Jobs · Information Technology · Texas

SoC Offensive Security Staff Engineer

Arm · Austin, TX · 5 days ago
HybridInformation Technology$198k–$268k/yrFull-time

About the role

The Security Research and Response team in Arm's Architecture and Technology Group is seeking a highly skilled SoC Offensive Security Staff Engineer to apply an attacker's mindset to Arm's next-generation solutions, identifying design and integration-level vulnerabilities early in the development lifecycle!

Responsibilities

  • Perform adversarial security analysis of SoC and chiplet micro-architectures, identifying unknown or emerging vulnerabilities across pre-silicon and post-silicon environments.
  • Engage with project teams at different stages of the development lifecycle to review architecture, micro-architecture, system-level specifications, security assumptions, RTL implementations, and firmware components.
  • Participate in design reviews, security discussions, and focused hackathons to develop new threat scenarios, perform adversarial testing, and improve security models.
  • Apply automation, scripting, and AI-assisted techniques where appropriate to support vulnerability discovery, specification analysis, test generation, triage, or exploration of complex attack surfaces.
  • Demonstrate the practical impact of vulnerabilities by developing Proofs of Concept (PoCs), exploits, and security demonstrations where appropriate.
  • Investigate multi-stage and cross-component attack chains beyond those captured in threat models or standard verification activities.
  • Collaborate closely with internal security researchers and engineering teams to accelerate security assessments and identify effective mitigations.
  • Contribute to improving threat models, security mitigations, and security architecture recommendations based on assessment findings.
  • Contribute to the development and continuous improvement of offensive security methodologies, tools, and best practices across the SoC Offensive Security team.

Required Skills and Experience

  • Strong knowledge of SoC architecture and IP integration.
  • Thread modeling standalone IPs and Subsystems. Candidate should have experience enumerating micro-architectural attack surfaces and SoC integration concerns.
  • Demonstrated experience conducting adversarial assessments (PoCs, exploits, CTFs, published work).
  • Practical experience with SystemVerilog RTL, UVM-based validation environments and HW Dev IDEs
  • Comfortable reusing current verification environments and adapting them for negative and offensive testing.
  • Hands-on lab experience setting up development and testing platforms, delivering security evaluations, and validating findings in practical environments.
  • Firmware security analysis experience on projects like UEFI, uBoot, MCUBoot, Trusted Firmware or similar.
  • Experience with security focused specifications and standards such as Caliptra, DICE, or related attestation and hardware root-of-trust standards.
  • Strong, determined problem solving outlook with creative security mentality.
  • Great communication skills, with the ability to influence design teams and clearly articulate risk and recommendations.
  • Able to independently conduct complex technical investigations across assigned areas of responsibility.

Nice to have skills and experience

  • Familiarity with typical Hardware interface standards : PCIe, CXL, SMBus, SPI, I2C, UART, etc.
  • Familiarity with ARM’s AMBA interconnect protocols: AXI, CHI, CXS, APB, ATB, LPI, etc.
  • Experience with formal proof tools and approaches for HW Security.
  • Experience with TEE and their HW building blocks. Should be able to elaborate on what is in the TCB of a confidential VM.
  • Experience with hardware fuzzing in pre and post silicon environments
  • Experience with software exploitation techniques.
  • Reverse engineering skills for hardware, firmware, or microarchitecture.
  • Contributions to open standard bodies or participation in security-focused special interest groups (e.g., industry working groups, architecture forums).

What we offer

You will join a team of hard-working security engineers at the forefront of identifying vulnerabilities in Arm based systems. Your work will shape the security posture of silicon programs and provide opportunities to influence architectural direction, collaborate with extraordinary engineers, and conduct hands-on offensive security research.

This role offers a unique opportunity to have direct impact on silicon designs, contribute to industry leading security practices, and help ensure Arm’s next generation of solutions are robust against evolving adversaries. Arm is proud to foster an inclusive, diverse, and collaborative environment where your expertise and creativity will be valued.

Salary Range

$198,100-$268,000 per year

Accommodations at Arm

We value people as individuals and our dedication is to reward people competitively and equitably for the work they do and the skills and experience they bring to Arm. Salary is only one component of Arm's offering. The total reward package will be shared with candidates during the recruitment and selection process.

Hybrid Working at Arm

Arm’s approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team’s needs.

Equal Opportunities at Arm

Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don’t discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Similar jobs