Senior Product Security Engineer
ARM Β· Cambridge, Software Engineering, United Kingdom
About this role
Job Description: Are you passionate about building secure systems from the ground up? We're looking for an experienced and motivated Product Security Engineer to help shape the security posture of our SoC and embedded firmware solutions! In this role, youβll evaluate system security architectures, dive into firmware code for review, contribute to ROM assessments, and perform hands-on threat modeling and lightweight testing. This is a fantastic opportunity for someone who loves solving complex security challenges, enjoys collaborating with brilliant minds across domains, and wants to make a meaningful impact in real-world products. If you care about getting the details right and empowering others to do the same, weβd love to hear from you! Responsibilities: Review firmware and SoC architecture for security risks and threat models
Evaluate critical security features like secure boot, rollback protection, memory isolation, and TEE. Perform C/C++ security code reviews to spot implementation-level flaws. Conduct targeted hands-on tests to validate security concerns when needed
Collaborate with cross-functional teams to embed security into the development lifecycle. Help shape secure firmware architectures for key handling, update flows, and hardware-backed protections. Communicate risks and solutions clearly to both technical and non-technical audiences
Required Skills and Experience : Proven experience securing hardware-firmware interfaces or embedded systems. Strong hands-on expertise in C/C++ security code reviews. Background in secure boot, key provisioning, firmware hardening, and trusted computing
Solid understanding of firmware attack surfaces: fault injection, code injection, privilege escalation. Familiarity with isolation technologies such as Arm TrustZone, secure monitor, or memory protection. Ability to run and interpret quick tests to verify security assumptions
Experience with advanced attack surfaces like side-channel or fault attacks. Excellent colla
Apply for this role on ARMβs official careers site.