Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Careers

Pursue your passion and work alongside world-recognized leaders in the field of software engineering. Our staff works with the highest levels of U.S. government and industry to secure the nation's critical infrastructure, improve mission-critical systems, and advance the state of the art.

Interested in working with us? To browse employment opportunities and apply for a position at the SEI, see our list of open positions below or search for positions. You can also visit the Carnegie Mellon site to learn about benefits for eligible employees, search for open positions that match your interests, and create a Job Agent that will notify you by e-mail when jobs that meet your criteria become available.

Resumes from recruiting firms will not be accepted.

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

SEI Job Listings

The position you are looking for is not available. Please take a look at our current open positions listed below.

Select Job Location

Sort by Date Posted Title Location

23 Nov
2016
Cyber Security Engineer - Penetration Tester - 2004519
Pittsburgh, PA or Arlington, VA

This position can be located in Pittsburgh, PA or Arlington, VA.

Position Summary:  The CERT Division is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Division engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.

The individual in this position will work as a member of the Cybersecurity Assurance (CA) Team within the Networked Systems Survivability Program. The CA team develops solutions (in the form of frameworks, models, tools, policies, practices, technical guidance, and training) that allow organizations to assess, analyze, and manage organizational, operational, and technical risks to mission-critical assets, processes, systems, and infrastructures.

 

Minimum Qualifications and Requirements:

Education/Training: BS in Computer Science (or other technical field) with eight (8) years’ experience, or equivalent combination of training and experience.

Certifications:  Certified Information Systems Security Professional (CISSP), Offensive Security Certified Professional (OSCP), and/or Certified Ethical Hacker (CEH)

Experience: Professional experience as a penetration tester, system or network administrator, information systems auditor, software engineer, information systems analyst, or similarly technical occupation.

Experience with and applied knowledge in:

  • Common penetration testing methodologies and tactics (PTES, OWASP testing guide, etc.)

  • Popular penetration testing toolsets (Metasploit framework, vulnerability scanners, web application scanners, Nmap)

  • Knowledge of common networking protocols and services

  • Basic knowledge of exploit development and application fuzzing

  • Windows and Linux Operating System environments, networking devices, and common database platforms

  • Cyber security, survivability, and resilience concepts and issues

  • Software and systems engineering

  • Building and maintaining customer relationships

  • Data analytics and quantitative measures

  • Strategic Planning and requirements definition

  • Process improvement

  • Program planning, budgeting, and management

Skills/Abilities: Must exhibit the following skills and abilities:

  • Understanding of information technology, penetration testing, and telecommunications systems

  • Working knowledge of network interoperability, cyber security, and survivability issues, including cyber security best practices and standards

  • Working knowledge of DHS critical infrastructure sectors and related security and resilience issues

  • Working knowledge of the DoD and Agency resilience needs and cyber security roadmaps

  • Development and delivery of information and infrastructure security risk and vulnerability evaluations

  • Ability to conduct analytical studies and investigations

  • Reasoning and problem-solving skills

  • Ability to work independently with limited supervision

  • Ability to interact effectively with diverse constituencies internally and externally

  • Ability to work well as a member of a cooperative team; ability to work in a matrix organizational structure

  • Ability to recognize and deal appropriately with confidential and sensitive information

  • Ability to implement project plans, monitor project budgets, and identify and mitigate project risks

  • Leadership and mentoring skills

  • Excellent written and oral communication skills; ability to contribute to technical research white papers and reports; ability to prepare papers and deliver presentations to technical and non-technical audiences; ability to contribute to customer technical exchanges and marketing presentations

  • Ability to work on customer sites with high-ranking members of the Federal Government and US

  • Participation in professional society activities, particularly IEEE and ACM 

Physical/Mobility: Primarily sedentary in an office setting with some mobility. Ability to travel frequently to various locations within the SEI and CMU community, customer sites, conferences, and offsite meetings.

Environmental Conditions: Close contact with computer for extended periods of time.

Mental: Strong interest in the human, managerial, and technical aspects of cyber security is critical for this position as are these abilities:

  • Take or share leadership role in technical projects

  • Work meticulously with careful attention to detail

  • Meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities

  • Deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff

  • Ability to understand the direction, and goals of an effort; ability to develop and communicate innovative ideas; ability to demonstrate initiative and to quickly learn new procedures, techniques, approaches, etc.

Other: Must be able to work independently and travel as needed; this position requires frequent solo travel by car to customer sites in remote areas. Strong interest in cyber security and critical infrastructure protection analysis basis research, applied research, and development.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information. Candidates must be able to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: MS in Computer Science (or related technical field) with five (5) years’ experience or equivalent experience.

Certifications:  Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN), Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), and Certified Information Systems Auditor (CISA),

Experience: 

  • Expert proficiency with a variety of technical vulnerability analysis tools
  • Advanced penetration testing experience
  • Software development experience and advanced exploit development

Skills/Abilities: Strong presentation/platform skills and excellent writing skills.

 

Accountability: The individual will implement and participate in the planning and execution of projects leading to technical results. The individual will also contribute to project, department, or program objectives and planning document development. The individual will keep in confidence sensitive information such as customer processes, risks, vulnerabilities, and internal work products, whether for eventual public or private distribution.

Direction: The individual is expected to act independently using CMU, SEI, and NSS defined policies, practices, and procedures – within the scope of assigned work.

Decisions: The individual must make sound technical decisions with little supervision. The individual must accurately represent the program in interactions with customers, sponsors, and the public. The individual is expected to perform analysis on-site at customer locations and immediately assess potential vulnerabilities requiring further investigation. 

Supervisory Responsibilities: This position could involve the training and oversight of the work of other staff members, graduate students, resident affiliates, visiting scientists, and independent contractors. Depending on research project or customer work plan, position may involve task leadership.

 

Job Functions or Responsibilities:

60% Participate in risk and vulnerability assessments operating in a technical leadership role; analyze assessment data to identify risk areas and propose mitigation alternatives.

15% Participate in research into innovative and cutting-edge tools, techniques, and methods to improve cyber security and penetration testing; transition research into applied knowledge for customers.

10% Deliver courses on offensive security tools and tactics and penetration testing management.

5% Contribute to conferences and meetings; participate in marketing calls and technical exchanges with clients; give talks and lectures as appropriate; participate on working groups for subjects of interest.

5% Contribute to and review the literature in cyber security, resilience, and software engineering.

5% Provide assistance and input to other teams and projects within the SEI.                     

100% Total Effort

 

Organizational Chart:  Director, CERT Division < Technical Director, Cyber Security Solutions Directorate < Deputy Director, Cyber Security Solutions Directorate < Technical Manager, Cybersecurity Assurance Team < Cyber Security Engineer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

 

21 Nov
2016
Machine Learning Research Scientist - 2004504
Pittsburgh, PA or Arlington, VA

Position SummaryJoin us at the Software Engineering Institute at Carnegie Mellon University, home of CERT. Our team uses statistics and machine learning to influence our national cybersecurity strategy and protect our nation against cyber-related threats. A sampling of our current projects include:

 

  • Predicting cyber attacks using cybersecurity incident data
  • Engineering efficient data intake, processing, and reporting streams for a variety of intelligence-related data
  • Developing metrics and experimental designs for large-scale cybersecurity research programs
  • Classifying malware for our malware reverse engineers
  • Creating automated netflow classification tools for our network monitoring team

 

As part of your work, you will also have a chance to co-author research proposals, execute studies, and present findings to DoD sponsors and at academic conferences.

 

Minimum Qualifications and Requirements:

Education/Training: Bachelor of Science in CS, Math, Machine Learning, Stats, or related discipline, with relevant internship experience. Relevant professional work experience in software engineering or security a plus. Core competencies include fluency in statistical theory and statistical computing (Python-pandas, R, SQL, etc), superior teamwork skills, and exemplary communication skills.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Physical Mobility: Normally sedentary position with some mobility; able to travel to various SEI locations; may require some bending, stretching, pushing as well as lifting several reams of paper; dexterity to operate formal document assembly equipment.

Environmental Conditions: Usual office setting; close contact with CRT for long periods of time.

Mental: Ability to handle multiple tasks simultaneously; ability to successful complete task under inflexible time and quality pressure; ability to remain calm and composed when dealing with difficult people, situations, and frequent interruptions.

 

 Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

 

 

 

 

18 Nov
2016
Cyber Security Engineer - Insider Threat - 2004491
Pittsburgh, PA or Arlington, VA

Position Summary: The CERT Division is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Division engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.

