Security Evaluator
3 maanden geleden
Product security is the result of a combination of security provided by hardware and software. In general, security cannot be provided by hardware alone and needs to be complemented by security implemented in software. The smallest details can make the difference between a secure and insecure product. Careful examination is therefore required to judge the security quality. As a source code reviewer you explore the software implementation of various IT products ranging from financial (including mobile payment), (U)SIMs and embedded secure elements to automotive, medical and ID products. Taking a specific product, it is your task to investigate the implemented security mechanisms and to define sophisticated attack scenarios using state-of-the-art attack methods, for example, fault injection using laser, in order to exploit the vulnerabilities you discovered. It is your responsibility to convince product developers of your findings to allow them to improve their products but it is even more important to provide sufficient argumentation to certification schemes why a product is (still) secure.
SGS Brightsight is looking for enthusiastic people who are up for this challenge and believe they have the capabilities to perform these tasks within the evaluations SGS Brightsight performs.
Furthermore, it is important that you take pride in your ability to both understand the security of a product and assess it in the context of the security requirements. SGS Brightsight works for many different types of customers and approval organizations. This means the assessment must be adapted to accommodate different stakeholders every time.
In this position, you will be part of a project team that performs product security evaluations. As a source code reviewer you are in touch with customers who are developing state-of-the-art products including the latest mobile payment applications
You are assessing the implementation of the product and provide feedback to their solution in face-to-face meetings. Customer meetings are internationally oriented, which involves discussions in different cultural contexts. You will document the findings and argumentation for both the product developer and the approval bodies. You will also support colleagues who are executing the attack scenarios you have defined.
As products are changing rapidly as are the attacks applied to these products, source code reviews require constant improvement and adaptation to keep on top of what is out in the field and could threaten products you are currently assessing. You will gain significant knowledge on secure product implementation by having access to different vendor solutions. The interaction with many developers around the world is a great experience that will trigger continuous improvement.
To get up to speed for this position you will participate in the SGS Brightsight training program on Methodology and Technology.
Qualifications
We are looking for people with a BSc, MSc or PhD. degree in a technical field (Information Security, Computer Science, Electronics, Mathematics) that have experience with software development or testing for embedded systems. You must have the ability to understand complex designs and apply conceptual thinking to distinguish what is essential from what is less important. This job also requires that you communicate knowledge convincingly, both orally and in writing, to internal and external entities.
Knowledge of (EMV) payment products is an advantage, as is experience with security evaluations, Java Cards, attack techniques and an interest in hacking products. You must have a good command of the English language.
-
Security Evaluator
3 dagen geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionAt SGS Brightsight, we are seeking a highly skilled and experienced Security Evaluator to join our team. As a Security Evaluator, you will be responsible for assessing the security of various IT products, including financial, automotive, medical, and ID products. Your task will be to investigate the implemented security mechanisms and define...
-
Security Evaluator
2 weken geleden
Delft, Zuid-Holland, Nederland SGS Voltijd{"h1": "Job Description", "p": "At SGS Brightsight, we are seeking a skilled Security Evaluator to join our team of experts in product security evaluations. As a Security Evaluator, you will be responsible for assessing the security quality of various IT products, including financial, automotive, medical, and ID products. Your task will be to investigate the...
-
Security Evaluator
1 week geleden
Delft, Zuid-Holland, Nederland SGS Voltijd{"h1": "Job Description", "p": "At SGS Brightsight, we are seeking a skilled Security Evaluator to join our team of experts in product security evaluations. As a Security Evaluator, you will be responsible for assessing the security of various IT products, including financial, automotive, and medical devices. Your task will be to investigate the implemented...
-
Security Evaluator
6 dagen geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionAt SGS Brightsight, we are seeking a skilled Security Evaluator to join our team of experts in product security evaluations. As a key member of our project team, you will be responsible for assessing the security of various IT products, including financial, automotive, medical, and ID products.Key Responsibilities:Conduct thorough source code...
-
Security Evaluator
5 dagen geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionAt SGS Brightsight, we are seeking a skilled Security Evaluator to join our team of experts in product security evaluations. As a key member of our project team, you will be responsible for assessing the security of various IT products, including financial, automotive, medical, and ID products.Key Responsibilities:Conduct thorough source code...
-
Security Evaluator
2 dagen geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionAt SGS Brightsight, we are seeking a skilled Security Evaluator to join our team of experts in product security evaluations. As a key member of our project team, you will be responsible for assessing the security of various IT products, including financial, automotive, medical, and ID products.Key Responsibilities:Conduct thorough source code...
-
Senior Common Criteria Evaluator
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob OverviewThe Senior Common Criteria Evaluator is a seasoned expert in the field of Common Criteria evaluation, with a proven track record of delivering high-quality results in complex projects.As a Lead CC Evaluator, you will be responsible for overseeing the technical and methodological aspects of our projects, ensuring that they meet the highest...
