Job Title
Principal Software Security Engineer
Role Summary
Join Arm's Vulnerability Research Tooling Team to design and build AI-enabled tooling that identifies hardware security issues across specifications, RTL, firmware interfaces, software models, and hardware-software boundaries.
The role combines software engineering, data engineering, AI/LLM tooling, and security to convert expert review knowledge into reusable datasets, analysis workflows, evaluation methods, and production-ready tooling.
Experience Level
Senior (Principal). Typically a principal engineer-level role; generally aligned with 7+ years of relevant experience.
Responsibilities
Primary responsibilities include designing, delivering, and maturing AI-assisted security analysis tooling and workflows.
- Lead design and delivery of AI-enabled tooling for hardware security issue identification across specs, RTL, firmware, software models, and interfaces.
- Develop analysis workflows and services combining AI, retrieval, static analysis, automation, and human review to produce credible findings.
- Partner with hardware engineering, software security, research, fuzzing, threat modelling, and platform teams to align tooling with engineering workflows.
- Define evaluation approaches for AI-assisted security analysis: benchmarks, ground truth, confidence measures, false-positive handling, and evidence quality.
- Contribute to long-term roadmap, prototype evolution, productionisation, and platform integration for hardware security AI tooling.
Requirements
Must-have technical skills and experience for immediate contribution.
- Significant experience designing and building software systems using modern backend, data, platform, or developer-tooling practices.
- Experience building AI-enabled tooling, data-heavy engineering systems, analysis platforms, developer tools, or automation for complex domains.
- Practical understanding of LLM-based systems including retrieval, embeddings, context engineering, structured outputs, tool/function calling, and workflow orchestration.
- Familiarity with advanced AI workflow techniques: agentic workflows, task decomposition, evaluator/critic loops, human-in-the-loop review, context/memory systems, and traceable evidence generation.
- Ability to work with domain experts, extract tacit knowledge, and translate it into structured data, software workflows, evaluation criteria, and maintainable tooling.
- Proven influence on technical direction and effective cross-team collaboration across security, software, hardware, research, and platform teams.
Nice-to-have:
- Exposure to hardware architecture, RTL, firmware, SoC design, CPU/GPU systems, or hardware/software interfaces.
- Exposure to hardware security, platform security, vulnerability research, secure development, or threat modelling.
- Experience with static analysis, symbolic analysis, formal methods, or other automated techniques.
- Experience building datasets, benchmarks, evaluation harnesses, or test corpora for AI-assisted analysis.
- Familiarity with cloud, containerized development, infrastructure-as-code, CI/CD, observability, or internal engineering platforms.
- Experience collaborating with research teams or translating research into production workflows.
Education Requirements
Not specified.
About the Company
Company: Arm
Headquarters: Cambridge, United Kingdom
ARM is a global leader in semiconductor and software design, driving innovation in computing technology. The company specializes in designing processors and systems that provide the essential building blocks for electronic devices. ARM's architecture is widely used in smartphones, servers, and IoT devices, and its collaborative culture fosters bold thinking, diversity, and high-impact benefits for its talented workforce.

Date Posted: 2026-07-01