Staff Product Security Engineer

Social network you want to login/join with:

Client: arm limited

Location: Cambridge, United Kingdom

Job Category: Other

EU work permit required: Yes

Job Reference: c1ff3b5e9fa8

Job Views: 28

Posted: 22.06.2025

Expiry Date: 06.08.2025

The Role

The Arm Product Security Incident Response Team (PSIRT) is looking for a highly motivated, experienced addition to their team, to help deliver on Arm's commitment to coordinated vulnerability disclosure (CVD) and navigate the ever-changing landscape of product security. Growth in this area has created an opportunity to join a highly visible and dynamic team at the cutting edge of technology.

Job Overview:

This role is based within the Arm PSIRT and is responsible for managing security vulnerabilities and incidents related to Arm's products and services. We continuously monitor for threats, assess vulnerabilities, coordinate incident response, and facilitate remediation. We also prioritise risks and maintain transparent communication with partners and the community regarding security issues. Arm is committed to maintaining industry-leading product security through continuous improvement of our organisation's security posture via investments in culture and process.

Responsibilities:

• Handle suspected and confirmed vulnerabilities in Arm's portfolio daily, following established incident response procedures
• Support Arm's engineering teams with vulnerability analysis, including impact and severity assessments
• Develop Arm's vulnerability monitoring capabilities using internal and external sources
• Coordinate with engineering teams for responsible disclosure of security vulnerabilities
• Collaborate with industry peers to improve security processes based on evolving standards

Required Skills and Experience:

• Minimum 2 years experience in a PSIRT or similar security role
• Bachelor's degree or higher in a related field, or equivalent experience
• Excellent English communication skills, both written and verbal, with a customer-focused approach
• Understanding of software, hardware, network, and system security
• Knowledge of common vulnerabilities and attack methods
• Willingness to expand security knowledge across product domains

Nice To Have Skills and Experience:

• Experience with security research and applying it to incident response
• Experience in software vulnerability management and SDL practices
• Participation in working groups like FIRST, MITRE, CERT
• Experience with ticketing systems such as Jira
• Familiarity with incident management tools
• Proficiency in scripting languages like Python
• Knowledge of Arm technologies, semiconductors, or firmware

In Return:

The Arm PSIRT team offers visibility with senior management, opportunities for professional growth, and the chance to build connections with industry partners and collaborators.