CrawlJobs Logo

Principal Security Architect - Windows Server

https://www.microsoft.com/ Logo

Microsoft Corporation

Location Icon

Location:
United States , Redmond

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

139900.00 - 274800.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

The Windows Server Security Architect (L66) defines and drives security architecture for Windows Server across on-premises, hybrid, and cloud-connected deployments. As a Principal Security Architect - Windows Server, sets the technical direction for threat-resistant platform capabilities, partners across engineering teams to drive implementation, guides secure-by-design engineering practices, and coordinates with incident response and compliance teams. The architect is expected to lead through influence, make high-impact design and security decisions, and translate evolving threats, security requirements, and customer needs into actionable platform architecture.

Job Responsibility:

  • Own end-to-end security architecture for core Windows Server components (e.g., boot and firmware trust, kernel and virtualization security, identity and access, networking, storage, management plane), balancing security, reliability, performance, and compatibility
  • Partner with engineering teams to shape designs early (architecture “shift left”), secure appropriate resourcing, identify design risks, and unblock delivery with pragmatic, secure solutions
  • Develop and maintain reference architectures, security design patterns, and guardrails for Windows Server features and services used in on-premises and hybrid environments
  • Lead threat modeling and security reviews for new and existing capabilities
  • drive mitigations for high-severity threats and systemic classes of vulnerabilities
  • Define security requirements and non-functional constraints (e.g., secure defaults, hardening baselines, cryptographic standards, key management, auditability, logging, and telemetry) and ensure they are translated into engineering deliverables
  • Act as a technical leader during security incidents: assess impact, guide containment and remediation, and drive post-incident architectural improvements
  • Collaborate with product management, customer support, and field teams to understand real-world attack patterns and operational constraints
  • incorporate learnings into architecture
  • Represent Windows Server security architecture in cross-team reviews and executive/partner communications
  • articulate tradeoffs and recommendations clearly and persuasively

Requirements:

  • Bachelor's Degree in Computer Science or related technical field AND 6+ years technical engineering experience with coding in languages including, but not limited to, C, C++, C#, Java, JavaScript, or Python
  • OR equivalent experience
  • Ability to meet Microsoft, customer and/or government security screening requirements
  • This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter

Nice to have:

  • Demonstrated experience designing secure architectures and leading threat modeling, security reviews, and mitigation planning for complex, distributed systems
  • Ability to influence without authority across engineering teams, establish technical direction, and drive alignment through clear written and verbal communication
  • Expertise in security controls such as secure boot/TPM, virtualization-based security, identity and credential protection, code integrity, exploit mitigations, cryptography, and secure configuration
  • Experience partnering across disciplines (engineering, PM, incident response, privacy/compliance) to deliver measurable risk reduction
  • Experience with Windows Server security features and management (e.g., Active Directory/Entra integration patterns, Group Policy, Windows Defender, WDAC/App Control, Credential Guard, BitLocker, Secure Core)
  • Solid understanding of modern attacker techniques (credential theft, lateral movement, persistence, privilege escalation, supply chain and build attacks) and corresponding defensive strategies
  • Deep knowledge of Windows OS fundamentals (kernel concepts, security boundaries, process and memory isolation, drivers, authentication and authorization, networking stack) and how enterprise environments deploy and manage Windows Server
  • Background in vulnerability research, exploit development/mitigation, reverse engineering, or advanced debugging of OS and low-level components
  • Experience securing supply chain and build/release systems, including code signing, artifact integrity, and secure servicing practices
  • Knowledge of compliance and assurance needs for enterprise and regulated industries (e.g., audit logging, FedRAMP/ISO/SOC expectations) and how to architect for evidence and controls
  • Familiarity with cloud and hybrid security architectures (e.g., Azure, Arc-enabled servers, managed identities, zero trust patterns)
  • Contributions to security standards, open-source security projects, or published security research

Additional Information:

Job Posted:
March 26, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Microsoft Corporation - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Principal Security Architect - Windows Server

