The SEI helps advance software engineering principles and practices and serves as a national resource in software engineering, computer security, and process improvement. The SEI works closely with defense and government organizations, industry, and academia to continually improve software-intensive systems. Our core purpose is to help organizations improve software engineering capabilities and develop or acquire the right software, defect free, within budget and on time, every time.
At the SEI, we are on the search for an additional member of the IT Network and Infrastructure Engineering Group to join our growing team. Are you looking for an organization with world renowned technical specialists that is backed from an extraordinary university? Then this could be the place for you! In this position, you will be responsible for the administration of enterprise information security systems and the analysis, auditing, investigation, and follow-up of the data generated by those systems. Information security systems in the purview of this position include Intrusion Detection Systems (IDS), Endpoint Detection and Response, netflow systems, DNS monitoring, email security appliances, vulnerability and web application scanning, and log/event correlation systems. This position will also aid in the development of security practices and participate in the overall information security mission of the organization, for example advising other administrators during system deployments as to accurate security considerations. This position will also collaborate closely with research programs within the SEI that perform ground breaking research on information security topics to integrate their research into practical enterprise-scale applications.
Bachelor degree in Computer Science, Information Science, Information Technology with at least (3) three years of experience. Candidates with a degree in other technical fields (e.g., engineering) and/or years of meaningful experience as described above will be considered as well.
Daily foot travel between buildings in and around the CMU campus. Infrequent business travel required, usually to the Washington, DC area (approx. 4 times/year).
Weekends and after-hour work as necessary, especially during security incidents and emergencies.
You will be subject to a background check and will need to acquire and maintain a Department of Defense security clearance.
You will be responsible for the administration of tools, systems, and appliances which support the information security function.
You will operate IDS and EDR solutions, manage rulesets, indicators, and threat intelligence which support the information security function.
Perform forensic tasks associated with investigations. In addition to network and host forensics, this includes documentation, communications with partners, and engaging with outside organizations where appropriate.
Improve the enterprise security posture through process improvement, policy, automation, and the continuous evolution of capabilities.
Determine the efficiency of security controls, identify risks and gaps, and take initiative to make improvements.
Involvement with PKI including issuing certificates, providing guidance to stakeholders, contribute to policy and strategy, etc.
Knowledge, Skills and Abilities:
Proven troubleshooting and customer service skills and an ability to work as part of a team.
Computer hardware installation and configuration required on a periodic basis, sometimes involving transport of heavy objects.
Experience in at least some the following information security areas, performed as a primary job task: security-related network flow capture and analysis, Snort/Sourcefire IDS administration with signature development, or forensic investigation and analysis of suspect systems using network-related security indicators as part of the investigation.
Security-related certification such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), SANS GIAC, CompTIA Security+, etc.
Experience with SIEM tools such as Splunk, QRadar, AcrSight.
Operational experience in systems administration or production enterprise systems.
Some experience with general network administration and administration of services in a Linux-based environment is required.
Carnegie Mellon University is an Equal Opportunity Employer/Disability/Veteran.
Job Function: Information Technology
Primary Location: United States-Pennsylvania-Pittsburgh
Time Type: Full Time
Minimum Education Level: Bachelor's Degree or equivalent
Internal Number: 2015061
About Carnegie Mellon University
Carnegie Mellon (www.cmu.edu) is a private, internationally ranked research university with programs in areas ranging from science, technology and business, to public policy, the humanities and the arts. More than 12,000 students in the university’s seven schools and colleges benefit from a small student-to-faculty ratio and an education characterized by its focus on creating and implementing solutions for real problems, interdisciplinary collaboration and innovation. A global university, Carnegie Mellon’s main campus in the United States is in Pittsburgh, Pa. It has campuses in California’s Silicon Valley and Qatar, and programs in Africa, Asia, Australia, Europe and Mexico.