Security Evaluator
5 maanden geleden
Product security is the result of a combination of security provided by hardware and software. In general, security cannot be provided by hardware alone and needs to be complemented by security implemented in software. The smallest details can make the difference between a secure and insecure product. Careful examination is therefore required to judge the security quality. As a source code reviewer you explore the software implementation of various IT products ranging from financial (including mobile payment), (U)SIMs and embedded secure elements to automotive, medical and ID products. Taking a specific product, it is your task to investigate the implemented security mechanisms and to define sophisticated attack scenarios using state-of-the-art attack methods, for example, fault injection using laser, in order to exploit the vulnerabilities you discovered. It is your responsibility to convince product developers of your findings to allow them to improve their products but it is even more important to provide sufficient argumentation to certification schemes why a product is (still) secure.
SGS Brightsight is looking for enthusiastic people who are up for this challenge and believe they have the capabilities to perform these tasks within the evaluations SGS Brightsight performs.
Furthermore, it is important that you take pride in your ability to both understand the security of a product and assess it in the context of the security requirements. SGS Brightsight works for many different types of customers and approval organizations. This means the assessment must be adapted to accommodate different stakeholders every time.
In this position, you will be part of a project team that performs product security evaluations. As a source code reviewer you are in touch with customers who are developing state-of-the-art products including the latest mobile payment applications
You are assessing the implementation of the product and provide feedback to their solution in face-to-face meetings. Customer meetings are internationally oriented, which involves discussions in different cultural contexts. You will document the findings and argumentation for both the product developer and the approval bodies. You will also support colleagues who are executing the attack scenarios you have defined.
As products are changing rapidly as are the attacks applied to these products, source code reviews require constant improvement and adaptation to keep on top of what is out in the field and could threaten products you are currently assessing. You will gain significant knowledge on secure product implementation by having access to different vendor solutions. The interaction with many developers around the world is a great experience that will trigger continuous improvement.
To get up to speed for this position you will participate in the SGS Brightsight training program on Methodology and Technology.
Qualifications
We are looking for people with a BSc, MSc or PhD. degree in a technical field (Information Security, Computer Science, Electronics, Mathematics) that have experience with software development or testing for embedded systems. You must have the ability to understand complex designs and apply conceptual thinking to distinguish what is essential from what is less important. This job also requires that you communicate knowledge convincingly, both orally and in writing, to internal and external entities.
Knowledge of (EMV) payment products is an advantage, as is experience with security evaluations, Java Cards, attack techniques and an interest in hacking products. You must have a good command of the English language.
-
Security Evaluator
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob Title: Security EvaluatorAbout the Role:SGS Brightsight is seeking a skilled Security Evaluator to join our team. As a Security Evaluator, you will be responsible for assessing the security of various IT products, including financial, automotive, and medical devices. Your task will be to investigate the implemented security mechanisms and define...
-
Security Evaluator
3 weken geleden
Delft, Zuid-Holland, Nederland SGS Voltijd**Job Title:** Security EvaluatorAt SGS Brightsight, we are seeking a skilled Security Evaluator to join our team of experts in product security evaluations. As a Security Evaluator, you will be responsible for assessing the security quality of various IT products, including financial, automotive, and medical devices.**Key Responsibilities:**Investigate...
-
Security Evaluator
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionAt SGS Brightsight, we are seeking a skilled Security Evaluator to join our team of experts in product security evaluations. As a Security Evaluator, you will be responsible for assessing the security quality of various IT products, including financial, automotive, medical, and ID products. Your task will be to investigate the implemented...
-
Security Evaluator
4 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionAt SGS Brightsight, we are seeking a skilled Security Evaluator to join our team of experts in product security evaluations. As a key member of our project team, you will be responsible for assessing the security of various IT products, including financial, automotive, medical, and ID products.Key Responsibilities:Conduct thorough source code...
-
Security Evaluator
4 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionAt SGS Brightsight, we are seeking a skilled Security Evaluator to join our team of experts in product security evaluations. As a key member of our project team, you will be responsible for conducting thorough source code reviews of various IT products, including financial, automotive, medical, and ID products.Key Responsibilities:Investigate...
-
Security Evaluator
2 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob OverviewAs a Security Evaluator at SGS Brightsight, you will play a crucial role in ensuring the security of various products, including financial, automotive, medical, and ID products. Your primary responsibility will be to conduct in-depth source code reviews to identify vulnerabilities and provide recommendations for improvement.Key...
-
Senior Common Criteria Evaluator
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionThe Senior Common Criteria Evaluator is an expert in this area and has more than three years of experience in evaluating different products for different customers. With this experience, you are able to understand the total field of Common Criteria and the causes of security demands in evaluation methods.As a Senior CC Evaluator, you will...