The individual in this position will work as a member of the Enterprise Threat and Vulnerability Management (ETVM) team, which focuses on assisting organizations in improving their insider threat mitigation and incident management practices and developing capabilities for preventing, detecting, deterring, and responding to evolving insider threats. ETVM team members are domain experts in insider threat and incident response, and team capabilities include threat analysis and modeling; development of security metrics and assessment and evaluation methodologies; and creation and delivery of controls, training, courses, and workshops.  

The individual in this position will be a part of the Technical Solutions team within ETVM. The Technical Solutions Team is responsible for the creation, development, and management of novel cybersecurity solutions that support customer driven operational and research missions. The Technical Solutions Team interacts with US Government departments and agencies, industry representatives, contractors, academia and others to identify gaps in cybersecurity tools, techniques, and procedures; create prototype capabilities to fill the gaps, and transition the prototype solutions to customers and partner organizations. The team frequently communicates their work to the community by publishing technical reports and white papers, and presenting at conferences, symposia, and other working groups.

 

Minimum Qualifications and Requirements:

Education/Training: BS in computer science, software engineering, information systems, or a related technical field with eight (8) years of experience or equivalent, or MS in computer science, software engineering, information systems, or a related technical field with five (5) years of experience or equivalent.

Experience: 

  • professional experience in software engineering or cyber security.
  • experience applying the engineering process to solve complex real-world challenges. 
  • experience using analytical skills and an ability to interpret established standards and guidelines to solve problems.

Skills/Abilities:

  • system administration and network administration skills and familiarity with Windows, UNIX, LINUX operating systems.
  • software development in at least two of the following languages: C, C++, Java, Perl, and Python.
  • knowledge of core Internet protocols (TCP/IP, UDP, ICMP, DNS, FTP, SMTP, HTTP, SNMP, etc.).
  • knowledge of modern version control systems and integrated development environments.
  • understanding of network design and implementation at LAN and WAN levels.
  • broad understanding and application of multi-tiered enterprise client/server architectures, design, implementation and security.
  • software / systems development lifecycle, QA, testing, build process, revision control, and change management practices.
  • proven ability to innovate, develop, implement, and effectively document complex technical systems and approaches.
  • proven ability to integrate multiple technologies, standards and data sources into a consolidated solution.
  • knowledge of common cyber attack methodologies; common types of security vulnerabilities; basic computer security forensics.
  • strong oral and written communications skills (e.g., technical writing, user guide development, requirements analysis) and ability to interact effectively with technical and non-technical audiences, as well as present in front of small and large groups; participate in external customer and sponsor meetings.
  • ability to travel to various locations within the SEI and CMU community, customer sites, and offsite meetings with weekly/monthly frequency to travel on overnight and on-site assignments; ability to work in varied and diverse situations requiring analytical, interpretative, evaluative and constructive thinking;
  • manage workload and priorities on multiple scheduled assessments;
  • able to function independently or in teams depending on the project;
  • work under pressure; deal with stress;
  • deal with challenging individuals while maintaining composure;
  • ability to exercise tact and discretion when handling highly sensitive and confidential issues;
  • maintain confidentiality while working with highly confidential and sensitive matters.
  • handle sensitive data according to project and/or USG data handling procedures.
  • ability to interpret and communicate information about government regulations and university policies.
  • quantitative and qualitative analytical skills.
  • ability to trouble shoot problems proactively and to answer questions and handle issues as they arise.
  • effective time management skills; and strong problem solving skills.

Environmental Conditions:  close contact with computer monitor for extended periods of time.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training:  MS in Computer Science with five (5) years applicable experience; Current Associate Certified Information System Security Profession (CISSP), IEEE Professional Software Engineering Master Certification, or similar certification is desired.

Experience: 

  • experience with software development and/or system administration in large-scale, distributed computing environments.
  • experience developing materials for senior leadership in government or industry.
  • experience interfacing with the DOD, US federal civilian government, intelligence community, or law enforcement.
  • experience working in a classified environment.

Skills/Abilities: 

  • data mining.
  • machine learning. 
  • text and natural language processing.
  • proven skills working in a team environment on collaborative projects in US government, critical infrastructure sectors involving network, system or data security.

 

Accountability: The individual will be accountable for meeting established deadlines and project milestones. The individual will also be accountable for managing sensitive, and possibly classified, customer information.

 

Direction: The individual is expected to act in accordance with direct supervision from management and senior staff, as well as follow CMU, SEI, and CERT defined policies, practices, and procedures, and to adhere to any additional sponsor-specified requirements related to the projects involved.

Decisions:The individual must make sound decisions, and demonstrate a commitment to those decisions. The individual must also be able to escalate out-of-scope problems to more experienced team members. The individual must accurately represent the program in interactions with external customers, sponsors, and the public.

Supervisory Responsibilities: The individual may be responsible for managing student interns.

 

Job Functions or Responsibilities:

60%     Develop, deploy, and transition technical solutions for insider threat prevention, detection, and response.

15%     Participate in research into cutting-edge strategies for insider threat data collection and analysis techniques.

10%     Design and develop training materials for insider threat program practitioners.

10%     Contribute to conferences and meetings; participate in marketing calls and technical exchanges with clients; give talks and lectures as appropriate; participate on working groups for subjects of interest.

5%       Provide assistance and input to other teams and projects within the SEI.

100% TOTAL EFFORT

 

Organizational Chart: CERT Program, Director < Risk and Resilience Directorate, Technical Director < Enterprise Threat & Vulnerability Management, Technical Manager < Technical Solutions, Technical Team Lead < Associate Cyber Security Engineer.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

18 Nov
2016
Machine Learning Research Scientist - 2004488
Pittsburgh, PA or Arlington, VA

Position Summary: Work with elite cybersecurity experts and university faculty to build new data mining technologies that will influence the national strategy against cyber attacks in the coming decades. Projects may include developing metrics and experimental designs for large-scale cybersecurity research programs, researching human-in-the-loop machine learning, and analyzing cybersecurity incident data. You will co-author research proposals, execute studies, and present findings to DoD sponsors and academic conferences. Consider applying for this position if you are a proven computer science expert with a firm grasp of security principles and statistical theory.

 

Minimum Qualifications and Requirements:

Education/Training: Background in machine learning, security, statistics, or related quantitative field with a Bachelor’s degree and three (3) years of experience; Master’s degree and one (1) year of experience.

Skills/Abilities: An ideal candidate will have expertise in the following areas. Experience with specific methods is less important than evidence that you can learn.

  • Ability to perform computer science research related to cybersecurity
  • Basic grasp of statistical models
  • Comfortable working in the Unix command line
  • Demonstrated ability to work in a multi-disciplinary environment
  • Expert communication

Physical / Mobility:  Mostly sedentary, with occasional meetings in nearby buildings.

Environmental Conditions:  Close contact with computer for extended periods of time.

Mental:  Meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities. Deal collaboratively, diplomatically, and successfully with customers and colleagues.

Other:  Candidates will undergo a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Master’s degree and one (1) year of experience.

Experience: Experience in computer science or machine learning.

Skills/Abilities:

  • Expertise implementing machine learning techniques (e.g., K-means, SVM, neural networks)
  • Familiar with at least one mathematical/statistical programming package (e.g., python numpy/scipy/pandas, R, MATLAB, etc.)
  • Strong software engineering skills
  • Cybersecurity or privacy experience
  • Experience supporting test and evaluation for large-scale government research programs is a plus

Decisions:  The individual must be able to make decisions about the proper scope of assigned research.  This includes being able to discern applicable paper topics, making decisions regarding experimental design and methods, and exercising strong time management skills.  The individual must accurately represent the program in interactions with customers, sponsors, and the public.

Supervisory Responsibilities:  This position may involve the training and supervision of graduate students and junior employees.

 

Job Functions or Responsibilities:

40%  Data analysis & data analysis tool development.

25%  Other types of research support including designing experiments and metrics.

15%  Participating in the research community, including attending and presenting at conferences, and reading and writing academic papers.

10%  Writing proposals and reports.                 

10%  Consulting and project planning with other groups in the SEI.

