CERT
 
CERT Contact Information CERT Statistics Meet CERT Publications by CERT Staff Presentations by CERT Staff Employment Opportunities
 

Job #5987 - Security Solutions Engineer

SUMMARY

The CERT® Program is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT® Program engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.

The CERT Network Situational Awareness (NetSA) group supports internal and external government customers by developing cutting-edge analysis techniques and tools for operational use in high-impact environments. This position will advise, design, participate in, or lead system design; development; analysis; or operational efforts for customer network security initiatives.

ESSENTIAL FUNCTIONS

  1. provide direct support to the customer program office in the areas of strategy; process/policies; requirements elicitation; design and architecture; operations; outreach; and training.
  2. enable the transition and appropriate focus of NetSA analysis approaches and tools into operational environments.
  3. design, prototype, and transition tactical analysis studies and tools appropriate for operational use in situational awareness

MINIMUM QUALIFICATIONS

Education/Training: Bachelor of Science in Information Systems, Information Systems Management or related field with 8 years experience, or equivalent; Masters Degree in Information Systems, Information Systems Management or related field with 5 years experience, or equivalent.

Experience: Professional experience should include 5 or more years of experience supporting technical decision-making, acquisition and management of large-scale enterprise deployment of network security technologies, including 2 or more years experience in a technical leadership role. This experience should also include hands-on technical experience as a system administrator, operational security analyst, systems integrator or related role.

Skills/Abilities:

Must have the following abilities and skills

  • Ability to function in the role of a consultant
  • Planning and organizational skills; strong problem solving skills; excellent oral and written communication skills.
  • Ability to work both independently and with teams
  • Proven ability to research, compare, test and evaluate alternative technical solutions, and communicate the results.
  • Broad understanding of network, host and application security issues
  • Expertise in one major network security or network engineering areas: incident handling, network traffic analysis, forensics, vulnerability assessment, network auditing, capacity planning, network architecture, etc.
  • Theoretical knowledge of and practical experience with various Internet protocols (e.g., TCP/IP, DNS, SMTP, BGP, TLS)
  • User or implementation level experience with a subset of the following classes of technologies: IDS (e.g., Snort, RealSecure), Networking Monitoring, IPS, SIM/SEM (e.g, ArcSight, eSecurity), network mapping, vulnerability scanners (e.g., Nessus), firewalls, and routers (Cisco)

OTHER

Physical/Mobility: Primarily sedentary in an office setting with some mobility. Flexibility to travel to various locations within the SEI and CMU community, sponsor sites, conferences, and offsite meetings potentially with routine frequency.

Environmental Conditions: Normal office conditions; close contact with computer display for extended periods of time

Mental: The ability to:

  • work meticulously with careful attention to detail;
  • meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities;
  • deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort;
  • develop and communicate innovative ideas;
  • take leadership role in technical projects; and
  • quickly learn new procedures, techniques, and approaches.

Candidates must be able to pass a background investigation, obtain a DoD TS/SCI security clearance, and be a US citizen

PREFERRED QUALIFICATIONS

Education/Training:Practical network security training (e.g. SANS GIAC Level 2 courses, CCNP, CCIE Security)

Skills/Abilities

  • Experience working with the government, or within a critical infrastructure sector
  • Experience developing briefing materials for senior leadership within government or industry
  • History of contributions to the broader information security community
  • Experience deploying or supporting large-scale network security monitoring infrastructures
  • Experience in a variety of network security areas
  • C/Java/Python development experience in the Unix environment with the ability to apply sound software engineering practices (e.g., documenting code; version control and configuration management; code reviews; and testing)
  • Experience in conducting studies analyzing network event streams including quantitative and visual approaches
  • User and implementation level experience with all of the following classes of technologies: IDS (e.g., Snort, RealSecure), IPS, SIM/SEM (e.g, ArcSight, eSecurity), network mapping, vulnerability scanners (e.g., Nessus), firewalls, and routers (Cisco)


Resumes from recruiting firms will not be accepted.

To apply please go to
Careers@CarnegieMellon

Carnegie Mellon is an Affirmative Action/Equal Opportunity Employer.

The Software Engineering Institute (SEI) is a federally funded research and development center sponsored by the U.S. Department of Defense and operated by Carnegie Mellon University.

CERT® and CERT Coordination Center® are registered in the U.S. Patent and Trademark Office.

This page was last updated July 07, 2009