Senior Common Criteria Evaluator

Highlights of the Job 

Introduction

Lightship Security is a market leader in standards-based IT product security certification. We work with leading edge technology vendors from around the world to evaluate and test their products against various cyber security standards such as Common Criteria and FIPS 140. We are committed to creating real world value through continued innovation in this field.   

We’re looking for a Senior Common Criteria Evaluator to join our US team and hold the role of a lead evaluator by being responsible for the technical and/or methodological quality of a project. You are familiar with the international schemes, and you have contributed to several certificates for CC evaluations. You also share true dedication to our core values: we solve problems for our clients, we work hard with integrity, we are technical experts, we value family, and we have fun.

Sound good? Here’s a little more about the job:

Key Responsibilities 

• Author and execute test plans in accordance with NIAP Protection Profiles
• Evaluate documentation (Security Targets, Guidance, Entropy) in accordance with NIAP Protection Profiles
• Liaise with NIAP validators
• Liaise with product vendors
• Prepare and submit evaluation reports as required by NIAP

The Ideal Candidate

To excel at Lightship, you are responsible for leading IT product security evaluation projects with little oversight. You will use your knowledge and experience to inspire less experienced team members in their development and communication to customers. The successful candidate will have a proven track record of performing Common Criteria evaluations within the US Common Criteria Scheme (NIAP).

What You Bring

Education and Experience

• Must have at a minimum of 1-3 years' experience working with enterprise IT products (RHEL, Fortinet, Cisco, etc.)
• Bachelor’s or master’s degree in a technical field of study
• 5 years of recent experience performing Common Criteria evaluations
• Recent experience in leading NIAP Common Criteria evaluations
• Experience executing tests required by NIAP Protection Profiles

Soft Skills

• Proven experience mentoring 3-4 junior team members
• Proven ability to manage concurrent projects
• Proven ability to work well in a team
• Excellent English oral and written communication skills
• Professional, reliable, organized
• Outstanding relationship-building, time management

Technical Skills  

• Minimum of 3 years experience working with enterprise IT products (RHEL, Fortinet, Cisco, etc.)
• Minimum 3 years experience in executing required tests as specified by CC Protection Profiles with NIAP
• Minimum 2 years working experience of networking technologies, protocols, and information delivery such as: TCP/IP, SSL/TLS, and SSH
• Working knowledge with virtualization technologies, such as hypervisors and software-defined networking
• Working knowledge of fundamental cryptographic concepts and leading cryptographic algorithms
• Experience using Linux and Windows operating systems
• Experience with vulnerability analysis and penetration testing of both hardware and software targets

Requirements 

• You are legally entitled to work in the US
• Must hold a valid U.S. work permit

What’s in it for you?   

• Health & Wellness: Staying healthy is important; we provide health, dental, life, and disability insurance

• Development Opportunities: We value our employee career development by offering professional support, coaching, training reimbursement program, etc.

• Social: We enjoy getting together at various company events

• Culture: Come join our innovative, collaborative, and dynamic environment

• Flexibility: We try to accommodate real-life as much as possible and know that work is just a part of our daily lives. We offer a hybrid work model, and we expect the successful candidate to come into our office 2 to 3 days a week.

The successful candidate will preferably work from our lab in Baltimore, MD. Remote work may be considered for highly experienced candidates. Candidates must be located in the USA.

Lightship is an equal opportunity employer. Accommodations will be provided at all stages of the hiring process. We ask applicants to make their needs known in advance.

We thank all applicants for their interest in this opportunity. Only those selected for an interview will be contacted. No agencies, please.