100% Total Effort

Organizational Chart:  CERT Program, Director > CERT Program, Technical Director for Cyber Security Foundations > Science of Cyber Security Research Manager > Machine Learning Research Scientist

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

14 Nov
2016
Machine Learning Research Scientist - 2004458
Pittsburgh, PA or Arlington, VA

Position Summary: Work with elite cybersecurity experts and university faculty to build new data mining technologies that will influence the national strategy against cyber attacks in the coming decades. Projects may include developing metrics and experimental designs for large-scale cybersecurity research programs, researching human-in-the-loop machine learning, and analyzing cybersecurity incident data. You will co-author research proposals, execute studies, and present findings to DoD sponsors and academic conferences. Consider applying for this position if you are a proven computer science expert with a firm grasp of security principles and statistical theory.

 

Minimum Qualifications and Requirements:

Education/Training: Background in machine learning, security, statistics, or related quantitative field with a Bachelor’s degree and eight (8) years of experience; Master’s degree and five (5) years of experience; PhD and two (2) years of experience; or equivalent combination of training and experience.

Experience: Two plus (2+) years of experience.

Skills/Abilities: An ideal candidate will have expertise in the following areas. Experience with specific methods is less important than evidence that you can learn.

  • Ability to perform computer science research related to cybersecurity
  • Basic grasp of statistical models
  • Comfortable working in the Unix command line
  • Demonstrated ability to work in a multi-disciplinary environment
  • Expert communication

Physical / Mobility:  Mostly sedentary, with occasional meetings in nearby buildings.

Environmental Conditions:  Close contact with computer for extended periods of time.

Mental:  Meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities. Deal collaboratively, diplomatically, and successfully with customers and colleagues.

Other:  Candidates will undergo a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: PhD in machine learning, computer science, statistics, or other related quantitative field.

Experience: Two plus (2+) years of experience in computer science or machine learning.

Skills/Abilities:

  • Expertise implementing machine learning techniques (e.g., K-means, SVM, neural networks)
  • Familiar with at least one mathematical/statistical programming package (e.g., python numpy/scipy/pandas, R, MATLAB, etc.)
  • Strong software engineering skills
  • Cybersecurity or privacy experience
  • Experience supporting test and evaluation for large-scale government research programs is a plus

 

Decisions:  The individual must be able to make decisions about the proper scope of assigned research.  This includes being able to discern applicable paper topics, making decisions regarding experimental design and methods, and exercising strong time management skills.  The individual must accurately represent the program in interactions with customers, sponsors, and the public.

Supervisory Responsibilities:  This position may involve the training and supervision of graduate students and junior employees.

 

Job Functions or Responsibilities:

40%  Data analysis & data analysis tool development.

25%  Other types of research support including designing experiments and metrics.

15%  Participating in the research community, including attending and presenting at conferences, and reading and writing academic papers.

10%  Writing proposals and reports.                 

10%  Consulting and project planning with other groups in the SEI.

100% Total Effort

 

Organizational Chart:  CERT Program, Director > CERT Program, Technical Director for Cyber Security Foundations > Science of Cyber Security Research Manager > Applied Statistician / Data Scientist

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

14 Nov
2016
Vulnerability Analyst - 2004457
REMOTE - Linthicum, MD

Position Summary:  The Vulnerability Analysis Team, within the CERT Program’s CERT Coordination Center (CERT/CC), is a group of internet security experts that serve as a trusted and neutral coordination body, dedicated to remediating software vulnerabilities and providing practical guidance for customers, system administrators, security researchers, and the global internet security community to reduce the amount of time software systems are vulnerable.

The primary roles of the Vulnerability Analysis Team include:

  • Software vulnerability analysis including black box testing, source code examination, and attack reproduction
  • Customer, vendor, and reporter correspondence
  • Publication of technical documents and remediation information
  • Tool specification and development

The individual in this position must be self-motivated and will have the opportunity to serve as a strong contributor and technical leader in the analysis, coordination, and remediation of software vulnerabilities.

 

 

Minimum Qualifications and Requirements:

Education: Bachelor of Science in Computer Science, Information Science, Information Management with three (3) years applicable experience as a system or network administrator, software developer, database administrator or similarly technical occupation; or Master of Science in Computer Science, Information Science or Information or equivalent with one year applicable experience. We will consider other educational backgrounds in a technical discipline with experience as described.

Experience: Candidates should have experience working with the government community; at least three years of experience in a Windows and Unix/Linux environment and be able to demonstrate substantial knowledge of at least four of the following:

  • various internet protocols (e.g., TCP/IP, DNS, BGP, SMTP, HTTP) computer system and Internet security issues various security technologies (e.g., encryption, firewalls, and anti-virus products) software runtime analysis, debugging, and security testing techniques
  • security auditing practices
  • underlying software defects that routinely result in security vulnerabilities (e.g., input validation errors)
  • understanding of intruder techniques and software exploitation methods
  • system, database, and/or network administration
  • operational details of multiple operating systems
  • cryptographic principles and common cryptographic protocols
  • one or more programming languages (e.g., C/C++, Perl, or Java)
  • vulnerability management concepts and tools

Skills/Abilities: Successful candidates will:

  • have an interest in and have extensive knowledge of network and computer security issues
  • have the ability to analyze software to discover vulnerabilities
  • be able to develop and explain technical decisions
  • be able to separate fact from opinion and speculation
  • have excellent work prioritization, planning, and organizational skills
  • interact effectively with vulnerability reporters, system and network administrators, vendors, experts, Internet users, sponsors, policy makers, news reporters, managers and staff (i.e., stakeholders in the vulnerability disclosure process)
  • be able to work with closely coordinated teams during emergencies
  • have excellent analytical, reasoning, and creative problem solving skills
  • have excellent written and oral communication skills
  • recognize and deal appropriately with confidential and sensitive information
  • be able to work meticulously with careful attention to detail
  • be able to collaborate effectively and work closely within a coordinated team environment
  • be able to quickly learn new procedures, techniques, and approaches
  • maintain composure while dealing with difficult people
  • communicate and work effectively under normal and stressful situations
  • meet inflexible deadlines
  • possess strong leadership and mentoring abilities
  • be motivated to tackle challenging problems

Mobility: Primarily sedentary, long periods of sitting. Ability to travel to various locations within the SEI and CMU community, customer sites, conferences, and offsite meetings with some frequency.

Environmental Conditions: Normal office conditions; however close contact with computer for prolonged periods of time.

Mental: The ability to work well under pressure of deadlines

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Master of Science in Computer Science, Information Science or Information or equivalent with one year applicable experience; or Ph.D in Computer Science, Information Science or Information. We will consider other educational backgrounds in a technical discipline with experience as described.

Experience: Ideal candidates will have substantial experience in two or more of the following areas:

  • industrial/process control systems
  • web application development
  • computer and network architecture
  • reverse engineering
  • software development
  • computer and network architecture
  • network security and survivability issues, to include knowledge of and experience with information security concepts, information security best practices and bodies of knowledge, and computer security incident response management

 

Accountability: Develop and implement project technical results.  Contribute to program objectives and plans development.  Keep in confidence sensitive information such as security, vulnerability, and site-specific information.

Direction: Regular interaction with supervisor.  Expected to act in accordance with SEI and CERT program procedures and policies, such as those involving product development, team interaction, and confidentiality.

Decisions: Must accurately represent the program in interactions with customers, sponsors, and the public.  Participate in conferences and workshops where security-related issues are discussed as required.

Supervisory Responsibilities: Contributes to hiring decisions of program staff; appraises performance of support staff.

 

Job Functions or Responsibilities:

 

40%     Analyze vulnerability reports using tools, processes, and techniques designed to provide fact-based analysis to other stakeholders in the vulnerability disclosure process.

20%     Research, specify, and develop new tools, processes and techniques to improve vulnerability analysis methodology and to support interaction with stakeholders.

10%     Correspond with software vendors, vulnerability researchers, sponsors, and other stakeholders.

10%     Communicate analytical results in various technical communities to promote collaboration and shared understanding of vulnerability preconditions and impacts.

5%       Write and publish short to medium-length documents describing vulnerability mitigation strategies and root-cause analyses.

5%       Represent CERT in other forums (e.g., conferences, workshops, etc.).

5%       Provide assistance and input to other teams and projects within the SEI.

5%       On call to respond to Internet emergencies (outside of normal business hours).

100%      TOTAL EFFORT

 

Organizational Chart: CERT Program Director < Threat Analysis Technical Director < Vulnerability Analysis Technical Manager < Vulnerability Analyst

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran


                                                                             

 

 

 

09 Nov
2016
Cyber Security Engineer - Exercise Developer - 2004452
Pittsburgh, PA or Arlington, VA

This position has multiple openings and can be located in Pittsburgh, PA, Arlington, VA, or Fort George G. Meade.

