EUCC Certification Specialist
We are seeking a highly skilled EUCC Certification Specialist to join our Cybersecurity Hub. As a key member of our team, you will be responsible for performing product security evaluations and certification processes for top-tier manufacturers worldwide.
* Manage the Quality Management System of the Certification Body
* Lead EUCC Certification Projects: Manage end-to-end certification projects, ensuring that IT products comply with the EU Common Criteria (EUCC) standards
* Participate in the coordination and execution of certification activities:
* Review evaluation results and verify evaluation technical reports
* Review certifier activities and reports
* Make certification decisions for issuance, suspension or withdrawal of EUCC certificates
* Conduct surveillance and monitoring activities, including those related to certified products, subcontractors and certificate holders
* Ensure conformity and compliance
* Manage vulnerability disclosure
* Supervise junior staff and trainees
* Develop policies and procedures for the Certification Body
* Maintain the CAB quality management system and specific procedures for Conformity Assessment activities
* Interface with Clients and Regulatory Bodies: act as a point of contact for clients during the certification process. Liaise with national and European regulatory bodies to ensure the certification aligns with EUCC standards and regulatory requirements.
* Stay Up-to-Date with EUCC Standards: continuously monitor and stay informed about updates to the EU Common Criteria standards and other relevant regulatory frameworks to ensure our certification practices reflect the latest industry requirements.
* Training and Knowledge Sharing: provide training and guidance to clients and internal teams on EUCC-related topics, fostering a culture of continuous improvement and knowledge sharing within the organization.
Requirements:
* +5 years of demonstrated experience in cybersecurity evaluation/certification
* Computer Science, Telecommunication, or equivalent degree
* Deep knowledge of ISO/IEC 17065 and ISO/IEC 17025 quality assurance standards
* Deep knowledge of the EUCC scheme
* Experience as a Common Criteria Evaluator or Certifier:
* Deep knowledge of ISO/IEC 15408:2022 and ISO/IEC 18045:2022
* Technical and organisational expertise in evaluation and certification
* Demonstrable experience in tech communities and regulations development groups
* Fluent English
* Aptitude for teamwork in an international environment
* High level of professionalism and autonomy
* Strong analytical skills while handling multiple projects, delivering results on time using logical problem-solving skills.
Ideal Requirements:
* Cybersecurity certifications such as CISA, OSCP, CEH