CERT
 
CERT Contact Information CERT Statistics Meet CERT Publications by CERT Staff Presentations by CERT Staff Employment Opportunities
 

Job #5067 - Network Security Analyst

CERT Network Situational Awareness (NetSA)

SUMMARY

The CERT Network Situational Awareness (NetSA) group’s analysis team supports internal and external customers by developing cutting-edge analysis techniques for regular operational use in high-impact environments. The analyst will develop new analysis techniques and prototype their software implementation, support customers by preparing
analytic reports, prototype new analysis approaches, and participate in preparing research for publication. The successful candidate will have some combination of academic training and real world network or network security experience.

ESSENTIAL FUNCTIONS

  1. perform analytical studies on customer data-sets; document findings in reports, presentations, and technical exchanges.
  2. design, prototype, and transition analytical techniques and tools appropriate for operational use in situational awareness.
  3. instruct analysts on analysis tools and techniques; develop appropriate materials for this training.
  4. contribute to the broader security community; conduct peer-review; participate in meetings and presentations; give talks as appropriate.

MINIMUM QUALIFICATIONS

Education/Training: Bachelor of Science in Computer Science or scientific/technical field with 8 years experience, or equivalent; Masters Degree in Computer Science or scientific/technical field with 5 years experience, or equivalent.

Experience: Professional experience listed above is in network security research and/or operations—the successful applicant will likely have both.

Skills/Abilities:

  • Theoretical knowledge of and practical experience with various Internet protocols (e.g., DNS, SMTP, BGP, TLS)
  • Ability to function in the role of a consultant
  • Capable of conducting analytical studies and investigations, including quantitative data analysis
  • Experience delivering concrete, high quality results on projects while under time pressure
  • Planning and organizational skills
  • Strong problem solving skills
  • Excellent oral and written communication skills.
  • Ability to work both independently and with teams.
  • Informal light development experience in a high-level language such as Python, Java or Perl
  • User or implementation level experience with a subset of the following technologies: network flow, network payload analysis (e.g. NetWitness, Wireshark), IDS (e.g., Snort, RealSecure), IPS, SIM/SEM (e.g, ArcSight,
    OSSIM), network mapping, vulnerability scanners (e.g., Nessus), firewalls, routers, host-based security (AV, HIPS, system logs), and other integration platforms (e.g. McAfee ePolicy Orchestrator, Sourcefire RNA)
  • Deep knowledge of multiple modern operating system (e.g., Linux, Solaris, Windows 2000+, BSD, OSX)
  • Unix shell scripting experience
  • Experience using SQL databases

OTHER

Mobility: Primarily sedentary in an office setting with some mobility. Flexibility to travel to various locations within the SEI and CMU community, sponsor sites, conferences, and offsite meetings potentially with routine frequency.

Environmental Conditions: Normal office conditions; close contact with computer display for extended periods of time.

Mental: The ability to:

  • work meticulously with careful attention to detail;
  • meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities;
  • deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort;
  • develop and communicate innovative ideas;
  • take leadership role in technical projects; and
  • quickly learn new procedures, techniques, and approaches.

Other: Candidates must be able to pass a background investigation, obtain a DOD TS/SCI security clearance, and be a US citizen.


Resumes from recruiting firms will not be accepted.

To apply please go to
Careers@CarnegieMellon

Carnegie Mellon is an Affirmative Action/Equal Opportunity Employer.

The Software Engineering Institute (SEI) is a federally funded research and development center sponsored by the U.S. Department of Defense and operated by Carnegie Mellon University.

CERT® and CERT Coordination Center® are registered in the U.S. Patent and Trademark Office.

This page was last updated November 12, 2008