B

IoT Security Compliance Engineer

BSI Group
Full-time
On-site
Hemel Hempstead, United Kingdom

Great that you're thinking about a career with BSI!

Job Title: IoT Security Compliance Engineer

Location: Hemel Hempstead

Job Type: Permanent, Full-time

Salary: Dependant on Experience

Are you an experienced cyber security professional seeking a diverse and meaningful career in IoT cyber security standards?

With exposure to an array of smart home and connected IoT devices, your role as our IoT Security Compliance Engineer will involve conducting security testing of IoT smart devices for our global clients, to ensure products meet security compliance to the relevant regulatory cybersecurity schemes under type test and audit tests.

To be successful in this role you will bring experience across device/hardware cybersecurity, debugging interfaces, wireless & wired communications (WIFI, Bluetooth, Ethernet, ZiBee, Z-Wave etc), firmware reverse engineering, and source code analysis.

Key Responsibilities:

  • Testing IoT product samples in line with KPI budget.
  • Assist to maintain and improve test techniques for the IoT laboratory.
  • To Research and identify new potential test equipment for the IoT laboratory.
  • Ensure that test SMOs are booked, time sheeted and billed correctly.
  • Support the maintenance of The UKAS accreditation for the IoT laboratory, ensuring that compliance processes are established, implemented, and maintained and ensuring that they continue to meet accreditation requirements and remains effective, efficient and fit for purpose.
  • To provide technical assistance with BSI customers, during any potential certification journey.
  • To manage client’s samples and testing to ensure that agreed timelines are met for the testing of samples.
  • To assist in the maintenance and continuous improvement on automated reporting tools.

Required Skills & Experience:

  • Experience managing and operating Linux and Windows systems.
  • Experience in Hardware (electronics) cybersecurity testing.
  • Experience in infrastructure cybersecurity testing.
  • Familiarity with compliance cybersecurity standards, such as:
    • ETSI EN 303 645 / TS 103 701
    • IEC 62443-4
    • OWASP ASVS / MASVS
  • Familiarity / Experience with standards for competence of testing and calibration (EN ISO/IEC 17025).
  • Some demonstrable practical experience with IoT devices/applications.
  • Some practical experience with at least one high level programming language.
  • Experience / Familiarity with Professional technical report writing.
  • Good communication skills and the ability to write clear and concise reports.

Desirable Skills & Experience:

  • Knowledge / experience in Industrial Control systems (Cybersecurity aspects).
  • Knowledge / experience in any of the following communication technologies:
    • Mobile (2G/3G/4G/5G)
    • Bluetooth.
    • ZigBee
    • Z-Wave
    • Lora WAN
    • NB-IoT
  • Experience with working with front-end and back-end systems
  • Experience of:

CREST (any from the Incident response family)

Offensive security (PEN-200, PEN-210, PEN-300)

Cyber-Scheme (CSFL, CSTM, CSTL)

BSI offers a competitive total reward package, an independent and varied job in an international environment, flexible working hours, ongoing training, and development with the inclusion of Annual Bonus, Contribution Based Pension, Private Healthcare, 27 Days Annual Leave + Bank Holidays, Life Assurance.

Do you believe the world deserves excellence?

We are proud to be the business improvement company for other organisations to become more sustainable and resilient and finally to inspire trust in their products, systems, services, and the world we live in.

Headquartered in London, BSI is the world's first national standards organization with more than 100 years of experience. We are a global partner for 86,000 companies and organizations in over 193 countries, offering development, auditing, certification, and training services, including innovative software solutions and cyber security expertise for all industries: from aerospace and automotive to food, construction, energy, healthcare, IT and trade sectors. Incorporated by Royal Charter, we’re truly impartial, and home to the ultimate mark of trust, the Kitemark.

Through our unique combination of consulting, training, assurance, and regulatory services we bring solid and broad knowledge to every company.

If you want to contribute to this inspiring challenge, bring your open and enthusiastic mindset to our dynamic team, apply now and become part of the BSI family!

D&I Policy

BSI is committed to ensuring the diversity of our workforce reflects that of our clients and the communities in which we operate. Our goal is to create a sense of belonging for all employees by providing opportunities to develop, grow, and engage with our global organization all while having fun doing great work. BSI is a community where everyone can thrive.

If you require any reasonable accommodations to be made on account of a disability or impairment throughout out our recruiting process, please inform your Talent Acquisition Partner.

#LI-GC1

#LI-ONSITE

Our Excellence Behaviours: Client-centric, Agile, Collaborative. These three behaviours represent how we do things at BSI. They help us ensure that BSI is a great place to work and a highly successful business.

BSI is conducting face-to-face interviews where appropriate and possible. If you are invited to a face-to-face interview but feel more comfortable with conducting the interview virtually, please speak to a member of our recruitment team.