• Conduct of Common Criteria (CC) Network security Evaluation activities.
• Examine Network devices against the Common Criteria/ITsecurity standard in order to determine and document compliance gaps.
• Conduct network penetration testing and vulnerability assessments
• Perform traffic analysis and network performance testing
• Utilize tools like Ixia, Spirent, Wireshark, Nmap, and Metasploit
• Assess and improve secure network architecture and system hardening
• Work with teams on firewall, VPN, IDS/IPS configuration and analysis
• Analyze network Devices and their documentation to produce technical documentation that is required for the certification process.
• Maintains an ongoing dialogue with the director CC lab about the status and conduct of netwrok security assessments
• The selected candidate will work on varied computer security Common Criteria Evaluation and FIPS 140-2 validation projects
• Generation and simulation of Network traffic via hardware tools like IXIA,Spirent, Trex, QTP, QC etc.
• Responsible for administration and technical activities of network Screening and Evaluation Lab.
• Keep track of progress of Network screening and evaluation activities in the lab.
• Ensure that thorough, precise and comprehensive screening and evaluation reports are being prepared.
• Ensure that procedures for creating, storing, configuration management (CM), accessing, archiving and disposing of screening and evaluation activities records are being followed by teams.
• Configure network equipment to meet certification-specific deployment guidance.
• Author evaluation documentation for submission to testing labs and certifying authorities.
• Produce testing reports by conducting functional testing of the network devices.
• Communicate effectively with product vendors and testing facility personnel to address compliance gaps, testing queries, and documentation comments.
• Observe and ensure that the highest standards of confidentiality for the information provided for screening and evaluation are being followed.
• Design test plans and test cases, test execution, test result analysis bug reporting and bug tracking
• Understands and complies with test methods and procedures
Reports details of all nonconforming work and supplies that prohibit the accurate conduct of security assessments (observation reports)
Qualification:
• PhD/MS in a relevant discipline of Computer Science or Computer Engineering or Electrical Engineering such as Cyber Security, Information Security, Network Security, Information Technology, Information Assurance, etc. with minimum of twelve years’ experience of working in the versatile areas of information security evaluations at any relevant department, organization or agency at management positions.
• Knowledgeable of all relevant standards and publications pertaining to the specific tests (e.g. FIPS140-x, Common Criteria, PSS, NIST Publications, ISO27k, CIS-CAT benchmarking, ICSA Labs etc.) found on the lab’s scope.
• Professional Certifications in Cyber Security and Information Security such as CISSP, CISA,CCNA/CCNP/CCIE/JNCIA/JNCIS/JNCIP/JNCIE ISO/IEC 27001 LA/LI, ISO/IEC 17025 LA would be preferred.
Domicile Quota: Anywhere from Pakistan
Location of Job: Islamabad
Other Details:
• Working experience/ practical knowledge in fields of Cyber Security, Information Security, Network Security, Embedded systems, wireless/ radio communications, hardware devices/ gadgets, RF/ Microwaves, Software security testing and Mobile applications security testing (iOS & Android).
• Hands on experience in network security evaluations tools i.e. IXIA, BeStorm, Wireshark, NMAP, Accunetix, NESSUS etc.
• Experience in all phases of testing lifecycle, including requirement analysis, creating test plans and test cases, execution , defect tracking and reporting
• Goof experience in scripting using TCL and Python
• Experience with traffic generator and simulation like IXIA, Trex, QTP, QC and exposure to Fanfare
• Experience in designing test plans and test cases, test execution, test result analysis bug reporting and bug tracking
• Experience in setup and configure various test topologies, troubleshooting network issues, analysis packets and test the features to identify defects
• Proficient in functional, negative, regression, system integration(SIT)m Acceptant (UAT), Compatibility, performance and stress testing
• Strong understanding of 7x OSI Layers and L2/L3/L4 protocols. STP, VLAN TCP/IP, BGP, OSPF, DHCP, FTP, HTTP/s and SNMP
• Ability to develop and maintain automated regression test scripts
• Experience with Scripting languages (C, C++, C#,Perl, Python)
• Ability to comprehend security standard & Industry requirements and apply them to products.
• Vulnerability Analysis and/or penetration testing experience/expertise
• Product evaluations against Technology Type standards (Protection Profiles)
• Knowledge of OpenSSL and/or OpenPGP.
• Knowledge of common security related protocols and their design (i.e. SSH, IPsec, TLS, etc.).
• Vulnerability Analysis and/or penetration testing experience/expertise.
• Knowledge of Active Directory and Linux.
• Knowledge of X.509 certificate validation
• Experience setting up networks and familiarity with subnetting and routing concepts.
• Working knowledge of commonly deployed enterprise IT solutions such as authentication servers, NTP servers, syslog servers, virtualization, and container solutions, etc.
• Preferably network trained and certified.
Equivalent to : PPS-09
Age relaxation has already been added.
Back to Jobs
