/about/corporate-values)

Qualifications

Minimum Qualifications:

• Bachelor's Degree in Computer Science, Electrical Engineering AND 6+ years experience in engineering, product/technical program management, data analysis, or product development

• OR equivalent experience.

• 3+ years experience managing cross-functional and/or cross-team projects.

• 5+ years of experience in security related Hardware/Firmware programs such as Root-of-Trust, Cryptography, Attestation, Threat Modelling, Security Assessment, or Vulnerability Management.

Other Requirements:

Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings:

• Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.

Preferred Qualifications:

• Bachelor’s degree in Computer Science, Electrical Engineering or equivalent experience.

• 8+ years of experience in Product Management, Technical Program Management or Engineering role with experience on HW/FW programs.

• Good program management skills to drive cross-org collaboration and ability to drive teams to deliver results without direct authority.

• 10+ years of experience in Product Management, Technical Program Management or Engineering role with experience on security related HW/FW programs e.g. Root-of-Trust, Cryptography, Attestation, Threat Modelling, Security Assessment, Vulnerability Management.

• Experience in managing complex cross-org, cross-business, cross-disciplinary programs and presenting updates to senior leadership team.

• Ability to deal with ambiguity, prioritize multiple strategic and tactical options and drive issues to resolution without compromising on quality.

Technical Program Management IC5 - The typical base pay range for this role across the U.S. is USD $137,600 - $267,000 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $180,400 - $294,000 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: US corporate pay information | Microsoft Careers (https://careers.microsoft.com/v2/global/en/us-corporate-pay.html)

Microsoft will accept applications for the role until September 25, 2024.

#azurehwjobs #SCHIE #Schiefwcoe #HW Security

Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations (https://careers.microsoft.com/v2/global/en/accessibility.html) .