-
Security Evaluator
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionAbout the RoleAs a Security Evaluator at SGS, you will play a critical role in ensuring the security of various IT products, including financial, automotive, medical, and ID products. Your primary responsibility will be to conduct thorough source code reviews to identify vulnerabilities and develop sophisticated attack scenarios to exploit...
-
Senior Common Criteria Evaluator
3 dagen geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionThe Senior Common Criteria (CC) Evaluator is a seasoned expert in the field of security evaluation, with a strong background in technical and methodological aspects of CC. With over three years of experience in evaluating various products for different customers, this individual possesses a deep understanding of the total field of Common...
-
Senior Common Criteria Evaluator
7 dagen geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob Title: Senior Common Criteria EvaluatorWe are seeking a highly experienced Senior Common Criteria Evaluator to join our team at SGS Brightsight. As a Senior CC Evaluator, you will play a key role in evaluating products for our customers and ensuring their security meets the highest standards.Key Responsibilities:Lead CC evaluations for various products...
-
Sr. Common Criteria Evaluator
3 maanden geleden
Delft, Nederland SGS VoltijdJob Description The Senior Common Criteria (CC) Evaluator is an expert in this area and has more than three years of experience in evaluating different products for different customers. With this experience you are able to understand the total field of Common Criteria and the causes of security demands in evaluation methods. As a Senior CC Evaluator,...
-
Senior Common Criteria Evaluator
6 dagen geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob Title: Senior Common Criteria EvaluatorWe are seeking a highly experienced and skilled Senior Common Criteria Evaluator to join our team at SGS Brightsight. As a Senior CC Evaluator, you will play a key role in evaluating products for our customers, ensuring their security and compliance with international standards.Key Responsibilities:Lead CC...
-
Senior Common Criteria Evaluator
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob OverviewThe Senior Common Criteria Evaluator will lead CC projects for our customers, ensuring technical and methodological quality. This role requires expertise in CC evaluation methods and a strong understanding of security demands.Key ResponsibilitiesParticipate in CC projects as a lead evaluator, responsible for technical and methodological...
-
Senior Hardware Security Specialist
2 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob Title: Senior Hardware Security ExpertSGS Brightsight is seeking a highly skilled and experienced Senior Hardware Security Expert to join our team.Main Responsibilities:Conduct comprehensive reviews of secure elements, system-on-chips (SoCs), cryptographic IPs, and soft IPs to ensure security and compliance with industry standards.Perform in-depth...
-
Senior Hardware Security Specialist
6 dagen geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob Title: Senior Hardware Security ExpertSGS Brightsight is seeking a highly skilled and experienced Senior Hardware Security Expert to join our team. The ideal candidate will have a strong background in hardware design, vulnerability assessment, and security.Main Responsibilities:Conduct comprehensive reviews of secure elements, system-on-chips (SoCs),...
-
Senior Hardware Security Specialist
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob OpportunitySGS Brightsight is seeking a highly skilled Senior Hardware Security Expert to join our team. The ideal candidate will possess a strong background in hardware design, vulnerability assessment, and security.Main Responsibilities:Conduct comprehensive reviews of secure elements, system-on-chips (SoCs), cryptographic IPs, and soft IPs to ensure...
-
Senior Hardware Security Specialist
2 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob OpportunitySGS Brightsight is seeking a highly skilled Senior Hardware Security Expert to join our team. The ideal candidate will possess a strong background in hardware design, vulnerability assessment, and security.Main Responsibilities:Conduct comprehensive reviews of secure elements, SoCs, cryptographic IPs, and soft IPs to ensure security and...
-
Senior Hardware Security Expert
3 dagen geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionSGS Brightsight is seeking a highly skilled and experienced Senior Hardware Security Expert to join their team. The ideal candidate will have a strong background in hardware design, vulnerability assessment, and security.Main Responsibilities:Conduct comprehensive reviews of secure elements, system-on-chips (SoCs), cryptographic IPs, and soft...
-
Senior Hardware Security Expert
4 weken geleden
Delft, Nederland SGS VoltijdJob Description SGS Brightsight is looking for a highly skilled and experienced Senior Hardware Security Expert. The ideal candidate will have a strong background in hardware design, vulnerability assessment, and security. This role requires deep expertise in secure elements, system-on-chips (SoCs), and embedded systems. Main Responsibilities: ...
-
Senior Hardware Security Expert
3 weken geleden
Delft, Zuid-Holland, Nederland SGS VoltijdJob DescriptionSGS Brightsight is seeking a highly skilled and experienced Senior Hardware Security Expert to join our team.Main Responsibilities:Hardware Design Reviews: Conduct comprehensive reviews of secure elements, system-on-chips (SoCs), cryptographic IPs, and soft IPs to ensure security and compliance with industry standards.Vulnerability Analysis:...
