Job #5987 - Security Solutions Engineer

SUMMARY

The CERT® Program is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT® Program engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.

The CERT Network Situational Awareness (NetSA) group supports internal and external government customers by developing cutting-edge analysis techniques and tools for operational use in high-impact environments. This position will help drive customer architecture and system engineering efforts, including system requirements development, system engineering approaches, technology evaluation, prototyping, tool development, deployment guidance and other support to customer network security initiatives. The candidate should have experience providing strategic technical guidance in a network security technology area.

ESSENTIAL FUNCTIONS

provide direct support to the customer program office in the areas of strategy; process/policies; requirements elicitation; design and architecture; operations; outreach; and training.
enable the transition and appropriate focus of NetSA analysis approaches and tools into operational environments.
design, prototype, and transition tactical analysis studies and tools appropriate for operational use in situational awareness

MINIMUM QUALIFICATIONS

Education/Training: Bachelor of Science in Information Systems, Information Systems Management or related field with 8 years experience, or equivalent; Masters Degree in Information Systems, Information Systems Management or related field with 5 years experience, or equivalent.

Experience: Professional experience should include 5 or more years of experience supporting technical decision-making, acquisition and management of large-scale enterprise deployment of network security technologies, including 2 or more years experience in a technical leadership role. This experience should also include hands-on technical experience as a system administrator, operational security analyst, systems integrator or related role.

Skills/Abilities:

Must have the following abilities and skills

Ability to function in the role of a consultant
Planning and organizational skills; strong problem solving skills; excellent oral and written communication skills.
Ability to work both independently and with teams
Proven ability to research, compare, test and evaluate alternative technical solutions, and communicate the results.
Broad understanding of network, host and application security issues
Expertise in one major network security or network engineering areas: incident handling, network traffic analysis, forensics, vulnerability assessment, network auditing, capacity planning, network architecture, etc.
Theoretical knowledge of and practical experience with various Internet protocols (e.g., TCP/IP, DNS, SMTP, BGP, TLS)
User or implementation level experience with a subset of the following classes of technologies: IDS (e.g., Snort, RealSecure), Networking Monitoring, IPS, SIM/SEM (e.g, ArcSight, eSecurity), network mapping, vulnerability scanners (e.g., Nessus), firewalls, and routers (Cisco)

OTHER

Physical/Mobility: Primarily sedentary in an office setting with some mobility. Flexibility to travel to various locations within the SEI and CMU community, sponsor sites, conferences, and offsite meetings potentially with routine frequency.

Environmental Conditions: Normal office conditions; close contact with computer display for extended periods of time

Mental: The ability to:

work meticulously with careful attention to detail;
meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities;
deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort;
develop and communicate innovative ideas;
take leadership role in technical projects; and
quickly learn new procedures, techniques, and approaches.

Candidates must be able to pass a background investigation, obtain a DoD TS/SCI security clearance, and be a US citizen

PREFERRED QUALIFICATIONS

Education/Training: Practical network security training (e.g. SANS GIAC Level 2 courses, CCNP, CCIE Security)

Skills/Abilities:

Experience working with the government, or within a critical infrastructure sector
Experience developing briefing materials for senior leadership within government or industry
History of contributions to the broader information security community
Experience deploying or supporting large-scale network security monitoring infrastructures
Experience in a variety of network security areas
C/Java/Python development experience in the Unix environment with the ability to apply sound software engineering practices (e.g., documenting code; version control and configuration management; code reviews; and testing)
Experience in conducting studies analyzing network event streams including quantitative and visual approaches
User and implementation level experience with all of the following classes of technologies: IDS (e.g., Snort, RealSecure), IPS, SIM/SEM (e.g, ArcSight, eSecurity), network mapping, vulnerability scanners (e.g., Nessus), firewalls, and routers (Cisco)

Résumés from recruiting firms will not be accepted.
To apply please go to
Careers@CarnegieMellon

Carnegie Mellon is an Affirmative Action/Equal Opportunity Employer.

The Software Engineering Institute (SEI) is a federally funded research and development center sponsored by the U.S. Department of Defense and operated by Carnegie Mellon University.

CERT^® and CERT Coordination Center^® are registered in the U.S. Patent and Trademark Office.

This page was last updated Tuesday, 11-May-2010 15:36:09 EDT