Why Work at The Center for Applied Cybersecurity Research (CACR)?
CACR has a steady stream of new research and operational projects that provide ample opportunities to its staff for learning new areas and taking on new roles.
CACR is the lead for the National Science Foundation Cybersecurity Center of Excellence, and the NSF-Funded ResearchSOC, which bring cybersecurity expertise to open science, and give our analysts the opportunity to work with everything from high-speed networking, to aging and complex controls networks, to sensors under the ocean or under the Antarctic ice.
Reputation for Success
Founded in 2003, CACR has 18 years of success within IU and with securing research and operational funding from NSF, DOE, DOD, private sector firms. Through these and other projects, we are able to have real-world impact that reaches as far as the field of information security.
Professional development: CACR staff are supported in growing their professional and subject matter skills, and professional networks, with new opportunities constantly emerging through new projects. Each team receives a professional development budget to back up that commitment with both time and dollars: for training, conference attendance, and other learning resources. All of our current managers were promoted from within CACR.
An Amazing Team
CACR treats cybersecurity as a holistic challenge with technical, business, legal, and human factors best addressed with diverse perspectives and skills. CACR staff learn about and tackle cybersecurity problems in interdisciplinary teams, running the gamut from various low-level technical specialties, to high-level strategy, including law and policy.
Full time staff enjoy IU's exceptional benefits including generous retirement contributions and paid time off. For more on IU's benefits, click here.
CACR is located on the east side of IU Bloomington's campus, a thriving and diverse cultural, economic, and technological hub.
Our on-site staff enjoy flexible work schedules with hybrid work schedules available. Fully remote work may be available based on candidate seniority and location.
There is no one typical week at CACR; our projects each have different needs, and we encourage analysts to play to their strengths. One analyst's week might be split between working to integrate a facility's data feeds into the ResearchSOC's monitoring and analysis, understanding a newly-announced software vulnerability's impact on high-throughput computing in order to write an announcement for Open Science Grid security contacts, sitting in on meetings with a new scientific cyberinfrastructure project in order to advise them on security in the design phase, and working with the Navy to train personnel on a new security assessment program. Another analyst, or another week, might bring aging software up to speed with modern development tools and processes (revision control, static code analysis, testing, continuous integration), respond to a security incident on a supported project, run a security exercise for another organization we support, and give a talk at an information security conference.
Performs ongoing experienced analysis and monitoring of technology environments to identify security exposures and potential threats.
Assesses and determines level of risk in order to provide threat information, as well as to advise and/or recommend protections and solutions, to security leadership and department decision-makers.
Documents information security analysis efforts.
Researches and stays abreast of current higher education security environment and trends; stays up-to-date on security analysis and monitoring best practices, tools, and approaches.
Responsible for communication, awareness and training efforts for faculty, staff and student population through the creation of informational bulletins, best practices.
Works closely with security engineers to ensure exposures and risks are avoided and/or addressed.
Contributes to incident response investigations and assists with disaster recovery and business continuity efforts.
CACR Security Analysts work with research and development organizations across industries to secure developing technologies, scientific cyberinfrastructure, and life-critical technology applications.
Analysts work on complimentary teams: specialists in law/policy, systems administration, software security, networking, social engineering, and more collaborate to enable security for our projects, especially when novel technologies present themselves.
This position is focused on the needs of our ResearchSOC and Virtual Cybersecurity Services clients. Expect to work with clients' burgeoning cybersecurity programs to adopt robust monitoring, vulnerability management, security exercise, and other practices, and to serve on cybersecurity teams at NSF Major Facilities, small academic institutions, and more.
Bachelor's degree (preferably in computer science or a related field).
2 years of information security or related experience.
Networking, systems administration (Linux/UNIX focused), or software development background.
Combinations of related education and experience may be considered.
Proficient communication skills.
Maintains a high degree of professionalism.
Demonstrated time management and priority setting skills.
Demonstrates a high commitment to quality.
Possesses flexibility to work in a fast paced, dynamic environment.
Seeks to acquire knowledge in area of specialty.
Highly thorough and dependable.
Demonstrates a high level of accuracy, even under pressure.
Demonstrated in-depth knowledge of Microsoft Windows or Unix-like operating systems.
Attention to detail in communicating technical issues and implementing solutions.
Mental discipline in conducting lengthy investigations.
Working Conditions / Demands
This role requires the ability to effectively communicate and to operate a computer and other standard office productivity equipment. The position involves sedentary work as well as periods of time moving around an office environment and the campus. The person in this role must be able to perform the essential functions with or without an accommodation.
This position has the potential for a remote work arrangement.
Due to the COVID-19 pandemic, there may be differences in the working conditions as advertised in our standard job postings (e.g., the ability to travel from one campus to another, etc.). If you are invited for an interview, please discuss your questions or concerns regarding the working conditions at that time.
This posting is scheduled to close at 11:59 pm EST on the advertised Close Date. This posting may be closed at any time at the discretion of the University, but will remain open for a minimum of 5 business days. To guarantee full consideration, please submit your application within 5 business days of the Posted Date.
If you wish to include a cover letter, you may include it with your resume when uploading attachments.
New employees will be provided with information regarding Indiana University's COVID-19 vaccine policy, which includes the opportunity to request an exemption. To learn more, view our COVID-19 vaccine information page .
Equal Employment Opportunity
Indiana University is an equal employment and affirmative action employer and a provider of ADA services. All qualified applicants will receive consideration for employment without regard to age, ethnicity, color, race, religion, sex, sexual orientation, gender identity or expression, genetic information, marital status, national origin, disability status or protected veteran status. Indiana University does not discriminate on the basis of sex in its educational programs and activities, including employment and admission, as required by Title IX. Questions or complaints regarding Title IX may be referred to the U.S. Department of Education Office for Civil Rights or the university Title IX Coordinator. See Indiana University's Notice of Non-Discrimination here which includes contact information .
Campus Safety and Security
The Annual Security and Fire Safety Report, containing policy statements, crime and fire statistics for all Indiana University campuses, is available online . You may also request a physical copy by emailing IU Public Safety at firstname.lastname@example.org or by visiting IUPD.
About Indiana University Purdue University Indianpolis - IUPUI
Founded in 1820, Indiana University is the state’s public university system, comprised of two core campuses—IU-Bloomington and IUPUI—and six regional campuses located throughout the state. Combined, the total student population is more than 114,000 undergraduate, graduate and professional school students. IU is one of the largest employers in the state, with over 20,000 faculty and staff. Indiana University is an equal employment and affirmative action employer and a provider of ADA services. Diversity and inclusion remains a core commitment to IU’s mission to cultivate an educational environment that supports equal access, participation and representation on all of its campuses and that provides educational and career opportunities for all.