Staff Software Security Engineer

Job Title

Staff Software Security Engineer

Role Summary

Hands-on hardware/security engineer in the Arm Product Security team focused on evaluating and improving silicon-level security for SoC platforms. The role performs technical analysis, develops proof-of-concept demonstrations, and builds tooling to assess hardware security features.

The role partners with architecture, silicon design, firmware, and platform teams to identify issues, quantify system-level impact, and support mitigations.

Experience Level

Senior level (Staff). Practical experience in offensive security, vulnerability research, or low-level systems security is expected.

Responsibilities

Primary duties include hands-on evaluation, demonstration, and communication of hardware security issues across complex SoC platforms.

• Perform hands-on security assessments of SoC components and security features (trust anchors, debug interfaces, isolation mechanisms).
• Identify and analyse hardware security issues via architecture review, hardware interface analysis, and experimental testing.
• Develop proof-of-concept demonstrations showing realistic system-level impact of weaknesses.
• Create and maintain tools and methodologies for hardware security evaluation and experimentation.
• Collaborate with architecture, silicon design, firmware, and platform teams to communicate findings and support mitigations.

Requirements

Must-have technical skills and experience required for this role.

• Practical experience in offensive security, vulnerability research, or low-level systems security.
• Deep knowledge of microarchitecture and SoC design principles.
• Experience reviewing architectural specifications and RTL for security-relevant behaviour.
• Strong understanding of modern SoC architectures, security boundaries, privilege levels, and hardware isolation mechanisms.
• Experience analysing hardware interfaces and platform components (debug infrastructure, secure boot/root of trust, system interconnects).
• Familiarity with hardware debug interfaces (e.g., JTAG, SWD) and hardware attack techniques.
• Proficiency in low-level programming (C) and working knowledge of assembly (preferably Arm).
• Ability to document findings clearly and work independently and collaboratively.

Nice-to-have:

• Experience with Arm-based platforms and SoC security architectures.
• Familiarity with fault injection, side-channel analysis, and other hardware security techniques.
• Experience using lab equipment and tooling for hardware experimentation and debugging.
• Exposure to silicon bring-up or hardware validation workflows.
• Contributions to hardware security research, tools, or vulnerability disclosures.

Education Requirements

Not specified.

About the Company

Company: Arm

Headquarters: Cambridge, United Kingdom

ARM is a global leader in semiconductor and software design, driving innovation in computing technology. The company specializes in designing processors and systems that provide the essential building blocks for electronic devices. ARM's architecture is widely used in smartphones, servers, and IoT devices, and its collaborative culture fosters bold thinking, diversity, and high-impact benefits for its talented workforce.