We’re looking for a skilled product manager with a strong embedded security background to lead mbed TLS and the platform security of mbed OS in our IoT group. This is an opportunity to have a major impact in the emerging IoT space, helping thousands of developers secure billions of IoT devices.
The Internet of Things is the next computer revolution, where devices become internet connected citizens themselves, creating all sorts of disruptive opportunities for society and business. ARM has setup a new division to help realise these opportunities by creating software and services focused on IoT enablement. mbed TLS is one of the worlds leading cryptographic and TLS libraries, developed as an open source project to make these essential security functions accessible to as many people as possible. We are growing the team of security experts working on it to improve and extend it, including taking advantage of emerging hardware security support in SoCs. mbed OS is a new platform operating system we are building that integrates the security and software services needed for developing this next generation of secure devices based on Cortex-M SoCs. As Windows and Mac OS X did for the PC ecosystem, and Android and iOS did for smartphone apps, mbed OS will be one of the key platform operating systems that enables developers to effectively create and deploy billions of innovative IoT devices.
You will lead the security roadmap for mbed TLS and the platform security aspects of mbed OS, ensuring we prioritise the right fixes, features and innovations to enable security developers rely on. You will need to navigate the complexities and tradeoffs of embedded security and the use cases and threat models that need to be addressed to create solutions that help developers meet their security needs, and translate that in to our product plans. This includes working to pioneer use of the next generation of security hardware such as TrustZone for Cortex-M and CryptoCell. Backed by a growing skilled engineering team working on key security components, and working with other teams, technologies and partners, you will ensure we can deliver the right security in mbed TLS and mbed OS to make our users successful.
Job Requirements Skills and Experience:
The ideal candidate will have experience of embedded security for microcontroller class products and a passion for solving these problems on behalf of a huge developer audience and in a way they can easily adopt. You’ll understand the security fundamentals of this domain that allow you to make the pragmatic choices that help solve the right security problems in the most effective way. You'll be able to talk confidently about security requirements and techniques, and challenge and be challenged by engineers and marketing on the subject to get the right results. You’ll likely be familiar with modern microcontroller architecture and associated embedded firmware development. An understanding of cryptographic and security techniques for communication, encryption, secure storage and code protection is important. You my also be familiar with partitioning and hypervisor concepts used for protecting from code exploits. You will likely have been involved in creation of embedded products that implemented security requirements, or provided embedded security solutions for customers doing the same. You’ll have good experience in product management. You probably have a university degree or equivalent in a subject like Computer Science or Engineering, although we'll consider anyone who will succeed in this role.
The role is based at ARM HQ, in Cambridge UK, alongside many of the engineering and other teams you'll be leading and interacting with. When applying, please highlight in your covering letter any particular experiences or interests you think we should pay particular attention to.