Principal Architect

Microsoft Microsoft · Big Tech · Redmond, WA +1 · Software Engineering

This Principal Architect role focuses on defining and driving the security architecture for foundational security services within Microsoft Security, specifically within the Authorization and Root of Trust (ART) team. The role involves improving AI tools across the software development lifecycle, guiding customer requirements, overseeing complex product architecture, mentoring, debugging, code reviews, and automating production deployments. It emphasizes enhancing security, privacy, and safety, ensuring strategic compliance, and championing collaboration and design principles within partner teams. While AI tools are mentioned as part of the SDLC improvement, the core focus is on security architecture, cryptography, PKI, and trust services, not on building or shipping AI models themselves.

What you'd actually do

  1. Define end-to-end security architecture across signing services, supply chain systems, ensuring a cohesive trust model for Microsoft services and platforms.
  2. Drive cryptographic and trust design decisions, including certificate issuance, key protection, and Post Quantum strategies that underpin global service security.
  3. Lead Zero Trust architecture adoption, ensuring identity, access, and artifacts are continuously verified across service-to-service and platform interactions.
  4. Align cross-org technical direction, partnering with Azure, Identity, and platform teams to unblock dependencies and ensure scalable, interoperable solutions.
  5. Own long-term evolution of the trust ecosystem, including readiness for emerging areas like post-quantum cryptography and secure supply chain assurances.

Skills

Required

  • Bachelor's Degree in Computer Science or related technical field AND 8+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience.

Nice to have

  • Master's Degree in Computer Science or related technical field AND 12+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR Bachelor's Degree in Computer Science or related technical field AND 15+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python OR equivalent experience.
  • Experience with modern cryptography and PKI systems, including signing, trust chains, and secure key management practices
  • Exposure to cloud-scale secrets management platforms (e.g., HSM-backed services, secure key storage, rotation and governance)

What the JD emphasized

  • security cloud
  • zero-trust architecture
  • foundational security services
  • identity and platform trust fabric
  • cryptographic and trust design decisions
  • modern cryptography and PKI systems