Position Summary:  As a member of CERT's Workforce Development program, the candidate will work with other team members in developing cyber-security training exercises and simulations, primarily for US military/government customers. This involves interacting directly with customers, gathering training requirements and objectives, producing and facilitating creative and engaging exercise scenarios, and building supporting physical and virtualized systems and network topologies. As such, the candidate will work regularly with a wide range of software and hardware technologies within CERT labs. The candidate may also assist in developing and teaching cyber security training content to external customers. The candidate will also be involved software and hardware prototype development.  Additionally, the position requires the candidate to have demonstrated and effective leadership/management abilities as he/she may supervise and evaluate full time direct reports as well as the activities of graduate student assistants. The successful candidate must be self-directed, have an interdisciplinary approach to problem solving, and work well communicating technical information to technical and non-technical users. The candidate must also be able to interact with clients and staff of all levels in a highly professional and competent manner.

 

Minimum Qualifications and Requirements:

Education/Training:  Bachelor’s degree in Computer Science, Information Science, or related discipline with three (3) years applicable working experience in information technology, Master’s degree in Computer Science, Information Science, or related discipline with one (1) years of applicable working experience in information technology, or equivalent combination of training or experience.

Experience: Successful candidates must possess "hands-on" experience with Computer/Network Security and I.T. system and network administration. Additionally, he/she must have practical experience with Windows server and desktop platforms and Linux/Unix operating systems. The candidate must have experience in network design and troubleshooting and implementing standard networking protocols. Additionally, demonstrated practical experience working with common commercial and open-source cyber security tools is required. The candidate should have some experience teaching technical content to students, peers, and non-technical individuals and must enjoy doing so.

Skills/Abilities: Candidate must be able to prioritize workload and complete deliverables on time, have good technical problem-solving skills, strong analytical and information organization skills, excellent oral and written communication skills, and strong technical teaching skills. Candidate must be able to multitask and work effectively with multiple project teams and sponsors/customers. Experience with virtualization technologies, particularly VMWare ESX server is highly desired. Programming experience in C, C++, C#, Python, and Java is also highly desirable.

Physical Mobility: Sedentary in an office setting with some mobility, i.e., able to travel to various locations within the SEI and CMU community as well as travel to customer sites.

Environmental Conditions: Close contact with computer for long periods of time.

Mental: Ability to pay close attention to detail, meet deadlines, work under pressure, and communicate effectively.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: BS and MS in Computer Science; training in enterprise security tools (i.e. McAfee ePO/HIPS, ArcSight, etc.)

Licenses: CISSP, Network+, Security+ and/or other industry standard certifications

Experience: US military service in a series of positions involving information technology, cyber security, and management of large scale government networks.

Skills/Abilities: Strong presentation/platform skills and excellent writing skills.

 

Accountability:  The incumbent is accountable for the definition, creation, and maintenance of final deliverables and products and may manage unclassified/classified DoD projects in excess of $3M annually.

Direction:  The incumbent is expected to act independently using CMU and SEI defined policies, practices, and procedures.

Decisions: The incumbent must use good judgment to solve customer and personnel problems and is required to envision, design, develop, pilot, and deliver new capabilities, products, and services.  Candidate will also be required to accurately represent SEI/CERT and its technical work in interactions with customers, sponsors, and the public.

Supervisory Responsibilities:  The incumbent may have at least 2 direct reports as well as up to 15 secondary reports and will be required to provide performance management, career guidance, and take personnel corrective actions as required.

 

Job Functions or Responsibilities:

10%      Design and develop technical documents and instructional materials.

10%      Research, evaluate, develop, install/configure hardware and software including promising new technologies that require examination for cyber security research and development.

10%      Deliver technical and management training to customers.

55%      Mentor, guide and interact with team and other staff.

15%      Contribute to transition planning and strategy.

100% TOTAL EFFORT

 

Organizational Chart: Director, CERT Division < Technical Director, Cyber Security Solutions Directorate < Technical Manager, Cyber Workforce Development Initiative < Cyber Workforce Development Team Lead < Cyber Security Engineer - Exercise Developer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

09 Nov
2016
Talent Acquisition Specialist - 2004451
Pittsburgh, PA

Position Summary: The SEI helps advance software engineering principles and practices and serves as a national resource in software engineering, computer security, and process improvement. The SEI works closely with defense and government organizations, industry, and academia to continually improve software-intensive systems. Our core purpose is to help organizations improve software engineering capabilities and develop or acquire the right software, defect free, within budget and on time, every time.

We’re seeking a dynamic Talent Acquisition Specialist who brings a balance of creativity, focus, and determination to the team. Our team is passionate about delivering a memorable candidate experience at each stage of the process by lending genuine insight into the organization’s values, mission, and challenges. All of this starts with the Talent Acquisition Specialist, as they will have a direct impact on the team, culture, and identity created here at the SEI.

This position will manage selected human resources activities in a fast paced environment including: administrative recruiting, university relations, conference management, internship program management, metric tracking and reporting, and special projects.

 

Minimum Qualifications and Requirements:

Education/Training: Bachelor’s degree or equivalent combination of training and experience.

Experience: One (1) to three (3) years of human resources experience with knowledge of recruiting and university relations.  Experience using PowerPoint, Excel, and other MS Office tools required.  Evidence of experience in a fast-paced environment.

  • Prior experience with a focus for supporting college/university recruiting at both the undergraduate and graduate level
  • Interview and screen candidates, make hiring recommendations to directors, vice presidents and division heads for assigned positions. Managing both the internal and external recruitment process
  • Provide continuous feedback to hiring managers and manage the candidate experience
  • Manage the presentation, selection, offer, negotiation, closing, and administrative components involved in full lifecycle recruiting
  • Deliver and negotiate job offers with candidates, including coordination and explanation of salary packages, benefits, and relocation
  • This position requires the ability to deal effectively with a variety of clients, resolve conflicts, solve problems, and think strategically 
  • Utilize, maintain, and manage the applicant tracking system (ATS)
  • University Relations: develop and maintain relationships with national and campus organizations and universities
  • Act as the process expert with regards to campus recruiting sources (web based, career fairs, on-campus recruiting, etc.)
  • Plan and attend campus career fairs, information sessions, on campus and on site interviews, etc.
  • Implement sourcing strategies to identify talented candidates
  • Review student applications, conduct phone screens and in-person interviews, screen and refer candidates for additional review and provide timely follow-up and correspondence
  • Ensure processes are compliant with local, state and federal employment laws
  • Creation and review of recruitment metrics and their effectiveness

Skills/Abilities:

  • Strong customer service perspective including the ability to interact and negotiate commitments with all levels of management
  • Must be able to develop, organize, and manage special projects; to prioritize work; and to proactively solve problems 
  • Ability to function independently and competently in a team environment
  • Must have the ability to respond quickly and effectively to changing situations, and to balance conflicting priorities
  • Advances skills in Microsoft office suite
  • Strong attention to detail; process oriented
  • Excellent communication skills; verbal and written
  • Ability to work with a variety of candidate and employee information in a confidential manner
  • Flexibility to react quickly to changing business requirements and client needs
  • Ability to work under pressure and meet deadlines while maintaining a high level of professionalism and integrity
  • Must be able to work nights and weekends (if needed), variable schedules as necessary

Physical Mobility: Required to travel to other campus locations, SEI DC office, job fairs, events, conferences, Universities, or to meet with external vendors (about 25%).

Environmental Conditions: Usual office setting and external conditions when traveling.

Mental:  Ability to meet deadlines, work well under pressure, handle multiple activities simultaneously, and maintain a positive and professional service mannerWork with difficult issues and people; able to work in a changing stressful environment.

Other:  During peak periods, this position requires work outside usual work schedule.  Ability to work and maintain confidential information.  Successful candidate must be able to pass a background investigation. 

 

Preferred Qualifications and Requirements:

Education/Training: Master’s degree. 

Licenses: PHR/SPHR Certification

Skills/Abilities:  Ideal key competencies include: strong business acumen, ability to develop and sustain relationships with business based partners, ability drive results and change, strong understanding of metrics and how to drive performance thru metrics, strong communication skills both written and verbal, adaptability, problem solving, learning agility and the ability deal with ambiguity.

 

Accountability: This position interacts directly with SEI employees and managers while participating in efforts to identify issues, make recommendations, and solve problems related to recruiting and other HR faucets.  This position requires in-depth knowledge and understanding of policies and procedures and skill in researching answers to questions that fall outside of existing policies and procedures.  This position may also provide back-up to other Human Resources staff.

