Security System Engineer, Staff

QualcommSan Diego, CA
87d$134,800 - $202,200
Match Resume

About The Position

Qualcomm Cloud BU is seeking an experienced Security Systems Engineer to develop secure computing environments for Edge and Data Center use cases, targeting Qualcomm's next generation high-performance inference accelerator. This role focuses on expanding the Trusted Execution Environments (TEE) on server platforms and enabling our hardware-assisted inference accelerator as a trusted device. You will design and integrate solutions to protect sensitive workloads in TDISP and SR-IOV-compliant Trusted VMs across multi-tenant deployments. Candidate should have a background in cloud computing or on-prem server security systems, with experience in confidential computing, virtualization, and secure execution environments. Familiarity with platforms such as Intel TDX, AMD SEV-SNP, ARM CCA or AWS Nitro Enclaves is highly desirable.

Requirements

  • Proficient with PCIe architecture, including DMA, endpoint configuration, and secure provisioning flows.
  • Adept with virtualization technologies (e.g., CVM, SIVM, SR-IOV, Kata Containers), memory isolation, and secure device assignment.
  • Experience with confidential computing platforms such as Intel TDX, AMD SEV-SNP, ARM CCA or AWS Nitro Enclaves.
  • Experience with server security technologies such as secure boot, attestation, TPM.

Nice To Haves

  • 5+ years of experience with cloud infrastructure or server systems engineering, within the security or virtualization domains.
  • Experience with RISC-V configuration and secure VF provisioning.
  • Familiar with container runtimes (Kubernetes, Kata Containers) within confidential environments.
  • Knowledge of secure telemetry, secure update, and secure debug flows.
  • Experience designing or integrating secure GPU acceleration within enclave-based architectures.

Responsibilities

  • Collaborate with hardware, firmware, host software and application teams to deliver end-to-end Confidential Compute solutions.
  • Integrate and validate TDISP-compliant trusted device assignment and lifecycle management for secure inference acceleration.
  • Integrate and validate SR-IOV-based secure execution environment for PCIe devices, supporting isolation, attestation, and multi-tenant deployments.
  • Extend open-source OS/hypervisors (e.g., Linux, QEMU, KVM) to support confidential workload security extensions and validate solutions across various virtualization technologies and TEEs.
  • Work with server security technologies such as TPM, secure provisioning, firmware integrity, and platform-level attestation.
  • Contribute to threat modeling, risk assessments, and compliance alignment with industry standards TDISP, OCP, TCG, and Confidential Computing Consortium.
  • Participate in system bring-up, debugging, and performance tuning across heterogeneous compute environments.

Benefits

  • $134,800.00 - $202,200.00 salary range.
  • Competitive annual discretionary bonus program.
  • Opportunity for annual RSU grants.
  • Highly competitive benefits package designed to support success at work, at home, and at play.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Industry

Computer and Electronic Product Manufacturing

Education Level

Bachelor's degree

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service