Principal Engineer - SoC Offensive Security

About The Position

Requirements

• Strong knowledge of computer architecture (preferably Arm), micro architectural attack surfaces, and SoC integration security challenges.
• Demonstrated experience conducting adversarial security research (PoCs, exploits, CTFs, published work).
• Practical experience with RTL (Verilog/SystemVerilog) or other pre silicon verification environments from a security perspective.
• Hands-on lab experience setting up development and testing platforms, delivering security evaluations, and validating findings in practical environments.
• Firmware security analysis experience on projects like UEFI, uBoot, Trusted Firmware or similar.
• Experience with security focused specifications and standards such as Caliptra, DICE, or related attestation and hardware root-of trust standards.
• Strong, determined problem solving outlook with creative security mentality.
• Excellent communication skills, with the ability to influence design teams and clearly articulate risk and recommendations.
• Ability to independently lead complex investigations across multiple concurrent projects.

Nice To Haves

• Experience with hardware fuzzing and software exploitation techniques.
• Familiarity with bus/interconnect protocols (AMBA, CXL, PCIe, etc.).
• Reverse engineering skills for hardware, firmware, or microarchitecture.
• Contributions to open standards bodies or participation in security-focused special interest groups (e.g., industry working groups, architecture forums).

Responsibilities

• Perform adversarial, exploratory security analysis of SoC and chiplet architectures, focusing on identifying unknown or emergent vulnerabilities (pre silicon and post silicon).
• Identify and engage at the most impactful points of the development lifecycle, to review micro architecture specifications, architectural/security assumptions, and RTL implementations.
• Conduct design reviews, discussion workshops, and focused hackathons to come up with new threat scenarios, perform adversarial testing, and improve security models.
• Demonstrate practical security impact of vulnerabilities, e.g., by writing Proof-of-Concepts (PoCs).
• Investigate multi-stage and cross component attack chains beyond what is captured in threat models or standard verification flows.
• Lead collaborations with internal teams to speed up adversarial analysis and mitigation identification.
• Provide guidance to improve future threat modeling, mitigation design, and security architecture.
• Shape strategies and methodologies for systematic offensive security and scaling their application across Arm programs.

Benefits

• You will join a team of hard-working security engineers at the forefront of identifying vulnerabilities in Arm based systems.
• Your work will shape the security posture of silicon programs and provide opportunities to influence architectural direction, collaborate with extraordinary engineers, and conduct hands-on offensive security research.
• This role offers a unique opportunity to have direct impact on silicon designs, contribute to industry leading security practices, and help ensure Arm's next generation of solutions are robust against evolving adversaries.
• Arm is proud to foster an inclusive, diverse, and collaborative environment where your expertise and creativity will be valued.
• We value people as individuals and our dedication is to reward people competitively and equitably for the work they do and the skills and experience they bring to Arm.
• Salary is only one component of Arm's offering. The total reward package will be shared with candidates during the recruitment and selection process.