Direction: Work independently, performing under minimal supervision; meeting milestones and overall objectives. Most normal duties and responsibilities are handled independently with the use of established practices, procedures, and policies. Consults and reports to the Manager of Staffing and Recruiting.

Decisions: Expected to make recommendations to improve processes, procedures, and practices within Human Resources.  Expected to handle sensitive questions and inquiries directly:  think strategically when responding to today’s issues/questions and anticipate the impact their words and actions may have on other employees.  Screen resumes and interprets best candidates, recommend recruiting strategies to meet the business needs. Recommends candidate compensation.

Supervisory Responsibilities: This position does not directly oversee others.

 

Job Functions or Responsibilities:

40%     Administrative Recruiting

30%     University Relations and Student Internship Programs

20%     Conference/Event Management

10%     Special Projects

100% TOTAL EFFORT

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

28 Oct
2016
Application Developer - 2004374
Pittsburgh, PA or Arlington, VA

Position Summary: The selected candidate will be responsible for developing prototypes and operational software to automate complex malware analysis tasks. The selected candidate will be an experienced developer that has extensive knowledge of web application frameworks such as Django and Ruby on Rails.  The candidate will also be well versed in DevOps methodologies and have a strong desire to mentor junior developers. 

 

Minimum Qualifications and Requirements:

Education/Training:  BS in computer science, software engineering, computer engineering, or a related quantitative field of study

Experience:  

  • Eight (8) years of experience with web application/service development
  • Eight (8) years of experience writing test cases, test scripts, and performing unit, functional, and integration testing
  • Experience developing rapid software prototypes in Ruby, Python, or Java
  • Experience working in an Agile environment
  • Experience with Git and source code management concepts such as branching, pull requests, and merging
  • Familiarity with Unix/Linux
  • Experience mentoring junior developers

Skills/Abilities: Ability to work effectively within a small dynamic team, prioritize work, collaborate across groups, and solve problems without daily tasking from a supervisor.  Must be a self-starter with a strong desire to learn new technologies, share knowledge, and automate manual tasks.

Mobility: Sedentary in an office setting with some mobility, i.e., able to travel to various locations within the SEI and CMU community as well as travel up to 20% to customer sites.

Environmental Conditions: Close contact with computer for extended periods of time

Mental: Pay close attention to detail, meet inflexible deadlines, balance multiple tasks, remain calm during difficult situations, work under pressure, and work with frequent interruptions. Highly disciplined in terms of time-management and genuine positive attitude with a passion for the work and ability to project same to influence others.

Deal collaboratively, diplomatically, and successfully with partners, co-workers, and other professional colleagues, managers, and staff; develop and communicate innovative ideas; quickly learn new procedures, techniques, and approaches. Strong information organization skills as well as good oral and written communication skills are required.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: MS in computer science, software engineering, computer engineering, or a related quantitative field of study

Experience: 

  • Five (5) years of experience building software using a web application framework such as Django or Ruby on Rails
  • Experience developing large distributed applications that scale
  • Experience researching, identifying, evaluating, and recommending technical solutions to solve business problems
  • Experience with distributed databases
  • Experience automating infrastructure configuration management (Examples: Puppet, Ansible, Chef, CFEngine)
  • Experience with DevOps methodologies

 

Accountability: Employee is accountable for describing, planning, developing, implementing, maintaining, and supporting applications that automate malware analysis.

Direction: Employee will be expected to work under minimum supervision within the defined scope of authority and in accordance with departmental and university procedures and policies. Difficult or unique situations are referred to the supervisor. General supervision is provided by Technical Solutions and Special Projects Manager.

Decisions: The individual is expected to participate in the decision-making and problem-solving processes of operating, maintaining and implementing a multi-protocol multi-carrier prototype network environment.

Supervisory Responsibilities:  Employee may task/supervise other employees in completion of specific tasks. Employee may be required to coach and mentor junior developers and/or direct activities of temporary  staff or contractors.

 

Job Functions or Responsibilities:

50%     Application Development

30%     Software Maintenance and Support

15%     Technical Leadership

Secondary Functions

5%       Contribute to the broader security community.

100% TOTAL EFFORT

 

Organizational Chart: Director, CERT Program < Technical Director < Technical Manager < Team Lead < Application Developer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

28 Oct
2016
Cyber Security Engineer - Exercise Developer - 2004371
Pittsburgh, PA or Arlington, VA

This position has multiple openings and can be located in Pittsburgh, PA, Arlington, VA or Fort George G. Meade.

Position Summary:  As a member of CERT's Workforce Development program, the candidate will work with other team members in developing cyber-security training exercises and simulations, primarily for US military/government customers. This involves interacting directly with customers, gathering training requirements and objectives, producing and facilitating creative and engaging exercise scenarios, and building supporting physical and virtualized systems and network topologies. As such, the candidate will work regularly with a wide range of software and hardware technologies within CERT labs. The candidate may also assist in developing and teaching cyber security training content to external customers. The candidate will also be involved software and hardware prototype development.  Additionally, the position requires the candidate to have demonstrated and effective leadership/management abilities as he/she may supervise and evaluate full time direct reports as well as the activities of graduate student assistants. The successful candidate must be self-directed, have an interdisciplinary approach to problem solving, and work well communicating technical information to technical and non-technical users. The candidate must also be able to interact with clients and staff of all levels in a highly professional and competent manner.

 

Minimum Qualifications and Requirements:

Education/Training:  Bachelor’s degree in Computer Science, Information Science, or related discipline with eight (8) years applicable working experience in information technology, Master’s degree in Computer Science, Information Science, or related discipline with five (5) years of applicable working experience in information technology, PhD Computer Science, Information Science, or related discipline with two (2) years of applicable working experience in information technology, or equivalent combination of training or experience.

Experience: Successful candidates must possess "hands-on" experience with Computer/Network Security and I.T. system and network administration. Additionally, he/she must have practical experience with Windows server and desktop platforms and Linux/Unix operating systems. The candidate must have experience in network design and troubleshooting and implementing standard networking protocols. Additionally, demonstrated practical experience working with common commercial and open-source cyber security tools is required. The candidate should have some experience teaching technical content to students, peers, and non-technical individuals and must enjoy doing so.

Skills/Abilities: Candidate must be able to prioritize workload and complete deliverables on time, have good technical problem-solving skills, strong analytical and information organization skills, excellent oral and written communication skills, and strong technical teaching skills. Candidate must be able to multitask and work effectively with multiple project teams and sponsors/customers. Experience with virtualization technologies, particularly VMWare ESX server is highly desired. Programming experience in C, C++, C#, Python, and Java is also highly desirable.

Physical Mobility: Sedentary in an office setting with some mobility, i.e., able to travel to various locations within the SEI and CMU community as well as travel to customer sites.

Environmental Conditions: Close contact with computer for long periods of time.

Mental: Ability to pay close attention to detail, meet deadlines, work under pressure, and communicate effectively.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: BS and MS in Computer Science; training in enterprise security tools (i.e. McAfee ePO/HIPS, ArcSight, etc.)

Licenses: CISSP, Network+, Security+ and/or other industry standard certifications

Experience: US military service in a series of positions involving information technology, cyber security, and management of large scale government networks.

Skills/Abilities: Strong presentation/platform skills and excellent writing skills.

 

Accountability:  The incumbent is accountable for the definition, creation, and maintenance of final deliverables and products and may manage unclassified/classified DoD projects in excess of $3M annually.

Direction:  The incumbent is expected to act independently using CMU and SEI defined policies, practices, and procedures.

Decisions: The incumbent must use good judgment to solve customer and personnel problems and is required to envision, design, develop, pilot, and deliver new capabilities, products, and services.  Candidate will also be required to accurately represent SEI/CERT and its technical work in interactions with customers, sponsors, and the public.

Supervisory Responsibilities:  The incumbent may have at least 2 direct reports as well as up to 15 secondary reports and will be required to provide performance management, career guidance, and take personnel corrective actions as required.

 

Job Functions or Responsibilities:

10%      Design and develop technical documents and instructional materials.

10%      Research, evaluate, develop, install/configure hardware and software including promising new technologies that require examination for cyber security research and development.

10%      Deliver technical and management training to customers.

55%      Mentor, guide and interact with team and other staff.

15%      Contribute to transition planning and strategy.