Principal Firmware Architect - Hyperscale & AI Rack-Based Compute Systems

The Principal Firmware Architect will be responsible for architecting server and...
Location
Location
United States , Georgetown
Salary
Salary:
Not provided
sanmina.com Logo
Sanmina
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proficiency in one or more of the following: AMI BMC FW, OpenBMC FW, HP iLO, Dell iDRAC, UEFI FW (BIOS)
  • Experience with DMTF standards such as MCTP, NC‑SI, PLDM, OVF, Redfish, SPDM
  • Knowledge of security protocols, Root of Trust, and secure design principles
  • Experience with operating systems and driver design/usage
  • Strong background in Intel/AMD/ARM/GPU platform architectures
  • Strong understanding of Baseboard Management Controller (BMC) functionality, telemetry, and controls
  • Working knowledge of server operating systems including Windows Server (2016, 2019, 2022) and Linux (CentOS, Ubuntu, Fedora, SUSE)
  • Knowledge of virtualization technologies (VMware, Citrix, Microsoft)
  • Understanding of software driver implementation, IP schemas, and network protocols
  • Demonstrated ability to learn and apply new technologies
Job Responsibility
Job Responsibility
  • Develop long‑term hyperscale server firmware and security technology strategies based on customer needs
  • Develop, test, debug, and optimize firmware for ZT hyperscale compute/storage products and proof of concepts
  • Drive adoption of firmware development strategies internally and externally
  • Collaborate directly with customers on new firmware architectures for compute servers, storage servers, and add‑on cards
  • Solve performance and operational challenges to deliver business value through ZT firmware
  • Contribute firmware and security content to System Architecture Specifications for ZT server products
  • Build long‑term technical relationships within the firmware technology ecosystem to influence next‑generation server design
  • Align with customers and partners on security requirements and guide ZT engineering teams accordingly
  • Participate in in‑depth security reviews and drive compliance with industry standards
  • Engage in industry forums, workgroups, and consortiums related to firmware and security initiatives
What we offer
What we offer
  • Competitive base salary
  • Performance-based annual bonus eligibility
  • 401(k) retirement savings plan
  • Tuition reimbursement for eligible education programs
  • Comprehensive medical, dental, and vision coverage with access to leading providers
  • Mental health resources and employee wellness support programs
  • Company-paid life and disability insurance
  • Paid time off (PTO) and company-paid holidays
  • Parental leave and family care support programs
  • Structured training programs and on-the-job learning opportunities
Read More
Arrow Right
New

Principal Product Support Engineer Level 4

HPE is seeking a Principal Product Support Engineer (Level 4) to serve as the pr...
Location
Location
United States , Oklahoma City;Dallas;Houston;Montgomery
Salary
Salary:
152000.00 - 349000.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • U.S. Citizenship (required without exception)
  • Active Secret clearance, or demonstrated ability to obtain one (U.S. citizen with clean background)
  • Bachelor’s degree in Computer Science, Information Technology, Engineering, or equivalent hands-on experience
  • 10+ years of hands-on experience in infrastructure engineering, systems administration, or technical support — with demonstrated depth in at least three of the following domains: VMware (ESXi, vCenter, vSAN, NSX) and/or KVM/libvirt — both are relevant
  • KVM experience is highly desired
  • Kubernetes and containerized workloads (hands-on cluster operations, not solely architectural review)
  • Linux systems administration and live troubleshooting (Red Hat, Ubuntu, or similar)
  • Enterprise networking (routing, switching, VLANs, overlay networks, load balancing, firewalls)
  • Windows Server in hybrid/AD environments
  • Hybrid or on-premises cloud infrastructure
Job Responsibility
Job Responsibility
  • Receiving escalations from on-site Level 1–3 teams, triaging root cause hands-on, and owning the technical path to resolution across the full infrastructure stack
  • Engaging directly with HPE engineers: writing structured defect reports with reproduction steps, attending engineering triage calls, and validating patches in customer environments before broader rollout
  • Translating field-observed symptoms into actionable technical requirements for product and engineering teams
  • Training and enabling a managed services team field engineers who are new to the PCE platform
  • Monitoring customer environments
  • triaging alerts and contributing to dashboard and observability improvements
  • Conducting on-site work at customer locations
  • Hardening environments to DISA STIG requirements and supporting audit readiness activities
  • Producing customer-facing incident summaries and internal knowledge base articles after each major resolution
  • Act as the primary conduit between on-site support teams and HPE BU engineering
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Principal DevOps Engineer

Riverstone Enterprise Solutions, a PD Systems company, delivers mission-focused ...
Location
Location
United States , Annapolis Junction
Salary
Salary:
Not provided
rivsol.com Logo
Riverstone Enterprise Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or higher is required in either Engineering (i. e. Computer, Electrical, Mechanical, Aerospace, etc.) or Computer Science with a minimum of ten (10) years of related experience
  • Must be fluent with Git
  • Strong knowledge of Linux and Linux environments (RHEL 617/8, RHCSNRHCE CentOS)
  • Experience with Windows system administration, system monitoring, instrumentation, resiliency and performance
  • Experience integrating Jenkins/Bamboo Docker, and Kubernetes for automated deployment preferred
  • Experience with caching technologies (Memcache, Active MQ, Redis, APC, etc.)
  • Experience with MySQL (Clusters, Replication, and Tuning) and Elasticsearch (Kibana a plus)
  • Knowledge of security practices, networking protocols, firewalls, PCI compliance etc.
  • Experience managing/monitoring AWS cloud and virtualized servers for optimal performance while working in a Platform as a Service (PaaS) environment
  • Familiarity with software development life cycle models, agile, and DevOps programming methodologies
Job Responsibility
Job Responsibility
  • Support the development life cycle of platform architectural design, deployment and debugging
  • Develop & maintain sound version control best practices-based CM systems (GIT), including branching and merging strategies
  • Serve as a technical lead for an Agile team and actively participate in all Agile ceremonies
  • Ability to automate release deployments across development, test, staging, Quality Assurance and production stacks using a combination of scripting languages and other automation toolkits
  • Set-up new sites and applications via configuration management such as Puppet and Ansible
  • Maintain / upgrade/ patch tracking and documentation software (Confluence / Jira)
  • Create, Assist, and Implement design and maintenance web service infrastructure and deployments
  • Analyze service stack and make recommendations for further improvements
  • Identify processes and capabilities that can be streamlined and automated
  • Communicate effectively to help bridge stakeholders and development requirements
  • Fulltime
Read More
Arrow Right
New

