Qualcomm
Qualcomm Cloud BU is seeking an experienced Security Systems Engineer to develop secure computing environments for Edge and Data Center use cases, targeting Qualcomm’s next generation high-performance inference accelerator.
This role focuses on expanding the Trusted Execution Environments (TEE) on server platforms and enabling our hardware-assisted inference accelerator as a trusted device. The ideal candidate should have a background in cloud computing or on-prem server security systems, with experience in confidential computing, virtualization, and secure execution environments.
Key Responsibilities
Collaborate with hardware, firmware, host software and application teams to deliver end-to-end Confidential Compute solutions. Integrate and validate TDISP-compliant trusted device assignment and lifecycle management for secure inference acceleration. Integrate and validate SR-IOV-based secure execution environment for PCIe devices, supporting isolation, attestation, and multi-tenant deployments. Extend open-source OS/hypervisors (e.g., Linux, QEMU, KVM) to support confidential workload security extensions and validate solutions across various virtualization technologies and TEEs. Work with server security technologies such as TPM, secure provisioning, firmware integrity, and platform-level attestation. Contribute to threat modeling, risk assessments, and compliance alignment with industry standards TDISP, OCP, TCG, and Confidential Computing Consortium. Participate in system bring-up, debugging, and performance tuning across heterogeneous compute environments. Required Qualifications
Proficient with PCIe architecture, including DMA, endpoint configuration, and secure provisioning flows. Adept with virtualization technologies (e.g., CVM, SIVM, SR-IOV, Kata Containers), memory isolation, and secure device assignment. Experience with confidential computing platforms such as Intel TDX, AMD SEV-SNP, ARM CCA or AWS Nitro Enclaves. Experience with server security technologies such as secure boot, attestation, TPM. Preferred Skills/Experience
5+ years of experience with cloud infrastructure or server systems engineering, within the security or virtualization domains. Experience with RISC-V configuration and secure VF provisioning. Familiar with container runtimes (Kubernetes, Kata Containers) within confidential environments. Knowledge of secure telemetry, secure update, and secure debug flows. Experience designing or integrating secure GPU acceleration within enclave-based architectures. Minimum Qualifications
Bachelor's degree in Engineering, Information Systems, Computer Science, or related field and 4+ years of Software Engineering or related work experience. OR Master's degree in Engineering, Information Systems, Computer Science, or related field and 3+ years of Software Engineering or related work experience. OR PhD in Engineering, Information Systems, Computer Science, or related field and 2+ years of Software Engineering or related work experience. 2+ years of work experience with Programming Language such as C, C++, Java, Python, etc. Qualcomm is an equal opportunity employer. If you are an individual with a disability and need an accommodation during the application/hiring process, rest assured that Qualcomm is committed to providing an accessible process.
#J-18808-Ljbffr
Collaborate with hardware, firmware, host software and application teams to deliver end-to-end Confidential Compute solutions. Integrate and validate TDISP-compliant trusted device assignment and lifecycle management for secure inference acceleration. Integrate and validate SR-IOV-based secure execution environment for PCIe devices, supporting isolation, attestation, and multi-tenant deployments. Extend open-source OS/hypervisors (e.g., Linux, QEMU, KVM) to support confidential workload security extensions and validate solutions across various virtualization technologies and TEEs. Work with server security technologies such as TPM, secure provisioning, firmware integrity, and platform-level attestation. Contribute to threat modeling, risk assessments, and compliance alignment with industry standards TDISP, OCP, TCG, and Confidential Computing Consortium. Participate in system bring-up, debugging, and performance tuning across heterogeneous compute environments. Required Qualifications
Proficient with PCIe architecture, including DMA, endpoint configuration, and secure provisioning flows. Adept with virtualization technologies (e.g., CVM, SIVM, SR-IOV, Kata Containers), memory isolation, and secure device assignment. Experience with confidential computing platforms such as Intel TDX, AMD SEV-SNP, ARM CCA or AWS Nitro Enclaves. Experience with server security technologies such as secure boot, attestation, TPM. Preferred Skills/Experience
5+ years of experience with cloud infrastructure or server systems engineering, within the security or virtualization domains. Experience with RISC-V configuration and secure VF provisioning. Familiar with container runtimes (Kubernetes, Kata Containers) within confidential environments. Knowledge of secure telemetry, secure update, and secure debug flows. Experience designing or integrating secure GPU acceleration within enclave-based architectures. Minimum Qualifications
Bachelor's degree in Engineering, Information Systems, Computer Science, or related field and 4+ years of Software Engineering or related work experience. OR Master's degree in Engineering, Information Systems, Computer Science, or related field and 3+ years of Software Engineering or related work experience. OR PhD in Engineering, Information Systems, Computer Science, or related field and 2+ years of Software Engineering or related work experience. 2+ years of work experience with Programming Language such as C, C++, Java, Python, etc. Qualcomm is an equal opportunity employer. If you are an individual with a disability and need an accommodation during the application/hiring process, rest assured that Qualcomm is committed to providing an accessible process.
#J-18808-Ljbffr