Job Overview:
We are looking for a talented Security Engineer to join Arm’s Product Security team. In this role, you will play a key part in enhancing the security of Arm’s software and processes, while contributing to building a strong security engineering culture across the organization.
Responsibilities:
* Conduct security assessments across Arm's firmware, drivers and system software.
* Review and advise on output of various Security Development Lifecycle (SDLC) stages such as threat modeling, security testing, including DAST, SAST, SCA
* Enable engineering teams to implement various stages of Arm's SDLC independently
* Provide consultation on specific areas of software security and on the application of SDLC to the engineering teams
* Keep up-to-date with industry best practices and developments in software security.
* Continuously improve Arm's approach to software security by refining software security best practices
Required Skills and Experience :
* Deep knowledge and expertise in developing and reviewing software threat models.
* Detailed experience in security concept design, mitigation analysis
* Experience writing secure code, and designing secure software specifically for low level software such as drivers, firmware.
* Demonstrated skills for secure code reviews (C/C++) of complex software projects.
* Experience in automation using scripting languages (e.g., Python).
* Experience in performing Software Composition Analysis using tools such as Black Duck.
* Experience in implementing Security Development Lifecycle in an organization.
“Nice To Have” Skills and Experience :
* Expericence working with Arm's open source software.
* Knowledge of Arm assembly.
* Delivered software security training.
* Experience in configuration and creation of rules for SAST tools such as Coverity and SonarQube.
* Experience working with relevant security certification schemes (e.g., PSA Certified, common criteria, SESIP) and international standards (e.g, ISO 21434, IEC 62443).
In Return:
Arm is committed to global talent acquisition, offering an attractive relocation package. With offices worldwide, Arm is a diverse organization of dedicated, creative, and hardworking engineers. By enabling a dynamic, inclusive, meritocratic, and open workplace where everyone can grow and succeed, we encourage our people to share their outstanding contributions to Arm's success in the global marketplace.
#LI-PD1
Accommodations at Arm
At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email accommodations@arm.com. To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process.
Hybrid Working at Arm
Arm’s approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team’s needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you.
Equal Opportunities at Arm
Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don’t discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#J-18808-Ljbffr