The point where experts and best companies meet
ARM Staff Implementation Engineer United States, Texas, Austin 207528360
Yesterday
Share
Responsibilities:
- Review firmware and SoC architecture for security risks and threat models.
- Evaluate critical security features like secure boot, rollback protection, memory isolation, and TEE.
- Perform C/C++ security code reviews to spot implementation-level flaws.
- Conduct targeted hands-on tests to validate security concerns when needed.
- Collaborate with cross-functional teams to embed security into the development lifecycle.
- Help shape secure firmware architectures for key handling, update flows, and hardware-backed protections.
- Communicate risks and solutions clearly to both technical and non-technical audiences.
- Proven experience securing hardware-firmware interfaces or embedded systems.
- Strong hands-on expertise in C/C++ security code reviews.
- Background in secure boot, key provisioning, firmware hardening, and trusted computing.
- Solid understanding of firmware attack surfaces: fault injection, code injection, privilege escalation.
- Familiarity with isolation technologies such as Arm TrustZone, secure monitor, or memory protection.
- Ability to run and interpret quick tests to verify security assumptions.
- Experience with advanced attack surfaces like side-channel or fault attacks.
- Excellent collaboration, communication, and documentation skills.
- Familiarity with hardware design flows (e.g., RTL, UVM/SystemVerilog).
- Exposure to TPMs, Secure Elements, or hardware-backed crypto modules.
- Background in academic research or industry work in embedded security, firmware, or cryptographic implementation.
- Discovering or analysing security vulnerabilities in products, ideally with public CVEs or equivalent internal findings.
- Hands-on experience evaluating or testing products against certification schemes such as SESIP, PSA Certified, or Common Criteria.
These jobs might be a good fit
