Job Description

Job Description

Position Summary

The Junior Security Evaluator performs conformance testing services to various security standards, such as Postal and FIPS 140-2. Conformance testing involves assessing designs and implementations for compliance to established requirements. It also involves documentation, software, hardware, physical security, logical security, functional and operational testing, and evaluation, as well as test planning and reporting. Other tasks may include creating new testing procedures, testing tools, and report templates.

Duties and Responsibilities

  • Provide expert security and technical services to Penumbra’s customers. This includes conformance testing services, as well as other testing services such as penetration testing, application vulnerability assessments, physical security, SPA/DPA, and network security audits.
  • Responsible for planning tests, as approved by the Technical Manager.
  • Responsible for modifying test methods and developing and validating new methods, as approved by the Technical Manager.
  • Responsible for reporting test results (including opinions and interpretations), as approved by the Technical Manager.
  • Specializes in the following product classes: FIPS 140-2 Conformance Testing, Postage Evidencing Systems (PES) Evaluations, Infrastructure Audits (ISO/IEC 27002, BSI IT), Cryptographic Algorithm Testing, Penetration Testing, IT Network and System Assessments, and Networking Equipment and Computer Systems

    • Qualifications

    Education & Experience Requirement

  • BS in computer science, mathematics, computer or electrical engineering, management information systems (MIS), or other related discipline preferred
  • 1 year of experience, training, knowledge, or familiarity in 17CAV, 17CMH, and 17CMS
  • 1 year of experience, training, knowledge, or familiarity in 17 CMH1 Security Levels 1 to 3 to include Production grade, tamper-evident, and tamper detection techniques, Hardware implementations and technologies associated with single-chip and multi-chip embodiments, Epoxies, potting materials, adhesives ( tamper-evident labels), and their chemical properties, Electrical design, schematics, and concepts, including logic design and HDL representations, Skills associated with tamper mitigation methods and performing test methods of compromising tamper protection mechanisms
  • 1 year of experience, training, knowledge, or familiarity in 17CMH2 Security Level 4 to include voltage and temperature measurement (Environmental Failure Protection/Environmental Failure Testing (EFP/EFT)), tamper detection/response envelopes, and formal modeling methods
  • 1 year of experience, training, knowledge, or familiarity in 17 CMS1 Security Levels 1 to 3 to include evaluating operating systems under the Common Criteria EAL2 through EAL3 or equivalents
  • 1 year of experience, training, knowledge, or familiarity in 17CMS2 Security Level 4 to include formal modeling methods, and evaluating operating systems under the Common Criteria EAL4 or equivalent

    • Pay Range: $50,000-$75,000/ year

    Apply for this Position

    Ready to join ? Click the button below to submit your application.

    Submit Application