Job Overview:
We are looking for a motivated Senior Security Engineer with a solid computer security background and hands-on experience to join our architecture security team in Cambridge, UK.
This role empowers you to shape the state of art in security of various architecture specifications. It involves cooperating with highly motivated architects, researchers and engineers from Arm. You will need a good eye for detail to perform security analysis and identify, analyze and mitigate security risks in architecture specifications, as well good interpersonal skills for cross site collaborations. You will also be performing vulnerability research and develop security validation collateral. Ensuring timely delivery of the security collaterals in an evolving environment is a challenge which will stretch and extend your knowledge and abilities. You will have an impact in improving the quality of the work from this group which will contribute to partner success by improving their time to market. If you strive for continuous improvement and are a hands-on team member this position would be of interest to you.
Responsibilities:
* Conduct comprehensive threat modelling, vulnerability analysis, and security risk assessments of Arm architecture specifications spanning CPU, Software, and System architectures.
* Collaborate with architecture development, implementation, and vulnerability research teams to enhance security posture of architecture specifications.
* Stay up to date with the latest security threats, trends, and mitigation strategies.
* Develop and maintain documentation related to security risk analysis.
* Develop and influence security validation test plans for hardware and firmware specifications.
* Investigate new security vulnerabilities on Arm IPs through PoC/exploit writing at different stages: architecture specification, RTL design, and silicon
* Effective interpersonal skills, in terms of planning, reviews, status updates and meetings, as well as delivery against expectation.
Required Skills and Experience:
* Strong understanding of security principles, threat modelling, vulnerability analysis, and security risk assessment.
* Demonstrated ability in computer security – Security risk analysis of hardware/software architecture/implementations, played CTFs, published research and talks, exploits, PoCs, etc.
* Knowledge of computer architecture (preferably Arm) and OS fundamentals
* Familiarity with programming languages such as Python, C/C++, and assembly.
* Self-motivated and proactive demeanour towards challenges and problem solving
* Excellent communication and collaboration skills
“Nice To Have” Skills and Experience:
* Understanding of micro-architectural attacks and side-channels
* Reverse engineering skills
* Experience with bus protocols (AMBA, CXL, PCIe, etc.)
In Return:
Based in Cambridge UK, this is an opportunity to join a dynamic, collaborative, and driven team, and provides a genuine opportunity to craft the best outcomes for Arm.
#LI-JW
Accommodations at Arm
At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email accommodations@arm.com. To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process.
Hybrid Working at Arm
Arm’s approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team’s needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you.
Equal Opportunities at Arm
Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don’t discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.