-
Senior Common Criteria Evaluator
2 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdAbout the RoleThe Senior Common Criteria Evaluator is an expert in this area and has more than three years of experience in evaluating different products for different customers. With this experience, you are able to understand the total field of Common Criteria and the causes of security demands in evaluation methods.As a Senior CC Evaluator, you will...
-
Sr. Common Criteria Evaluator
5 maanden geleden
Delft, Nederland SGS VoltijdJob Description The Senior Common Criteria (CC) Evaluator is an expert in this area and has more than three years of experience in evaluating different products for different customers. With this experience you are able to understand the total field of Common Criteria and the causes of security demands in evaluation methods. As a Senior CC Evaluator,...
-
Senior Common Criteria Evaluator
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdAs a Senior Common Criteria Evaluator at SGS, you will be responsible for the technical and methodological quality of CC projects. With more than three years of experience in evaluating different products for various customers, you will be able to understand the total field of Common Criteria and the causes of security demands in evaluation methods.You will...
-
Senior Common Criteria Evaluator
4 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob Title: Senior Common Criteria EvaluatorWe are seeking a highly experienced and skilled Senior Common Criteria Evaluator to join our team at SGS Brightsight. As a Senior CC Evaluator, you will play a key role in evaluating products for our customers, ensuring they meet the highest security standards.Key Responsibilities:Lead CC evaluations for various...
-
Senior CC Evaluator
6 dagen geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob Title OverviewWe are seeking a highly experienced Senior Common Criteria (CC) Evaluator to join our team at SGS Brightsight. As an expert in cybersecurity, you will play a key role in evaluating products for our customers and ensuring their compliance with security standards.About the RoleThe Senior CC Evaluator will be responsible for leading...
-
Security Expert
2 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob Title: Security ExpertJob DescriptionAt SGS, we are seeking a highly skilled Security Expert to join our team of product security evaluators. As a key member of our team, you will be responsible for assessing the security quality of various IT products, including financial, automotive, and medical products. Your expertise in software development and...
-
Senior Hardware Security Specialist
4 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob OverviewSGS Brightsight is seeking a highly skilled Senior Hardware Security Expert to lead our security evaluations. The ideal candidate will have a strong background in hardware design, vulnerability assessment, and security.Main Responsibilities:Conduct comprehensive reviews of secure elements, SoCs, and cryptographic IPs to ensure security and...
-
Senior Hardware Security Specialist
2 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdSGBrightsight is seeking a highly skilled and experienced Senior Hardware Security Expert to join our team. The ideal candidate will have a strong background in hardware design, vulnerability assessment, and security.Main Responsibilities:Conduct comprehensive reviews of secure elements, SoCs, cryptographic IPs, and soft IPs to ensure security and compliance...
-
Senior Hardware Security Specialist
2 maanden geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob Title: Senior Hardware Security ExpertSGS Brightsight is seeking a highly skilled and experienced Senior Hardware Security Expert to join our team. The ideal candidate will have a strong background in hardware design, vulnerability assessment, and security.Main Responsibilities:Conduct comprehensive reviews of secure elements, system-on-chips (SoCs),...
-
Senior Hardware Security Specialist
4 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob Title: Senior Hardware Security ExpertSGS Brightsight is seeking a highly skilled and experienced Senior Hardware Security Expert to join our team. The ideal candidate will have a strong background in hardware design, vulnerability assessment, and security.Main Responsibilities:Conduct comprehensive reviews of secure elements, system-on-chips (SoCs),...
-
Senior Hardware Security Specialist
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionSGS Brightsight is seeking a highly skilled Senior Hardware Security Expert to join their team. The ideal candidate will have a strong background in hardware design, vulnerability assessment, and security. This role requires deep expertise in secure elements, system-on-chips (SoCs), and embedded systems.Main Responsibilities:Conduct...
-
Senior Hardware Security Specialist
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdAt SGS, we are seeking a highly skilled and experienced Senior Hardware Security Expert to join our team. The ideal candidate will have a strong background in hardware design, vulnerability assessment, and security. This role requires deep expertise in secure elements, system-on-chips (SoCs), and embedded systems.Main Responsibilities:Conduct comprehensive...
-
Senior Hardware Security Expert
2 maanden geleden
Delft, Nederland SGS VoltijdJob Description SGS Brightsight is looking for a highly skilled and experienced Senior Hardware Security Expert. The ideal candidate will have a strong background in hardware design, vulnerability assessment, and security. This role requires deep expertise in secure elements, system-on-chips (SoCs), and embedded systems. Main Responsibilities: ...
