Associate security

Highlights of the Job

Introduction

Lightship Security is a market leader in standards-based IT product security certification. We work with leading edge technology vendors from around the world to evaluate and test their products against various cyber security standards such as Common Criteria and FIPS 140.

We are committed to creating real world value through continued innovation in this field.

We're looking for an Associate Security Evaluator to join our US team and help support the projects in the setup, configuration, and testing against custom security requirements.

Someone with a critical mindset, who is not afraid to ask questions, who is proactive, and assertive with the ability to understand different perspectives and the ability to convincingly present a logical argument.

And finally, someone who shares true dedication to our core values : we solve problems for our clients, we work hard with integrity, we are technical experts, we value family, and we have fun.

Sound good? Here's a little more about the job :

Key Responsibilities

A typical project includes set-up and configuration of lab test environment and assessment of a product's security architecture, constructing standards-based documentation such as a security assessment report, analysis and assessment of system vulnerabilities, construction and / or execution of a standards-based test plan using Lightship's Conformance Automation Platform tool, fuzzing and penetration testing.

Projects will involve both hardware and software devices, and performing ad hoc IT support duties as directed will be part of the responsibilities.

The Ideal Candidate

To excel at Lightship, you have knowledge of enterprise class networking products such as Firewalls, and Unix based Operating Systems such as RHEL and Oracle Linux.

You are able to demonstrate expertise with the Linux operating system, virtualization technologies, cryptographic concepts, and networking fundamentals.

What You Bring

Education and Experience

• A University degree or college diploma in a technical field is required
• Must have at a minimum of 1-3 years' experience working with enterprise IT products (RHEL, Fortinet, Cisco, etc.)

Soft Skills

• Ability to manage concurrent projects
• Excellent communication skills : ability to express requirements in technical and non-technical terms to customers, peers, and management;

must be able to prepare consistent and quality reports for consumption by critical customers

• A proven ability to work independently
• Possess creative and critical thinking skills

Technical Skills

• Experience with programming and scripting languages such as : Python, Bash, and C
• Demonstrative experience using Linux and Windows operating systems
• Demonstrative experience with virtualization technologies, such as hypervisors and software-defined networking
• Experience with vulnerability analysis and penetration testing of both hardware and software targets
• Knowledge of fundamental cryptographic concepts and leading cryptographic algorithms

Bonus, but not required

Knowledge of FIPS 140-2, FIPS 140-3, Common Criteria, and other related standards

Requirements

• Must be eligible for a Government security clearance (Canada and USA)
• Must be able and willing to travel internationally

Last updated : 2024-10-07