Overview
Join the Microsoft Device Ecosystem and Platform (MDEP) team, where we are building the future of secure-first platforms. We are a world-class platform, middleware, apps, and services organization that brings end-to-end experiences to life on a diverse range of products, empowering customers through powerful connections to Windows, M365, and Azure across the devices they use.
Our team collaborates with software developers, quality engineers, designers, product managers, and various industry partners to create innovative services and experiences. We design and implement security software components on the Microsoft Device Ecosystem Platform (MDEP) to protect devices and their users' data, as well as secure remote services access.
At Microsoft, we have a vision of enabling everyone and every organization on the planet to achieve more. We work with a growth mindset, innovate to empower others, and collaborate to reach our common goals. We uphold our values of respect, integrity, and accountability every day and foster a culture of inclusion where everyone can thrive at work and beyond.
Responsibilities
• Design, develop, and maintain AOSP security features, applications, and frameworks using Java, Kotlin, C/C++, and other technologies.
• Work across drivers, tools, Linux Kernel, trusted applications, AOSP Framework, and AOSP services.
• Collaborate with developers, testers, product managers, and security experts to ensure the quality, performance, and security of the AOSP platform and applications.
• Research and implement the latest security best practices, standards, and technologies for AOSP development.
• Troubleshoot, debug, and fix security issues and vulnerabilities in AOSP applications and systems.
• Represent the Microsoft MDEP team in various forums with partners, providing industry-leading technical guidance.
• Participate in code reviews to ensure code quality and share knowledge with the team.
• Demonstrate excellent communication skills with the ability to articulate technical design, implementation, and issues clearly and concisely.
• Stay updated on AOSP operating system updates, security trends, and industry best practices.
Qualifications
**Required Qualifications: **
Bachelor's Degree in Computer Science or related technical field AND 4+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python
- OR equivalent experience.
8+ years of software development experience, with significant experience contributing to or leading architectural design.
Experience with AOSP security features such as device integrity, cryptography, Keymint, and Keystore.
Expertise in device integrity mechanisms, key attestation processes, key provision strategies, and the management of trusted applications within AOSP.
Ability to develop and manage trusted applications that operate within a TEE.
Capability to design and develop robust security solutions that align with industry standards and best practices.
Strong analytical and problem-solving skills, with the ability to troubleshoot complex software and security issues.
Leadership skills to guide a team in the development of secure software solutions.
Strong communication skills with proven track record of representing security technology with customers and device manufacturers.
**Preferred Qualifications: **
- Familiarity with System on Chip (SOC) hardware architecture and secure software for SOC.
- In-depth knowledge of key attestation processes, including hardware-backed keystore and certificate management.
- Proven track record in designing complex architecture from TrustZone to the application layer.
- Ability to implement and manage security measures for device-to-device communication and data protection.
- Strong background in cryptography, mobile security, and secure communications.
- Advanced understanding of operating system security, including Linux kernel and AOSP platform hardening techniques.
- High tolerance for ambiguity and ability to make progress in the face of it.
- Experience with Azure Cloud and Azure DevOps (ADO) pipeline is preferred but not required.
#W+DJOBS
Software Engineering IC4 - The typical base pay range for this role across the U.S. is USD $119,800 - $234,700 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $158,400 - $258,000 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay
This position will be open for a minimum of 5 days, with applications accepted on an ongoing basis until the position is filled.
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance with religious accommodations and/or a reasonable accommodation due to a disability during the application process, read more about **requesting accommodations.**