Found Description
Responsibilities
- Evaluate hardware and software products to determine whether they meet strict security standards
- Analyse threats, test for vulnerabilities, and validate security features through structured and repeatable methods
- Define how testing is done, improving methodologies, guiding the team, and ensuring results are clear, accurate, and audit-ready
- Analyse target products and identify threat models for electronic components under evaluation
- Develop and execute Evaluation Work Plans aligned with CC scheme rules and CEM
- Conduct design, code, and documentation reviews to verify security functional and assurance requirements
- Perform vulnerability analysis, penetration testing, fuzzing, and specialised testing (e.g. side-channel, cryptographic validation) as required
- Build and maintain repeatable, traceable test methodologies for hardware and virtual environments in line with ISO/IEC 17025