ABOUT WorldLink:
WorldLink is a rapidly growing information technology company at the forefront of technical revolution. From custom software development to cloud hosting, from big data to cognitive computing, we help companies harness and leverage today’s most cutting-edge digital technologies to create value and grow.
Collaborative. Respectful. Work hard Play hard. A place to dream and do. These are just a few words that describe what life is like at WorldLink. We embrace a culture of experimentation and constantly strive for improvement and learning.
We take pride in our employees and their future with continued growth and career advancement. We put TEAM first. We are a competitive group that like to win. We're grounded by humility and driven by ambition. we're passionate, and we love tough problems and new challenges. You don't hear a lot of "I don't know how" or "I can't" at WorldLink. If you are passionate about what you do and having fun while doing it; tired of rigid and strict work environments and would like to work in a non-bureaucratic startup cultural environment, WorldLink may be the place for you.
For more information about our craft, visit https://worldlink-us.com.
WHO we’re looking for:
We are looking for a Security Engineer - FIPS/CC (Mobile Devices) who will be responsible for performing initial assessment of the security functions and specifications; consult various teams in the development of the process, design, and documentation required for the FIPS 140-2/3 accreditation of our cryptographic modules and common criteria evaluations of our security products. You will at times be responsible for security compliance analysis and testing of operational, management, and technical controls for products. Ideally you have deep mobile device expertise. You will be a part of FIPS 140-2/3 and the Common Criteria evaluations team
Role and Responsibilities:
- Develop plans and procedures using applicable security controls, including FIPS 140-2/3 specifications, NIAP Protection Profiles (MDFPP, VPN, WLAN, Biometric enrollment, and verification), DCID 6/3, DoD 8500, or NIST SP 800-53.
- Help with CAVP algorithm testing using ACVP/ACVTS and review of security policies for the modules.
- Assist in the development and review of all test reports and required certification documentation for all the FIPS 140-2/3 accreditation and Common Criteria evaluations.
- Use experience building testing environments, performing testing and reporting results (technical writing).
- Develop mitigation strategies to address vulnerabilities uncovered during security testing; and assist with completing security documentation to meet certification and authorization requirements, as required.
- Perform vulnerability analysis of product or system designs against applicable security criteria using common tools, including Nessus, NMAP, and Wireshark.
- Project POC with Internal/External audience when required.
Required Experience and Education:
- 7+ years of technical experience in FIPS 140-2/3 and Common Criteria Mobile Device Evaluations.
- Bachelor's Degree in Electrical Engineering, Computer/Information Science, Information Assurance/Cybersecurity, or equivalent degree (Master's Degree preferred).
- Proficiency in FIPS 140-2/3 requirements and cryptographic encryption algorithms, key exchange algorithms, hashing/message authentication algorithms, PKI, random number generators, etc.
- Proficiency in FIPS 186-4/5, SP 800-186, SP800-90B.
- Knowledge of common security related protocols and their design (i.e., SSH, IPsec, TLS, etc.)
Physical Demands:
The physical demands described here are representative of those that must be met by contract employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the contract employee is occasionally required to stand, clean, crawl, kneel, sit, sort, hold, squat, stoop, stand, twist the body, walk, use hands to finger, handle, or feel objects, tools or controls, reach with hands and arms, climb stairs or ladders and scaffolding, talk or hear, and lift up to 20 pounds. Specific vision abilities required by the job include ability to distinguish the nature of objects by using the eye. Operate a computer keyboard and view a video display terminal between 50% - 95% of work time, including prolonged periods of time. Requires considerable (90%+) work utilizing high visual acuity/detail, numeric/character distinction, and moderate hand/finger dexterity.
Performs work under time schedules and stress which are normally periodic or cyclical, including time sensitive deadlines, intellectual challenge, some language barriers, and project management deadlines. May require working additional time beyond normal schedule and periodic travel.
WHAT we’ll bring:
During your interview process, our team can fill you in on all the details of our industry-competitive benefits and career development opportunities. A few highlights include:
- Medical Plans
- Dental Plans
- Vision Plan
- Life & Accidental Death & Dismemberment
- Short-Term Disability
- Long-Term Disability
- Critical Illness/ Accident/ Hospital Indemnity/ Identity Theft Protection
- 401(k)
WHAT you should know:
Our success begins and ends with our people. We embrace diverse perspectives and value unique human experiences. WorldLink is an Equal Employment Opportunity and Affirmative Action employer. All employment at WorldLink is decided on the basis of qualifications, merit, and business need. We endeavor to continue our footprint as a diverse organization by highlighting opportunities for all people. WorldLink considers applicants for all positions without regard to race, color, religion or belief, sex, (including pregnancy and gender identity), age, national origin, political affiliation, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. People with disabilities who need assistance with any part of the application process should contact us.
This job description is designed to cover the main responsibilities and duties of the role but is not designed to be a comprehensive list of all.
Job Type: Full-time
Pay: $175,000.00 - $190,000.00 per year
Benefits:
- 401(k)
- Dental insurance
- Flexible schedule
- Health insurance
- Paid time off
- Vision insurance
Experience level:
Schedule:
Application Question(s):
- Do you live in the Mountain View, CA area or are you open to relocation?
Education:
Experience:
- FIPS: 7 years (Required)
- Common Criteria Mobile Device Evaluations: 5 years (Required)
- Cryptographic Encryption Algorithms: 5 years (Required)
- Security Protocols: 5 years (Required)
Work Location: In person