Snabbfakta

    • Cambridge

Ansök senast: 2025-01-17

Vulnerability Research Engineer (Hiring Immediately)

Publicerad 2024-11-18

**Job Overview:

**

We are looking for a motivated Senior Security Engineer with a solid computer
security background and hands-on experience to join our architecture security
team in Cambridge, UK.


This role empowers you to shape the state of art in security of various
architecture specifications. It involves cooperating with highly motivated
architects, researchers and engineers from Arm. You will need a good eye for
detail to perform security analysis and identify, analyze and mitigate
security risks in architecture specifications, as well good interpersonal
skills for cross site collaborations. You will also be performing
vulnerability research and develop security validation collateral. Ensuring
timely delivery of the security collaterals in an evolving environment is a
challenge which will stretch and extend your knowledge and abilities. You will
have an impact in improving the quality of the work from this group which will
contribute to partner success by improving their time to market. If you strive
for continuous improvement and are a hands-on team member this position would
be of interest to you.

**Responsibilities:**

* Conduct comprehensive threat modelling, vulnerability analysis, and security risk assessments of Arm architecture specifications spanning CPU, Software, and System architectures.
* Collaborate with architecture development, implementation, and vulnerability research teams to enhance security posture of architecture specifications.
* Stay up to date with the latest security threats, trends, and mitigation strategies.
* Develop and maintain documentation related to security risk analysis.
* Develop and influence security validation test plans for hardware and firmware specifications.
* Investigate new security vulnerabilities on Arm IPs through PoCexploit writing at different stages: architecture specification, RTL design, and silicon
* Effective interpersonal skills, in terms of planning, reviews, status updates and meetings, as well as delivery against expectation.

**Required Skills and Experience:**

* Strong understanding of security principles, threat modelling, vulnerability analysis, and security risk assessment.

* Demonstrated ability in computer security – Security risk analysis of hardwaresoftware architectureimplementations, played CTFs, published research and talks, exploits, PoCs, etc.
* Knowledge of computer architecture (preferably Arm) and OS fundamentals
* Familiarity with programming languages such as Python, CC++, and assembly.
* Self-motivated and proactive demeanour towards challenges and problem solving
* Excellent communication and collaboration skills

**“Nice To Have” Skills and Experience:**

* Understanding of micro-architectural attacks and side-channels
* Reverse engineering skills
* Experience with bus protocols (AMBA, CXL, PCIe, etc.)


**In Return:
**

Based in Cambridge UK, this is an opportunity to join a dynamic,
collaborative, and driven team, and provides a genuine opportunity to craft
the best outcomes for Arm.



**

**#LI-JW

## **Accommodations at Arm**

At Arm, we want our people to **Do Great Things**. If you need support or an
accommodation to **Be Your Brilliant Self** during the recruitment process,
please email [accommodations@arm.com](mailto:accommodations@arm.com). To note,
by sending us the requested information, you consent to its use by Arm to
arrange for appropriate accommodations. All accommodation requests will be
treated with confidentiality, and information concerning these requests will
only be disclosed as necessary to provide the accommodation. Although this is
not an exhaustive list, examples of support include breaks between interviews,
having documents read aloud or office accessibility. Please email us about
anything we can do to accommodate you during the recruitment process.

## **Hybrid Working at Arm**

Arm’s approach to hybrid working is designed to create a working environment
that supports both high performance and personal wellbeing. We believe in
bringing people together face to face to enable us to work at pace, whilst
recognizing the value of flexibility. Within that framework, we empower
groupsteams to determine their own hybrid working patterns, depending on the
work and the team’s needs. Details of what this means for each role will be
shared upon application. In some cases, the flexibility we can offer is
limited by local legal, regulatory, tax, or other considerations, and where
this is the case, we will collaborate with you to find the best solution.
Please talk to us to find out more about what this could look like for you.

## **Equal Opportunities at Arm**

Arm is an equal opportunity employer, committed to providing an environment of
mutual respect where equal opportunities are available to all applicants and
colleagues. We are a diverse organization of dedicated and innovative
individuals, and don’t discriminate on the basis of race, color, religion,
sex, sexual orientation, gender identity, national origin, disability, or
status as a protected veteran.