What We Do: The CMU/SEI Forensic Operations and Investigations team is a cutting edge analytical resource focusing on critical U.S. Government (USG) needs. For the past 10 years, we have provided analytical and operational support on high-profile investigations, including numerous activities both nationally and internationally. Through this work the FOI can see the current limitations of digital analysis and incident response in the field first hand. We combine our applied research with the unique talents, operational experience, research capabilities, and vast knowledge base to develop new tools and methods to address cyber security limitations and critical gap areas.
Are you creative, curious, energetic, collaborative, technology-focused, and hard-working?
Position Summary: In this role you will serve in a multi-disciplinary role providing ongoing support to federal law enforcement, defense agencies, and the national intelligence community. You will provide support to on-going operations in the areas of incident response and investigation, full-spectrum digital analysis and applied research in emerging areas of cybercrime. You will build interdisciplinary approaches to problem solving, and demonstrate strong presentation and instructional skills.
- BS Computer Science or other related discipline and a minimum of ten (10) years of related experience
- MS in the same fields with eight or more (8+) year’s relevant experience in analysis of digital artifacts or incident response
- Willingness to travel to various locations to support the SEI’s overall mission. This includes within the SEI and CMU community, sponsor sites, conferences, and offsite meetings on occasion. Moderate travel (25%)
- You will be subject to a background investigation and need to be eligible to obtain and maintain a Department of Defense security clearance
- Ability to pay close attention to detail, meet deadlines, work under stress, and communicate effectively.
- Act independently using CMU and SEI defined policies, practices, and procedures.
- Design, develop, pilot and deliver products. Required to accurately represent FOI and its technical work in interactions with customers, sponsors, and the public.
- Interact with clients and staff of all levels in a highly professional and competent manner.
Knowledge, Skills, and Abilities:
- Hardware or software reverse engineering for either vulnerability discovery/assessment or malware analysis
- Technical knowledge of fundamental Internet protocols, services, and technologies to include HTTP(S), TLS, DNS, SMTP, TCP/IP, ICMP, JSON, REST
- Experience with C/C++, Java, Swift, Objective C
- Understanding of Routing protocols for Cisco and Routers
- Understanding of server/client/operating systems
- Penetration Testing
- Knowledge of common vulnerabilities, exploits and mitigations
- Digital artifact analysis (host, network, mobile devices and IoT)
- Incident Response
- Ability to research and characterize security threats including defining appropriate countermeasures
- Virtual infrastructure and hypervisors
- Experience with common security controls including firewalls, proxies, IDS/IPS, Web Application Firewalls
Job Function Function Breakdown:
- 65% Operational support for SEI customers
- 10% Perform applied research in emerging areas of digital forensics
- 15% Deliver technical and management training to customers
- 5% Mentor, guide and interact with team and other staff
- 5% Contribute to the research and technical agendas of the FOI
100% Total Effort
Our benefits philosophy encompasses three driving priorities: Choice, Control, and Well-being. Learn more at https://www.cmu.edu/jobs/benefits-at-a-glance/ . You can join an institution and inspire innovations that change the world.
Carnegie Mellon University is a welcoming workplace that considers applicants for employment without regard to, and does not discriminate on the basis of, gender, race, protected veteran status, disability, or any other legally protected status.