The SysTest Labs Compliance Security Specialist within the Compliance Services Line of Business (LOB) provides day-to-day execution of the tasks necessary that support the operations and delivery of software and hardware security test engineering services to product manufacturers operating within the regulated voting industry. The Specialists ensure that voting testing services meet rigorous federally defined security standards for voting systems, which enables the company to certify that the voting system satisfies the Voting System Standards (2002) or the Voluntary Voting System Guidelines (2005) and that related system functionality operates in accordance with design requirements and specifications.
Job Specifications
1. 5+ years experience in Enterprise Security including experience within the following domains: encryption technologies, LAN/WAN/MAN security concepts, risk analysis, OS/database/application security concepts, identity management and workflow concepts
2. Demonstrated experience in the area of software development and build environments with a focus on delivery of secure software.
3. CISSP required. CISA, or SANS GIAC certification a plus.
4. BS/BA degree in computer science, computer information systems, or engineering is required, Masters preferred.
5. Strong communication skills, ability to work in a team environment with multiple and changing priorities and an ability to present themselves in a professional manner at all times.
6. Ability to translate project technical security needs into a task list, a required hardware and tool list, a project schedule, a schedule of resource needs, create test cases, perform tests, and document results
Duties and Responsibilities
1. Test Operations
- Provides assurance of quality throughout all security test activities and ensures that the testing and related results are reliable and repeatable.
- Stays current in best practices for security test engineering to ensure that SysTest Labs is applying these practices and remains a leader in test compliance-related industries.
- Communicates with the Compliance Security Manager, the VSTL Operations Manager and the Quality Assurance Manager regarding policies, procedures, best practices, and quality improvements.
- Remains current with all applicable federal election regulations, applicable state and local election regulations, and information provided to voting system test labs by the Election Assistance Commission (EAC)
- Ensures that all security-related laboratory processes, procedures, and practices conform to EAC and NVLAP policies and directives
2. Test Practices Delivery
- Develops security test plans, procedures, and test data
- Ensures use of test management tools for managing and maintaining test specifications and test traceability
- Ensures a traceability matrix is in place for test projects
- Ensures use of decision trees, state transition matrices, files of data sets, equivalence classes of data, function points, functional flow charts, transaction flows for developing detailed test scripts or procedures
- Ensures development of a test plan that meets IEEE standards for test plan design, test plan development and test execution
Working Conditions
-
Work on-site at SysTest Labs facility in
Denver, Colorado
-
Hours are 8:00 a.m. – 5:00 p.m., Monday through Friday
-
Regular full time employee (FSLA Exempt)
-
Overtime work is frequently required
-