100% TOTAL EFFORT

 

Organizational Chart: Director, CERT Division < Technical Director, Cyber Security Solutions Directorate < Technical Manager, Cyber Workforce Development Initiative < Cyber Workforce Development Team Lead < Cyber Security Engineer - Exercise Developer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

28 Oct
2016
Vulnerability Analyst - 2004372
Pittsburgh, PA or Arlington, VA

Position Summary:  The Vulnerability Analysis Team, within the CERT Program’s CERT Coordination Center (CERT/CC), is a group of internet security experts that serve as a trusted and neutral coordination body, dedicated to remediating software vulnerabilities and providing practical guidance for customers, system administrators, security researchers, and the global internet security community to reduce the amount of time software systems are vulnerable.

The primary roles of the Vulnerability Analysis Team include:

  • Software vulnerability analysis including black box testing, source code examination, and attack reproduction
  • Customer, vendor, and reporter correspondence
  • Publication of technical documents and remediation information
  • Tool specification and development

The individual in this position must be self-motivated and will have the opportunity to serve as a strong contributor and technical leader in the analysis, coordination, and remediation of software vulnerabilities.

The intent is for this position to be primarily located in Pittsburgh, PA with occasional travel to the Washington D.C. area on a monthly basis.

 

Minimum Qualifications and Requirements:

Education: Bachelor of Science in Computer Science, Information Science, Information Management with three (3) years applicable experience as a system or network administrator, software developer, database administrator or similarly technical occupation; or Master of Science in Computer Science, Information Science or Information or equivalent with one year applicable experience. We will consider other educational backgrounds in a technical discipline with experience as described.

Experience: Candidates should have experience working with the government community; at least three years of experience in a Windows and Unix/Linux environment and be able to demonstrate substantial knowledge of at least four of the following:

  • various internet protocols (e.g., TCP/IP, DNS, BGP, SMTP, HTTP) computer system and Internet security issues various security technologies (e.g., encryption, firewalls, and anti-virus products) software runtime analysis, debugging, and security testing techniques
  • security auditing practices
  • underlying software defects that routinely result in security vulnerabilities (e.g., input validation errors)
  • understanding of intruder techniques and software exploitation methods
  • system, database, and/or network administration
  • operational details of multiple operating systems
  • cryptographic principles and common cryptographic protocols
  • one or more programming languages (e.g., C/C++, Perl, or Java)
  • vulnerability management concepts and tools

Skills/Abilities: Successful candidates will:

  • have an interest in and have extensive knowledge of network and computer security issues
  • have the ability to analyze software to discover vulnerabilities
  • be able to develop and explain technical decisions
  • be able to separate fact from opinion and speculation
  • have excellent work prioritization, planning, and organizational skills
  • interact effectively with vulnerability reporters, system and network administrators, vendors, experts, Internet users, sponsors, policy makers, news reporters, managers and staff (i.e., stakeholders in the vulnerability disclosure process)
  • be able to work with closely coordinated teams during emergencies
  • have excellent analytical, reasoning, and creative problem solving skills
  • have excellent written and oral communication skills
  • recognize and deal appropriately with confidential and sensitive information
  • be able to work meticulously with careful attention to detail
  • be able to collaborate effectively and work closely within a coordinated team environment
  • be able to quickly learn new procedures, techniques, and approaches
  • maintain composure while dealing with difficult people
  • communicate and work effectively under normal and stressful situations
  • meet inflexible deadlines
  • possess strong leadership and mentoring abilities
  • be motivated to tackle challenging problems

Mobility: Primarily sedentary, long periods of sitting. Ability to travel to various locations within the SEI and CMU community, customer sites, conferences, and offsite meetings with some frequency.

Environmental Conditions: Normal office conditions; however close contact with computer for prolonged periods of time.

Mental: The ability to work well under pressure of deadlines

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Master of Science in Computer Science, Information Science or Information or equivalent with one year applicable experience; or Ph.D in Computer Science, Information Science or Information. We will consider other educational backgrounds in a technical discipline with experience as described.

Experience: Ideal candidates will have substantial experience in two or more of the following areas:

  • industrial/process control systems
  • web application development
  • computer and network architecture
  • reverse engineering
  • software development
  • computer and network architecture
  • network security and survivability issues, to include knowledge of and experience with information security concepts, information security best practices and bodies of knowledge, and computer security incident response management

 

Accountability: Develop and implement project technical results.  Contribute to program objectives and plans development.  Keep in confidence sensitive information such as security, vulnerability, and site-specific information.

Direction: Regular interaction with supervisor.  Expected to act in accordance with SEI and CERT program procedures and policies, such as those involving product development, team interaction, and confidentiality.

Decisions: Must accurately represent the program in interactions with customers, sponsors, and the public.  Participate in conferences and workshops where security-related issues are discussed as required.

Supervisory Responsibilities: Contributes to hiring decisions of program staff; appraises performance of support staff.

 

Job Functions or Responsibilities:

40%     Analyze vulnerability reports using tools, processes, and techniques designed to provide fact-based analysis to other stakeholders in the vulnerability disclosure process.

20%     Research, specify, and develop new tools, processes and techniques to improve vulnerability analysis methodology and to support interaction with stakeholders.

10%     Correspond with software vendors, vulnerability researchers, sponsors, and other stakeholders.

10%     Communicate analytical results in various technical communities to promote collaboration and shared understanding of vulnerability preconditions and impacts.

5%       Write and publish short to medium-length documents describing vulnerability mitigation strategies and root-cause analyses.

5%       Represent CERT in other forums (e.g., conferences, workshops, etc.).

5%       Provide assistance and input to other teams and projects within the SEI.

5%       On call to respond to Internet emergencies (outside of normal business hours).

100%      TOTAL EFFORT

 

Organizational Chart: CERT Program Director < Threat Analysis Technical Director < Vulnerability Analysis Technical Manager < Vulnerability Analyst

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran


                                                                             

 

 

 

27 Oct
2016
Financial Analyst II - 2004356
Pittsburgh, PA

Position Summary: For over three decades, the Software Engineering Institute (SEI) has been helping government and industry organizations to acquire, develop, operate, and sustain software systems that are innovative, affordable, enduring, and trustworthy. We serve the nation as a Federally Funded Research and Development Center (FFRDC) sponsored by the U.S. Department of Defense (DoD) and are based at Carnegie Mellon University, a global research university annually rated among the best for its programs in computer science and engineering.

As an SEI Financial Analyst, you will lead a team of two Senior Accountants and work with SEI leaders-specifically in the CERT Division of the SEI. The CERT division is the SEI’s largest Division with an annual budget approaching $112M. The CERT Division regularly partners with government, industry, law enforcement, and academia to develop advanced methods and technologies to counter large-scale, sophisticated cyber threats.    You would not only be a member of the SEI’s CFO’s Financial Analysis and Reporting team, but you would also become a key member of the CERT team, working very closely with all levels of the CERT Division, up to and including the Program Director and Deputy Director. You will provide both CERT and SEI management with insightful financial recommendations, planning and reporting support.

As a Financial Analyst, you will be passionate about analyzing large data sets, planning for the future, and making recommendations to senior leadership.  You will work with you team to provide key analyses, projects and reports.  You will have the primary responsibility for reviewing, consolidating, preparing and presenting all financial reviews, internal reviews, customer reports and program reports.  You will also use your creativity and experience to ensure that these reports are as effective as possible by participating in periodic planning sessions. You will be engaged in the full life cycle of program financial planning and management.

 

Minimum Qualifications and Requirements:

Education/Training: BS/BA in Accounting, Finance or related field.

Licenses: N/A

Experience: You have three (3) to five (5) years of relevant work experience in budgeting or financial planning in a fast-paced organization.  You also have direct experience with budgeting and financial reporting systems along with proficiency in data manipulation utilizing Excel and other standard office utilities.

Skills/Abilities: You have a broad understanding of budgets and financial systems as well as the ability to work closely with all levels of personnel up to and including senior management.  You are able to analyze, prepare and give sound financial advice and guidance.  You are a solution-oriented self-starter who has the ability to work independently as well as on a team.  You apply strong analytical skills to effectively solve problems while addressing complex financial issues.  You are an excellent communicator, both written and verbal, and use sound judgement when escalating issues to upper management.

Mobility: Normal sedentary position with some mobility – must be able to access various internal SEI offices.

Environmental Conditions: Normal office setting, close contact with CRT.

