System Security Architect

Job Description:

We are seeking a seasoned System Security Architect with a strong background in hardware and low-level firmware security to join our Product Security team. In this design review-focused role, you’ll use your deep expertise—not to build from scratch, but to analyze, evaluate, and harden security architectures spanning from silicon to firmware layers.

You'll collaborate with multi-functional teams to evaluate critical features like Root of Trust, secure boot flows, key management, and trusted firmware execution, ensuring every layer of the stack meets or exceeds industry security standards. If you thrive at the intersection of architecture, system software, and silicon—and love diving into the details of firmware and hardware security mechanisms—this is the role for you.

Responsibilities:

System Security Assessment (Hardware + Firmware):

Lead architecture-level security assessments and risk analyses across SoC and low-level firmware components.

Conduct in-depth threat modeling of boot flows, firmware, memory protection mechanisms, and secure execution environments.

Detailed attack-modelling and review security features across firmware interfaces.

Firmware Security Review:

Evaluate firmware-level implementation of security critical features.

Collaborate with firmware and SoC teams to ensure secure firmware architecture, including the handling of secrets, keys, and hardware-backed security features.

Technical Leadership & Collaboration:

Guide engineering teams in applying standard methodologies in security during architecture, design, and verification phases.

Communicate security design decisions clearly to technical and non-technical stakeholders.

Required Skills and Experience :

A track record securing system architectures at the intersection of hardware and firmware.

Deep experience in areas such as secure boot, key provisioning, firmware mitigations, and hardware-enforced isolation.

Understanding of threat models including firmware exploitation, privilege-escalation, code injection, and side-channel attacks.

Solid grasp of Arm TrustZone, secure world monitor designs, memory and IO protection mechanisms, and SoC-level isolation techniques.

Experience identifying low-level security flaws and recommending hardware or firmware-level fixes.

Ability to lead technical discussions across architecture, firmware, software, and validation teams.

“Nice To Have” Skills and Experience :

Familiarity with RTL design, UVM/SystemVerilog, or hardware verification flows.

Experience with trusted execution environments (TEEs) and secure monitor implementation.

Understanding of secure firmware update mechanisms (rollback protection, anti-cloning).

Prior work with TPMs, Secure Elements, or other hardware security modules.

Contributions to security standards or academic research in system security, firmware security, embedded cryptography, side channel attacks.

In Return:

Arm is committed to global talent acquisition, offering an attractive relocation package. With offices worldwide, Arm is a diverse organization of dedicated, creative, and hardworking engineers. By enabling a dynamic, inclusive, meritocratic, and open workplace where everyone can grow and succeed, we encourage our people to share their outstanding contributions to Arm's success in the global marketplace.

 

 

#LI-PD1

 

Accommodations at Arm

At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email . To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process.

Hybrid Working at Arm

Arm’s approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team’s needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you.

Equal Opportunities at Arm

Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don’t discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran