What We Do: The CMU/SEI Forensic Operations and Investigations team is a cutting edge analytical resource focusing on critical U.S. Government (USG) needs. For the past 10 years, we have provided analytical and operational support on high-profile investigations including numerous activities both nationally and internationally. Through this work the FOI can see the current limitations of digital analysis and incident response in the field first hand. We combine our applied research with the unique talents, operational experience, research capabilities, and vast knowledge base to develop new tools and methods to address cyber security limitations and critical gap areas.
Are you creative, curious, energetic, collaborative, technology-focused, and hard-working?
Position Summary: In this role you will serve in a multi-disciplinary position providing ongoing support to federal law enforcement, defense agencies, and the national intelligence community. You will provide support to on-going operations in the areas of incident response and investigation, full-spectrum digital analysis and applied research in emerging areas of cybercrime. You will build interdisciplinary approaches to problem solving, and demonstrate strong presentation and instructional skills. You will also interact with clients and staff of all levels in a highly professional and competent manner.
- BS Computer Science, Information Security or other related discipline and a minimum of three (3) years of related experience
- MS in the same fields with one or more (1+) year’s relevant experience in analysis of digital artifacts or incident response
- Willingness to travel to various locations to support the SEI's overall mission. This includes within the SEI and CMU community, sponsor sites, conferences, and offsite meetings on occasion. Moderate travel (25%)
- You will be subject to a background investigation and need to be eligible to obtain and maintain a Department of Defense security clearance
- Ability to pay close attention to detail, meet deadlines, work under stress, and communicate effectively.
- Design, develop, pilot and deliver products. Required to accurately represent FOI and its technical work in interactions with customers, sponsors, and the public.
- Research and characterize security threats including defining appropriate countermeasures.
- Interact with clients and staff of all levels in a highly professional and competent manner.
- Act independently using CMU and SEI defined policies, practices, and procedures.
Knowledge, Skills, and Abilities:
- Penetration Testing
- Server/network design and implementation
- Knowledge of common vulnerabilities, exploits and mitigations
- Digital artifact analysis (host, network, mobile devices and IoT)
- Incident Response
- Ability to research and characterize security threats including defining appropriate countermeasures
- Hardware or software reverse engineering for either vulnerability discovery/assessment or malware analysis
- Virtual infrastructure and hypervisors
- Experience with common security controls including firewalls, proxies, IDS/IPS, Web Application Firewalls
- Technical knowledge of fundamental Internet protocols, services, and technologies to include HTTP(S), TLS, DNS, SMTP, TCP/IP, ICMP, JSON, REST
Job Function Breakdown:
70% Operational support for SEI customers.
10% Perform applied research in emerging areas of digital forensics.
15% Deliver technical and management training to customers.
5% Contribute to the research and technical agendas of the FOI.
100% Total Effort
Our benefits philosophy encompasses three driving priorities: Choice, Control, and Well-being. Learn more at https://www.cmu.edu/jobs/benefits-at-a-glance/ . You can join an institution and inspire innovations that change the world.
Carnegie Mellon University is a welcoming workplace that considers applicants for employment without regard to, and does not discriminate on the basis of, gender, race, protected veteran status, disability, or any other legally protected status.