Mental: You are detail oriented and have excellent time management skills.  You can meet critical deadlines as priorities change, while still completing your day-to-day activities.  You thrive in a fast-paced and deadline driven environment.  You have the ability to remain calm during difficult situations, work well under pressure and work with frequent interruptions.  You have the ability to interact effectively with all personnel.

Other:  You have the ability to remain effective under pressure while maintaining the ability to focus on detail and produce error-free financial information.  You are able to work with all levels of personnel in a professional and customer-oriented fashion.  Interactions will include program directors, team leads, government personnel (such as the Administrative Contracting Officer), SEI COO, SEI CFO, senior level SEI staff, and CMU financial and business services staff.

Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Masters in Accounting, Finance, or equivalent job-related experience in financial areas.

Experience: You have experience working in an academic, Federally Funded Research and Development Center (FFRDC) setting.  You have direct experience with CMU financial accounting systems; specifically Oracle (Grants Management, General Ledger, Accounts Receivable and Labor Distribution), Hyperion Planning, Oracle Business Intelligence, and CMU budgeting practices and procedures.  You have experience with and an understanding of SEI, CMU, and government policies and industry practices.

Skills/Abilities: Supervisor Experience.

 

Accountability: This position provides essential financial advice and counsel to senior administration to significantly influence management decisions.  It also serves as a financial information resource concerning SEI financial matters.  You will provide objective financial consultation, direction, and guidance for the SEI and the CERT Division.

You will act as a high-level performer by managing, creating and administering special financial projects for SEI senior management.  These projects include participation in financial metrics planning, funding model chart development and maintenance, and process documentation for the financial analyst team.

You will manage and be accountable for the professional development and performance of two senior accountants.  You will be responsible for establishing priorities for your team based on overall organizational and operational goals.

You will be a key participant in quarterly and/or monthly program financial and internal reviews.  You will work with your team to prepare financial reports and charts that will be presented to the manager(s) while providing insights and recommendations.  Your recommendations will influence financial decisions at the SEI.

You will attend all appropriate program and customer meetings, participate in the planning and decision making of financial systems as they are upgraded or evolve, and attend various seminars/classes to maintain and expand your skills.  You will have the opportunity to give presentations to senior members of the SEI including program directors, the CFO, and the COO.

Direction: You have the ability to handle all normal duties and responsibilities independently but will also know when it’s necessary to escalate problems to your supervisor.  You will facilitate and foster a climate where excellence in financial analysis, management and customer service is expected and rewarded.  Your work will routinely involve interaction with senior managers; you will function as a part of the Financial Services management team.  You will play a key role in the development and deployment of new SEI financial systems such as Oracle, Hyperion Planning, and Oracle Business Intelligence drawing upon your broad understanding of SEI, CMU, and Government policies and procedures.

Decisions: You will have a key role in anticipating and identifying any financial problems and/or issues within the CERT Division and across the SEI.  You will recommend solutions based on sound and thorough analysis. You will establish precedents to help determine procedures and guidelines for others.  The solutions will require in-depth knowledge of the issues and research of the circumstances.  Some examples are: 1) Recognizing inconsistencies and taking corrective actions through the use of journal entries or redistributions of effort,   2) Analyzing spending against the budget and making recommendations to management on corrective actions to mitigate an existing problem or prevent a potential problem; 3) Creating and maintaining funding model charts that simply show fiscal stability, 4) Creating and maintaining period of performance charts that are distributed directly to customers showing fiscal progress for a given body of work.

Supervisory Responsibilities: You will directly supervise two (2) full-time Senior Accountants.  This will include the hiring and training of new staff, conducting performance appraisals, and making recommendations for salary increases and promotions.

You will participate in the financial and system training and guidance of your peers, new managers, individual program support staff, Financial Services support staff and work study students.  You will help them to meet and understand the needs of the SEI and streamline related processes. 

 

Job Functions or Responsibilities:

40%     Manages key financial information and data for the CERT Division.  This position is accountable for the creation and delivery of timely and accurate financial data, reports, charts, budgets and analysis; provides objective financial consultation, advice, and guidance to appropriate managers and other personnel as needed.  Works directly with technical staff, project/team leads, business managers, and program managers to analyze, monitor, forecast and track financial performance.  Implements process improvements, gathers customer needs and requirements and defines ways to meet those needs.  Provide advice and guidance to all levels of SEI personnel with regard to financial and business issues. Provide leadership in the preparation and presentation of financial materials to be used for periodic financial and internal reviews. Participate and present in meetings with various SEI personnel, including senior management, regarding financial information.

35%     Understand financial issues and concerns in order to deliver analysis and financial recommendations to management.  Provide problem solving for financial and business issues that occur.  Determine and make recommendations for procedures, precedents and improvements to the financial systems and processes.

15%     Supervises and is responsible for the performance of two senior accountants.  Oversees the work flow and ensures deadlines for the team are met.

5%       Provide formal and informal education, mentoring and guidance to all personnel with regard to business and financial issues. This includes periodic financial presentations to all personnel in the SEI and CERT in particular.

5%       Other duties as assigned.

100% TOTAL EFFORT

 

Organizational Chart:  CFO < Manager, Financial Services < Financial Analyst Manager < Financial Analyst < Senior Accountant (2).

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

24 Oct
2016
Contract Specialist - 2004343
Pittsburgh, PA

Position Summary:  The Software Engineering Institute (SEI) is seeking a candidate who is responsible for a wide range of SEI contracts activities, including placing government and industry funding under contract, processing contracts for procuring goods and services, and resolving and executing agreements for copyright release requests. This position will require a thorough understanding of commercial contract/sub-contract management and a working knowledge of Contractor Purchasing System Reviews (CPSR).


Minimum Qualifications and Requirements:

Education/Training: Bachelor’s degree in business administration, accounting or other related field or equivalent combination of training and experience.

Experience: Five plus (5+) years of administrative experience, including two plus (2+) years of experience or relevant education dealing with research contracts negotiation and administration, government contracts, and/or intellectual property agreements.

Skills/Abilities: Excellent computer application skills, especially with Microsoft Office products, including Outlook, Word, PowerPoint, Excel, and Sharepoint.  Knowledge of federal acquisition regulations and in-depth understanding of legal and contractual terminology.  Demonstrated experience in and working knowledge of Federal contracting terms and conditions, including the Federal Acquisition Regulation, applicable agency supplement requirements, and government accounting practices for contract administration activities.  Thorough understanding of commercial contract/sub-contract management, negotiations, and license agreements, including BPA, CPFF, CPAF, T&M, and FFP contracts.  Excellent interpersonal and negotiating skills including ability to interact with all levels of SEI staff and customers from administrative to executive staff.  Strong to excellent analytical, communication, teambuilding, leadership, and presentation skills.  Organizational skills, including the ability to prioritize work and handle multiple tasks simultaneously; analytical, reasoning and problem solving skills; excellent verbal and written communication skills; ability to give clear direction to others; and computer literacy. Significant ability to influence senior corporate management.

Physical Mobility: Usually sedentary, but may be required to travel to various campus locations.

Environmental Conditions: Close contact with CRT for prolonged periods.

Mental: Ability to: be flexible, innovative resourceful, creative and quantitative; juggle multiple tasks simultaneously; pay attention to detail; exercise independent judgment; remain calm and composed when dealing with difficult people or situations as well as with frequent interruptions. Willingness and ability to assume personal responsibility for meeting customer and SEI deadlines.

Other: Experience working with legal documents. May require work outside of normal business hours to meet contract deadlines. Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Licenses:  Certified Commercial Contracts Manager (CCCM), Certified Federal Contracts Manager (CFCM), Certified Professional Contracts Manager (CPCM), Education in Contracts Management, and/or Juris Doctor highly desirable.


Accountability: Develops, reviews and negotiates contracts (CRADAs, Subcontracts, CAs, NDAs, PWSs, Software licenses, technology licenses, copyright releases, and other miscellaneous agreements) while ensuring adherence with university and SEI policy and communicates terms and conditions to internal and external customers.

Direction: Acts independently within scope of normal duties and responsibilities. Performs under general supervision. Duties are handled with the use of established policies and procedures. Only the most difficult or unique situations are referred to the supervisor.

Decisions: May provide formal training in contract domain expertise. Champions contract policy and procedure revision and improvement. Lead negotiation responsibilities. Understands the business case and has an appreciation of financial/analytical issues and profit and loss implications.

