Cybersecurity Certification Specialist

• Collaborating in developing and implementing quality management systems (QMS) for accredited cybersecurity services in line with ISO/IEC 17025, ISO/IEC 17065, and ISO/IEC 17021 standards.
• Perform or support internal audits and manage external audits by National Accreditation Bodies.
• Maintain up-to-date quality records, compliance documentation, and technical procedures.
• Collaborate in preparing and managing training programs for laboratory staff and assessing their effectiveness.
• Support the full lifecycle of cybersecurity certification schemes: development, operation, surveillance, accreditation, and continuous improvement.
• Review evaluation results and verify technical evaluation reports for certification decisions.
• Contribute to post-certification monitoring, surveillance activities, and vulnerability disclosure processes.
• Stay informed and ensure compliance with the latest standards and regulatory frameworks (Common Criteria, ISO 19790, ISO 21434, Cyber Resilience Act, AI Act, eIDAS, EUDI Wallet, etc.).

• At least 3 years of experience in the cybersecurity evaluation/certification/compliance fields.
• Computer Science, Telecommunication, Law or equivalent Bachelor's degree.
• Familiarity with concepts of cybersecurity evaluation and conformity assessment.
• Familiarity with the Quality assurance standards (ISO/IEC 17065 and ISO/IEC 17025).
• Motivation to understand and apply the basics of the EU certification standards framework as part of your role.
• Strong motivation to work in diverse, international, and multidisciplinary teams, with a collaborative and proactive attitude.
• Fluent in oral and written English.
• Detail-oriented and analytical mindset.
• Customer-focused and proactive attitude.
• Strong team player in multidisciplinary and diverse teams.

Ideally, you'll also have

• Cybersecurity Certifications: CISA, OSCP, CEH or similar.

• Have been Common Criteria Evaluator or Certifier: o Knowledge of ISO/IEC 15408:2022 and ISO/IEC 18045:2022 o Knowledge of Common Criteria Conformity Assessment activities procedures and their practical application to CC projects for different technologies (SW, OS, HW, etc…). o Knowledge of technical and organisational aspects of the evaluation and certification process.

• Knowledge of Certification principles (impartiality, comparability concerning the application of the evaluation criteria & methods, repeatable and reproducible evaluations observance, etc.)

• Knowledge of the EUCC scheme

• Participation in tech communities (e.g. cPP development or SOG-IS technical domains) and regulations, standards development groups

• Work in an attractive multinational environment together with other top security experts.
• Permanent contract.
• Flexible work model that allows the conciliation between personal and work life.
• Hybrid Model.
• Intensive summer day and every Friday of the year.
• Possibility of accessing restaurant vouchers, nursery vouchers, private medical insurance or Wellhub.
• Healthy snacks and Coffee free in our offices.
• Discounts on major brands: textiles, consumer goods, electronics, travel agencies.
• Our employees have an opportunity to develop a career plan with access to different certification programs (internal and external) as well as participate in cybersecurity events within the community and engage in a learning culture and more

Since its foundation in 1925, the DEKRA promise has been to ensure the safety of human interaction with technology and the environment. The company currently employs around 48,000 people in more than 60 countries on all five continents. We have a clear and ambitious vision of the future. The vision for our 100th birthday in 2025 is to see DEKRA as the global partner for a safe world. Within our Cybersecurity Hub, we are responsible for performing product security evaluations and certification processes for the most important manufacturers worldwide. We are looking for a hybrid profile to join our Cybersecurity Conformity Assessment team. You will contribute to the development, accreditation, operation, and continuous improvement of quality management systems and internationally recognized certification schemes such as Common Criteria (EUCC), ISO/IEC 19790, eIDAS, among others. This role is essential to ensuring our processes meet the highest standards and contribute to the cybersecurity of digital products across various industries.