Principal DevOps Engineer

Riverstone Enterprise Solutions, an Envision Innovative Solutions Company, deliv...
Location
Location
United States , Annapolis Junction
Salary
Salary:
200000.00 - 220000.00 USD / Year
rivsol.com Logo
Riverstone Enterprise Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or higher is required in either Engineering (i.e. Computer, Electrical, Mechanical, Aerospace, etc.) or Computer Science with a minimum of ten (10) years of related experience. Five (5) years of additional DevOps experience may be substituted for a bachelor's degree
  • Must be fluent with Git
  • Strong knowledge of Linux and Linux environments (RHEL 617/8, RHCSNRHCE CentOS)
  • Experience with Windows system administration, system monitoring, instrumentation, resiliency and performance
  • Experience integrating Jenkins/Bamboo Docker, and Kubernetes for automated deployment preferred
  • Experience with caching technologies (Memcache, Active MQ, Redis, APC, etc.)
  • Experience with MySQL (Clusters, Replication, and Tuning) and Elasticsearch (Kibana a plus)
  • Knowledge of security practices, networking protocols, firewalls, PCI compliance etc.
  • Experience managing/monitoring AWS cloud and virtualized servers for optimal performance while working in a Platform as a Service (PaaS) environment
  • Familiarity with software development life cycle models, agile, and DevOps programming methodologies
Job Responsibility
Job Responsibility
  • Support the development life cycle of platform architectural design, deployment and debugging
  • Develop & maintain sound version control best practices-based CM systems (GIT), including branching and merging strategies
  • Serve as a technical lead for an Agile team and actively participate in all Agile ceremonies
  • Participate in all team ceremonies including planning, grooming, product demonstration and team retrospectives
  • Ability to automate release deployments across development, test, staging, Quality Assurance and production stacks using a combination of scripting languages and other automation toolkits
  • Set-up up new sites and applications via configuration management such as Puppet and Ansible
  • Maintain / upgrade/ patch tracking and documentation software (Confluence / Jira)
  • Create, Assist, and Implement design and maintenance web service infrastructure and deployment
  • Leverage programming Languages such as Python, Ruby, Perl, and Java
  • Proficient with DevOps or Site Reliability Engineering methodologies
  • Fulltime
Read More
Arrow Right
New

Qualified Dental Nurse

Riverdale Healthcare is looking for a Qualified Dental Nurse to join the team at...
Location
Location
United Kingdom , Nottingham
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • GDC registered Dental Nurse
  • Up-to-date Hepatitis B vaccination and immunisation status
  • Excellent communication and interpersonal skills
  • A team-focused approach with a strong commitment to patient care
Job Responsibility
Job Responsibility
  • Assist clinicians during a wide range of dental procedures
  • Maintain high standards of infection control and cleanliness
  • Deliver excellent patient care and reassurance
  • Assist with patient records and administrative tasks
  • Ensure compliance with CQC and GDC regulations
What we offer
What we offer
  • 21 days annual leave + 8 bank holidays
  • Additional leave for long service
  • Quarterly performance-related bonus
  • Free uniform provided
  • Indemnity cover included
  • Annual GDC registration paid
  • Workplace pension with NEST
  • Access to store discounts via our staff app
  • Strong commitment to professional development
  • Refer-a-friend scheme - earn up to £7,500
  • Parttime
Read More
Arrow Right
New

