A global device company is seeking a highly skilled and experienced individual to lead security and certification initiatives, particularly in achieving FIPS validation of cryptographic modules (FIPS 140-3) and Common Criteria certification for IT products. This is a hands-on role with significant collaboration opportunities within the Mobile Experience Security division and other global security teams. Responsibilities: Lead the end-to-end validation process for IT products, including: Initial assessment of security functions and specifications. Development of security targets for products. Testing, documentation, and consultation with engineering teams. Develop and review security targets, plans, and procedures aligned with applicable security controls such as NIAP Protection Profiles (e.g., MDFPP, VPN, WLAN, Biometric Enrollment/Verification). Assist with CAVP algorithm testing and draft/review security policies for cryptographic modules following FIPS 140-3 specifications. Create and review certification documentation for Common Criteria evaluations and FIPS 140-2/3 accreditation. Build and manage testing environments, perform testing, and generate technical reports for Common Criteria and FIPS evaluations. Perform vulnerability analysis on product/system designs against applicable security criteria using tools like Nessus, NMAP, and Wireshark. Develop mitigation strategies for vulnerabilities identified during security testing. Act as the primary project point of contact (POC) for internal and external stakeholders. Required Skillset: 5+ years of technical experience with Common Criteria evaluations under the NIAP-managed Common Criteria Evaluation and Validation Scheme (CCEVS) for U.S. products. Hands-on experience with FIPS 140-3 validation. Expertise in cryptographic encryption algorithms, key exchange protocols, PKI, random number generators, and hashing/message authentication algorithms. Proficiency in vulnerability analysis tools such as Nessus, NMAP, and Wireshark. Proficiency in FIPS 186-4/5, SP 800-186, SP 800-90B, and FIPS 140-3 requirements. Knowledge of security protocols (e.g., SSH, IPsec, TLS). Strong technical writing skills and ability to document testing processes and results. Ability to comprehend and apply security standard requirements to product development. Bachelor's Degree in Electrical Engineering, Computer/Information Science, Information Assurance/Cybersecurity, or equivalent degree (Master's Degree preferred). Type: Contract Duration: 6 months with possibility to extend Location: Remote Pay Rate Range: $75.30 - $86.10
Lead the planning, design, migration, building, and integration of the BEP's cloud-based RPA/AI platform and infrastructure.Architect and facilitate the adaptation of the IT infrastructure (e.g., UiPath Orchestrator Platform) to support robotic solutions and cognitive...
..., and wonderful teammates. DeepLearning.AI is looking for a Curriculum Product Manager to work with our network of world experts in... ...support the team, including the SME in reaching that bar. Develop an independent perspective on the material being taught so that...
...for people interested in taking online surveys for Fortune 500 brands. If you are a self-starter, looking for flexible hours... ...Qualify: You must be 18+ years old Have a desire to work from home Looking to earn extra income Requirements Access...
The Entertainment Stage Technician will have the experience of watching Guests react as they are transported by live shows, parades, and spectaculars across the Walt Disney World Resort. As an Entertainment Stage Technician, you will install, operate, and maintain the lighting...
...firms across M&A, debt finance, asset management, and real estate. We are backed by top investors in enterprise AI, including former DoorDash board member Jeremy Kranz, Seamless co-founder Andy Appelbaum, Jack Altman, South Park Commons, Recall Capital, and GTMfund.For...