## **Job Overview:**
Remember to check your CV before applying Also, ensure you read through all the requirements related to this role.
We are looking for an expert in security assessment of firmware, drivers, and
operating systems to join Arms Product Security team. In this role, you will
lead Arms approach to offensive software security with specific focus on
fuzzing and penetration testing.
## **Responsibilities:**
* Develop software security test framework and processes across Arms firmware, drivers and system software
* Lead Arms internal penetration test strategy for software products
* Schedule, prioritise and conduct software security tests
* Lead other security test engineers within the product security team and across the business
## **Required Skills and Experience :**
* Deep knowledge and expertise in design, development, documentation and testing of software specifically for low lever software such as firmware and drivers
* Strong understandings of SoC security fundamentals such as secure boot, measured boot, attestation, signing, Root of Trust
* Proven knowledge in leading software security assessment and penetration testing preferably at SoC level
* Demonstrated skills for finding security vulnerabilities which matter
* Professional knowledge of software languages (such as CC++, Rust, Python)
* Strong background in offensive security research
* Knowledge of Arm assembly, Arm based SoCs and devices
* Experience in leading fuzz testing activities and with tooling
* Capable of providing technical leadership
* Good interpersonal and communication skills
## **“Nice To Have” Skills and Experience :**
* Experience in performing security assessment on products towards external security certification such as common criteria, PSA, SESIP, FIPS
* Have participated in CTFs, Hackathons, or similar events
* Have published work within the offensive security domain at leading venues
* Expericence with security evaluation of Linux kernel security, Android OS security, Windows systems and drivers security
* Experience in security of GPUCPUSystem firmware and drivers
* Professional certifications such as OSCPOSEE
## **In Return:**
With offices worldwide, Arm is a diverse organization of dedicated, creative,
and hardworking engineers. By enabling a dynamic, inclusive, meritocratic, and
open workplace where everyone can grow and succeed, we encourage our people to
share their outstanding contributions to Arms success in the global
marketplace.
#LI-KD1
## **Accommodations at Arm**
At Arm, we want our people to **Do Great Things**. If you need support or an
accommodation to **Be Your Brilliant Self** during the recruitment process,
please email [accommodations@arm.com](mailto:accommodations@arm.com). To note,
by sending us the requested information, you consent to its use by Arm to
arrange for appropriate accommodations. All accommodation requests will be
treated with confidentiality, and information concerning these requests will
only be disclosed as necessary to provide the accommodation. Although this is
not an exhaustive list, examples of support include breaks between interviews,
having documents read aloud or office accessibility. Please email us about
anything we can do to accommodate you during the recruitment process.
## **Hybrid Working at Arm**
Arm’s approach to hybrid working is designed to create a working environment
that supports both high performance and personal wellbeing. We believe in
bringing people together face to face to enable us to work at pace, whilst
recognizing the value of flexibility. Within that framework, we empower
groupsteams to determine their own hybrid working patterns, depending on the
work and the team’s needs. Details of what this means for each role will be
shared upon application. In some cases, the flexibility we can offer is
limited by local legal, regulatory, tax, or other considerations, and where
this is the case, we will collaborate with you to find the best solution.
Please talk to us to find out more about what this could look like for you.
## **Equal Opportunities at Arm**
Arm is an equal opportunity employer, committed to providing an environment of
mutual respect where equal opportunities are available to all applicants and
colleagues. We are a diverse organization of dedicated and innovative
individuals, and don’t discriminate on the basis of race, color, religion,
sex, sexual orientation, gender identity, national origin, disability, or
status as a protected veteran.