Inventory Planning Intern

The Team: The Merchandising department is responsible of the product strategy fo...
Location
Location
United States , New York
Salary
Salary:
20.00 USD / Hour
chat3d.ai Logo
Chat3D
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Enrolled in an Associates, Bachelor’s, or Master’s Degree program
  • Proactive, self-starter who can take initiative and work independently to deliver results
  • Creative problem-solver with strong communication skills
  • Strong analytical and critical thinking skills
  • Luxury brand experience is an advantage
  • Excel and PowerPoint expertise preferred
Job Responsibility
Job Responsibility
  • Assist the allocation team with product distribution to stores, including preparing and updating allocation and replenishment plans
  • Monitor store performance, sales trends, and inventory levels to identify opportunities and support post-season or ad hoc performance analysis
  • Track and monitor product flow, maintain store and inventory data, and support cross-functional projects
  • Help maintain reports, dashboards, and insights to support decision-making and contribute to process and tool improvements
  • Provide general administrative support to the Planning team as needed
  • Fulltime
Read More
Arrow Right
New

Support Worker

At Liaise, we are inspired by our values of Positive, Progressive, and Personal ...
Location
Location
United Kingdom , Norwich
Salary
Salary:
12.80 GBP / Hour
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Full driving license required and access to own vehicle to reach the setting
  • A basic understanding of care is beneficial, but no formal experience is required
  • Strong communication skills
  • Takes pride in working with vulnerable people and takes safeguarding responsibilities seriously
  • Effective decision making and judgement
  • Strong planning and organisation skills
  • Achieves all Health & Safety standards
Job Responsibility
Job Responsibility
  • Using the training provided, assist those who we support by helping with daily tasks
  • Be there to support in day to day life
  • such as social visits, family visits and also days out to some great, local attractions
  • Keeping paperwork up to date to ensure everything is captured for each person who lives in the home
  • Working positively with colleagues, families and external organisations to assist in supporting those who live in the home.
What we offer
What we offer
  • Market leading pay rates
  • Length of service leave (up to five extra days holiday)
  • Fully funded Blue Light Discount Card
  • Access to Wagesteam – our financial wellbeing app that lets you access your pay as and when you earn it, get discounts at supermarkets and helps you save.
  • Employee Assistance Programme (access to free telephone counselling and legal advice)
  • Free compliance training, and opportunities to develop
  • NEST Pension Scheme
  • Flexibility in creating your own rota to suit your life
  • Free enhanced DBS check
  • Life Assurance (2 x salary)
  • Fulltime
Read More
Arrow Right
New

Beauty Sales Consultant

We’re building a world of health around every individual — shaping a more connec...
Location
Location
United States , West Roxbury
Salary
Salary:
17.00 - 26.00 USD / Hour
https://www.cvshealth.com/ Logo
CVS Health
Expiration Date
June 01, 2026
Flip Icon
Requirements
Requirements
  • Sales oriented
  • Ability to use sales data with product/brand knowledge to meet sales and beauty service goals
  • Strong interpersonal, organizational, and communication skills
  • Goal-driven, with an ability to multi-task
  • Ability to work independently and as an integral part of a team in a fast-paced environment, handle multiple priorities, and quickly learn new procedures
  • Available to work a flexible retail schedule, which may include mornings, evenings, weekends, extended hours, and "Peak" Hours
  • Ability to perform the tasks listed throughout the job description
  • Must demonstrate the ability and willingness to perform ear-piercing services in all stores (training and certification to be provided)
  • In specific CVS stores, we require bilingual beauty advisors that can speak to customers in both English and Spanish
  • Must be at least 18 years old
Job Responsibility
Job Responsibility
  • Seek out customers to ensure they have a fantastic beauty advisor experience through personalized sales service based on customer needs, effective upselling and suggestive selling, as well as subsequent follow-up contact to build lasting relationships
  • Engage in conversation with each customer as they enter the beauty zone
  • listen to and be sensitive to the customer's information, be conscious of their needs and provide specialized sales advice
  • Maneuver in a conversation to stimulate a different thought process
  • Be the brand expert by answering customer questions in detail with product knowledge to produce the largest sales basket possible
  • Using the facilities provided, explain how various products help the customer address their needs by educating them of the proper usage and benefits and leveraging the CVS beauty monthly sampling program to build relationships
  • Participate in and represent company sales programs or events that positively impact business
  • Create and maintain product displays, end caps, and other beauty-specific promotional materials supporting key brands, corporate initiatives, and local advertising efforts
  • Maintain a beautiful and clean zone by keeping your assigned area well-stocked, well-merchandised, and compliant with hygiene standards for a positive shopping experience
  • Ensure that all CVS tester sanitation, hazardous waste disposal, and tool cleansing policies are executed in a timely and compliant manner
What we offer
What we offer
  • Exposure to the latest and greatest product in the industry through brand interaction, training, and more
  • Gratis
  • Brand partners and other colleagues will present and discuss new and upcoming products and provide training on various initiatives
  • You will be helping people on their path to better health
  • Affordable medical plan options, a 401(k) plan (including matching company contributions), and an employee stock purchase plan
  • No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching
  • Benefit solutions that address the different needs and preferences of our colleagues including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility
  • Fulltime
Read More
Arrow Right