Senior Software Engineer - Security Platforms

• Design & implement a backend platform that schedules ingestion, normalization, storage, and historical tracking of security artifacts (BOMs, SAST/SCA findings, fuzzing results) in a scalable, tool-agnostic fashion.
• Develop and maintain ETL pipelines and database schemas for high-throughput ingestion and historical trend analysis.
• Expose data via well-documented REST APIs for dashboards, automation, and downstream integrations.
• Collaborate with security and engineering teams to define metrics, alerts, and dashboard views that surface critical trends and anomalies.
• Instrument observability and performance monitoring (metrics, dashboards) to ensure maximum throughput and reliability.
• Develop custom solutions for aggregating BOMs into hierarchical system views and conducting searches across products.
• Document processes, data models, and operational runbooks to enable smooth adoption., You will develop the roadmap for Arm's core interconnect and control subsystems, ensuring they are strategically aligned and technically validated across markets. While the initial focus is infrastructure, you will work across line of business and customers to ensure these foundational technologies are robust, driven, and reusable across Arm's diverse product portfolio. Your ownership of requirement specs and roadmap rigor will ensure subsystem coherence across product generations - enabling Arm to scale from IP to complete system solutions.

Our 10x mindset guides how we engineer, collaborate, and grow. Understand what it means and how to reflect 10x in your work: https://careers.arm.com/en/10x-mindset, Arm's approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team's needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you.

• Strong coding ability in Python and comfortable in scripting (e.g. bash).
• Shown experience building backend services and data pipelines in cloud platforms (AWS, GCP, or Azure).
• Solid understanding of CI/CD concepts (Gitlab CI, GitHub Actions or similar), infrastructure-as-code workflows (Terraform), and automated deployments.
• Comfortable with containerization technologies (Docker) and deployment methodologies
• Familiarity with SQL for building and querying relational databases.
• Clear technical writing to document data schemas, APIs, and dashboard usage.

"Nice to Have" Skills and Experience

• Experience with Grafana, Prometheus, or similar observability platforms.
• Familiarity with SAST and SCA tools (e.g., Coverity, Black Duck) and experience understanding their findings.
• Experience defining and visualizing key security and performance metrics within dashboard solutions.
• Experience with security data formats (e.g. SARIF)