FIPS 140 Security Engineer

  • Columbia, MD
  • Posted 22 hours ago | Updated 22 hours ago

Overview

Hybrid
$50 - $67
Contract - W2

Skills

security engineer
X.509
FIPS

Job Details

Talascend is currently seeking a FIPS 140 Security Engineer for a hybrid W-2 contract to possible direct-hire in Columbia, Maryland.

HYBRID SCHEDULE:

  • This position is located in Columbia, Maryland.
  • 75% on-site.
  • 25% remote.


RESPONSIBILITIES:

  • Work on varied FIPS 140 validation projects
  • General security analysis
  • Design work (product architecture)
  • Vulnerability testing
  • Physical security testing
  • System-level logical analysis
  • Product evaluations against Technology Type standards (Protection Profiles)
  • Cryptographic and Public Key Infrastructure (PKI) testing
  • Cryptographic algorithm testing
  • Source code review activities
  • Technical report writing and review.
  • Testing automation through scripting
  • Develop applications to support test cases


QUALIFICATIONS:

  • .
  • Bachelor s degree and 2+ years of related experience.
  • Cryptographic Validation Program (CVP) Certification.
  • Knowledge of cryptographic encryption algorithms, key exchange algorithms, hashing/message authentication algorithms, PKI, random number generators, etc.
  • Experience with various programming languages (C, C++, Python or Java) and development environments.
  • Ability to comprehend security standard requirements and apply them to products.
  • Experience setting up networks and familiarity with subnetting and routing concepts.
  • Knowledge of common security related protocols and their design (i.e. SSH, IPsec, TLS, etc.).
  • Experience building testing environments, performing testing and reporting results (technical writing).
  • Strong troubleshooting and problem-solving skills.
  • Strong multitasking and time management.


DESIRED QUALIFICATIONS:

  • Experience with Python programming language
  • Experience with debugging (Android debug bridge (adb), WinDBG, Visual Studio, etc.).
  • Experience with statistical analysis of entropy sources.
  • Knowledge of OpenSSL and/or OpenPGP.
  • Vulnerability Analysis and/or penetration testing experience/expertise.
  • Strong knowledge of computer security principles and best practices.
  • Strong English (both oral and written) skills.
  • Related certifications (CCNA/CCNP/CCIE, JNCIA/JNCIS/JNCIP/JNCIE).
  • Knowledge of Active Directory and Linux.
  • Hands on experience using tools such as an oscilloscope, function generator, multi-meter, signal generator, etc.
  • Knowledge of X.509 certificate validation.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.