What are the responsibilities and job description for the Security Analyst - FIPS position at DEKRA?
Summary of Position:
DEKRA is one of the world's leading testing, inspection and certification (TIC) companies, offering innovative professional services in the fields of vehicle inspection, expert appraisals, industrial product testing and certifications, management system certifications, leadership consulting, and much more.
DEKRA is a purpose-driven organization with a deep passion to make the world a safer place on the road, at work and at home. At DEKRA North America, you will be part of a growing organization with almost 100 years of history and over 47,700 employees in 60 countries around the globe.
DEKRA Certification Inc. is looking for a Senior Security Analyst FIPS to ensure that our customers comply with security requirements from ISO 19790 and FIPS 140-3 standards Essential Duties and Responsibilities.
• Analyze technical documentation of Cryptographic Modules including algorithm implementations, source code, entropy sources, finite state models, and secure network protocols.
• Devise and execute cryptographic and functional test plans.
• Create technical reports, and formal papers on test findings, and complete requests per requirements.
• Prepare presentations and present the results according to standards and procedures.
Required Knowledge, Skills, and Abilities:
• Computer Science, Telecommunication or equivalent Bachelor's degree plus. minimum 2 years of working experience in programming/scripting, with a background in symmetric/asymmetric key cryptography, PKIs, and communication protocols. A Master’s Degree is Preferred.
• Mathematical/statistical knowledge of cryptographic implementations and entropy sources.
• Deep Knowledge of Windows and Linux operating systems.
• Application development background and security knowledge – examples of languages include Python, C, C#, C , Java, Bash, and/or Powershell.
• Knowledge of network communication protocols: TLS, IKE/IPsec, SSH, and/or SNMP.
• Use of debugging tools (GDB, radare2, winGDB, or similar) and/or disassembling (Ghidra, IDA, or similar).
•Hardware knowledge: technologies (ASICs, FPGAs, processors), ports (JTAG, USB), hardware protocols (UART, SPI, I2C), schematic analysis
• Fluent in spoken and written English.
• Excellent interpersonal, verbal, written, and presentation skills. Must work well as a team, and across multiple cultures.
• Strong analytical skills while handling multiple projects, delivering results on time using well-developed logical problem-solving skills.
• Customer focused
• High level of professionalism and the ability to work autonomously.
• Pro-active attitude and excellent organizational skills, and attention to detail.
• Able to read, comprehend, interpret, and apply the requirements of test standards to various types of products.
• Maintain adequate knowledge of technology relating to the position.
Physical Demands:
•While performing the duties of this job, the employee is regularly required to, stand, sit; talk, hear, and use hands and fingers to operate a computer and telephone keyboard reach, stoop kneel to install computer equipment.
• Specific vision abilities required by this job include close vision requirements due to computer work.
• Light to moderate lifting is required
Required Travel:
• Travel domestic and/or overseas up to 25% of the time, including overnight stays.