System Security Architect

Cambridge
3 weeks ago
Applications closed

Related Jobs

View all jobs

Principal Security Architect

Security Architect

Security Architect

Information Security Engineer

Senior Security Engineer, Corporate Services Security, Corporate Services Security

Senior Cyber Security Architect

Job Description:

We are seeking a seasoned System Security Architect with a strong background in hardware and low-level firmware security to join our Product Security team. In this design review-focused role, you’ll use your deep expertise—not to build from scratch, but to analyze, evaluate, and harden security architectures spanning from silicon to firmware layers.

You'll collaborate with multi-functional teams to evaluate critical features like Root of Trust, secure boot flows, key management, and trusted firmware execution, ensuring every layer of the stack meets or exceeds industry security standards. If you thrive at the intersection of architecture, system software, and silicon—and love diving into the details of firmware and hardware security mechanisms—this is the role for you.

Responsibilities:

System Security Assessment (Hardware + Firmware):

Lead architecture-level security assessments and risk analyses across SoC and low-level firmware components.

Conduct in-depth threat modeling of boot flows, firmware, memory protection mechanisms, and secure execution environments.

Detailed attack-modelling and review security features across firmware interfaces.

Firmware Security Review:

Evaluate firmware-level implementation of security critical features.

Collaborate with firmware and SoC teams to ensure secure firmware architecture, including the handling of secrets, keys, and hardware-backed security features.

Technical Leadership & Collaboration:

Guide engineering teams in applying standard methodologies in security during architecture, design, and verification phases.

Communicate security design decisions clearly to technical and non-technical stakeholders.

Required Skills and Experience :

A track record securing system architectures at the intersection of hardware and firmware.

Deep experience in areas such as secure boot, key provisioning, firmware mitigations, and hardware-enforced isolation.

Understanding of threat models including firmware exploitation, privilege-escalation, code injection, and side-channel attacks.

Solid grasp of Arm TrustZone, secure world monitor designs, memory and IO protection mechanisms, and SoC-level isolation techniques.

Experience identifying low-level security flaws and recommending hardware or firmware-level fixes.

Ability to lead technical discussions across architecture, firmware, software, and validation teams.

“Nice To Have” Skills and Experience :

Familiarity with RTL design, UVM/SystemVerilog, or hardware verification flows.

Experience with trusted execution environments (TEEs) and secure monitor implementation.

Understanding of secure firmware update mechanisms (rollback protection, anti-cloning).

Prior work with TPMs, Secure Elements, or other hardware security modules.

Contributions to security standards or academic research in system security, firmware security, embedded cryptography, side channel attacks.

In Return:

Arm is committed to global talent acquisition, offering an attractive relocation package. With offices worldwide, Arm is a diverse organization of dedicated, creative, and hardworking engineers. By enabling a dynamic, inclusive, meritocratic, and open workplace where everyone can grow and succeed, we encourage our people to share their outstanding contributions to Arm's success in the global marketplace.

 

 

#LI-PD1

 

Accommodations at Arm

At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email . To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process.

Hybrid Working at Arm

Arm’s approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team’s needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you.

Equal Opportunities at Arm

Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don’t discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Education Careers

Top 10 Best UK Universities for Cyber Security Degrees (2025 Guide)

Discover ten of the strongest UK universities for Cyber Security degrees in 2025. Compare entry requirements, course content, research strength and industry links to choose the right programme for you. Cyber Security has moved from IT back-room concern to critical national infrastructure. With growing threats from ransomware, state-sponsored attacks and supply-chain compromise, demand for well-trained cyber professionals has never been higher. The UK is home to a clutch of universities recognised globally for excellence in this field. Below, we profile ten institutions offering robust undergraduate or postgraduate cyber-security pathways. While league tables shift year on year, these universities have a consistent record of first-class teaching, research and industry collaboration.

Jobs

How to Write a Winning Cover Letter for Cyber Security Jobs: Proven 4-Paragraph Structure

Learn how to craft the perfect cover letter for cyber security jobs with this proven 4-paragraph structure. Ideal for entry-level candidates, career switchers, and professionals looking to advance in the cyber security sector. When applying for a cyber security job, your cover letter is an essential component of your application. The cyber security industry is continuously evolving, and organisations are always seeking professionals who can protect their networks, systems, and data. Your cover letter provides an opportunity to demonstrate your technical expertise, your enthusiasm for cyber security, and your ability to contribute to the protection of sensitive information. Whether you're just entering the field, transitioning from another career, or looking to advance in cyber security, this article will guide you through a proven four-paragraph structure to create a compelling cover letter. We’ll provide sample lines and tips to help you stand out in the competitive cyber security job market.

Jobs

Quantum-Enhanced AI in Cyber Security: Guarding the Digital Frontier

The cyber security landscape has evolved dramatically over the past decade. Long gone are the days when businesses primarily worried about simplistic phishing or basic website defacements. Today’s threats include nation-state attacks, sophisticated ransomware, AI-generated phishing campaigns, and a wide array of stealthy intrusion methods. Organisations must defend vast digital ecosystems that include cloud infrastructure, IoT devices, and critical operational technology—any of which can become high-value targets for malicious actors. Amid these escalating challenges, a new technological wave is emerging: quantum computing. Although still in its infancy, quantum computing promises capabilities that could surpass even the most advanced classical supercomputers for specific tasks. Simultaneously, in the world of Artificial Intelligence (AI)—where data volumes and model complexity are exploding—quantum’s parallelism could significantly boost analysis, training, and decision-making. What unfolds when quantum computing and AI converge in the realm of cyber security? On one hand, quantum technologies could introduce stronger encryption and faster threat detection. On the other, adversaries armed with quantum power might break today’s cryptographic protocols or develop more potent attacks at unimaginable speeds. This article explores the phenomenon of quantum-enhanced AI for cyber security: the possibilities it unlocks, the challenges it poses, and the reasons it could reshape both defensive and offensive operations in the digital world.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.