Supervisory Responsibilities: This position does not normally have supervisory responsibility.  The position will report to the Manager of Contracts but will also work closely with Program Directors, Account Executives, SEI Legal Counsel, Associate Provost Office and various members of the technical staff based on the project requirements.

 

Job Functions or Responsibilities:

Percentages are approximations and may vary depending upon SEI’s workflow. 

10%  Processing US government Project Work Statement (PWS) agreements under the SEI prime contract; maintaining positive relations with government personnel and personnel internal to SEI who are involved in the government funding and contracting processes, and managing a highly variable workload.

25%  Issuing and negotiating subcontracts properly documenting subcontract files within a Contractor Purchasing System Review (CPSR) environment.

5%    Coordinating permissions and negotiate terms for reproduction of SEI Intellectual Property. Advise staff on complex copyright and permissions matter.

10%  Reviewing and negotiating vendor service agreements and vendor software license terms and conditions.

10%  Developing and finalizing a wide variety of agreements, including but not limited to license agreements (software and technology), Cooperative Research and Development Agreement (CRADA), Collaborative Agreement (CA), copyright release agreements, consulting agreements, non-disclosure agreements and miscellaneous agreements while adhering to CMU/SEI policy and procedure. Developing new agreement templates as required.

10%  Recommending and implementing improvements to the SEI contracting process.

20%  Keeping accurate and timely records, files, and database entries and maintaining effective communications with stakeholders.  Resolve problems and issues as needed with stakeholders, and implementing appropriate agreements.

5%    Monitoring the progress of agreements and follow-up to ensure that all contractual obligations are fulfilled.

5%    Other duties and special projects as assigned.

100% TOTAL EFFORT


Organizational Chart: FABS, Director < Contracts Manager < Contract Specialist

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

 

21 Oct
2016
Malware Reverse Engineer - 2004251
Pittsburgh, PA or Arlington, VA

Position Summary:  The CERT Threat Analysis group aims to improve malware analysis capability while addressing active and emerging threats.  The successful candidate will reverse engineer malicious code in support of high-impact customers, design and develop new analysis methods and tools, work to identify and address emerging and complex threats, and effectively participate in the broader security community.

Responsibilities: Perform in-depth reverse engineering of malicious code, document and transition results in reports, presentations, and technical exchanges; Design, prototype, and transition new analysis methods and tools; Identify and document high-impact, emerging, and complex active security threats; design and pursue solutions; and transition results in tools, reports, presentations, and technical exchanges Participate in the broader security community through collaboration, papers, and presentations.

 

Minimum Qualifications and Requirements:

Education/Training: Bachelor of Science in Computer Science, Software Engineering, Information Systems, or related field with eight (8) years of experience, or equivalent; Master’s Degree in Computer Science, Software Engineering, Information Systems, or related field with five (5) year of experience; PhD in Computer Science, Software Engineering, Information Systems, or related field with two (2) year of experience.

Experience:                               

  • Reverse engineering software binaries.
  • Using disassemblers (ie. IDA Pro).
  • Using debuggers (ie. OllyDbg, Immunity, gdb, WinDbg).
  • Using hex editors and tools (ie. BinDiff).
  • C/C++ development.
  • x86 assembly language.
  • Windows Portable Executable (PE) file format Technical Writing Solid understanding of programming languages and operating system concepts.

Skills/Abilities:                  

  • technical writing.
  • analytical and problem solving skills.
  • develop and explain technical decisions.
  • prioritize work.
  • recognize and deal appropriately with confidential and sensitive information.
  • communicate effectively under normal and stressful situations.
  • handle shifting priorities.
  • mentoring/training skills.
  • interact effectively with technical and non-technical audiences both written and verbally.
  • work within a closely coordinated team.
  • work calmly and well under pressure.
  • maintain composure while dealing with difficult people.

Mobility: Primarily sedentary, long periods of sitting; ability to travel to various locations within the SEI and Carnegie Mellon community, customer sites, conferences, and offsite meetings with some frequency.

Environmental Conditions:  Normal office conditions, close contact with computer for prolonged periods of time.

Mental: Ability to work under pressure and changing priorities; pay attention to detail; meet inflexible deadlines; deal with difficult individuals while maintaining composure.     

Other: Candidate will be required to travel on overnight assignments. Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Experience:         

  • YARA.
  • IDAPro plug-in or IDAPython development.
  • Other assembly languages (ie. ARM, x86_64).
  • Python or Java development.
  • Assembly development.
  • Linker and/or Loader development or analysis Executable and Linker Format (ELF) file format Windows, Linux or Mac OS X.
  • APIs and security models.
  • Internet Protocols.
  • Cryptographic algorithms.
  • Kernel-level debugging (ie. WinDbg).
  • Device driver development.
  • Mobile device development.
  • Mobile device reverse engineering.
  • Software vulnerability analysis.
  • VirtualBox or VMWare admin or development Network packet captures (ie. Wireshark, pcap formats).

 

Accountability: Develop and implement project technical results.  Contribute to program objectives and plans development.  Keep in confidence sensitive information such as security, vulnerability, and site information.

Direction: The individual is expected to act independently in accordance with Carnegie Mellon, Software Engineering Institute, CERT Program, and CERT Threat Analysis procedures and policies, such as those involving product development, team interaction, and confidentiality.

Decisions: Must accurately represent the program in interactions with customers, sponsors, and the public.  Participate in conferences and workshops where security-related issues are discussed as required.

Supervisory Responsibilities: This position has no supervisory responsibilities.

 

Job Functions or Responsibilities:       

50%   Perform in-depth reverse engineering of malicious code, document and transition results in reports, presentations, and technical exchanges;

20%   Design, prototype, and transition new analysis methods and tools;

20%   Identify and document high-impact, emerging, and complex active security threats; design and pursue solutions; and transition results in tools, reports, presentations, and technical exchanges.

10%   Participate in the broader security community through collaboration, papers, and presentations.

100%      TOTAL EFFORT

 

Organizational Chart: CERT Program Director < CERT Threat Analysis Technical Director < CERT Malware Analysis Technical Manager < Malware Reverse Engineer.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

17 Oct
2016
Associate Cyber Security Engineer - Insider Threat - 2002835
Pittsburgh, PA or Arlington, VA

Position Summary: The CERT Division is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Division engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.

The individual in this position will work as a member of the Enterprise Threat and Vulnerability Management (ETVM) team, which focuses on assisting organizations in improving their insider threat mitigation and incident management practices and developing capabilities for preventing, detecting, deterring, and responding to evolving insider threats. ETVM team members are domain experts in insider threat and incident response, and team capabilities include threat analysis and modeling; development of security metrics and assessment and evaluation methodologies; and creation and delivery of controls, training, courses, and workshops.  

The individual in this position will be a part of the Technical Solutions team within ETVM. The Technical Solutions Team is responsible for the creation, development, and management of novel cybersecurity solutions that support customer driven operational and research missions. The Technical Solutions Team interacts with US Government departments and agencies, industry representatives, contractors, academia and others to identify gaps in cybersecurity tools, techniques, and procedures; create prototype capabilities to fill the gaps, and transition the prototype solutions to customers and partner organizations. The team frequently communicates their work to the community by publishing technical reports and white papers, and presenting at conferences, symposia, and other working groups.

 

Minimum Qualifications and Requirements:

Education/Training: BS in computer science, software engineering, information systems, or a related technical field with three (3) years of experience or equivalent, or MS in computer science, software engineering, information systems, or a related technical field with one (1) year of experience or equivalent.

Experience: 

  • professional experience in software engineering or cyber security.
  • experience applying the engineering process to solve complex real-world challenges. 
  • experience using analytical skills and an ability to interpret established standards and guidelines to solve problems.

Skills/Abilities:

  • system administration and network administration skills and familiarity with Windows, UNIX, LINUX operating systems.
  • software development in at least two of the following languages: C, C++, Java, Perl, and Python.
  • knowledge of core Internet protocols (TCP/IP, UDP, ICMP, DNS, FTP, SMTP, HTTP, SNMP, etc.).
  • knowledge of modern version control systems and integrated development environments.
  • understanding of network design and implementation at LAN and WAN levels.
  • broad understanding and application of multi-tiered enterprise client/server architectures, design, implementation and security.
  • software / systems development lifecycle, QA, testing, build process, revision control, and change management practices.
  • proven ability to innovate, develop, implement, and effectively document complex technical systems and approaches.
  • proven ability to integrate multiple technologies, standards and data sources into a consolidated solution.
  • knowledge of common cyber attack methodologies; common types of security vulnerabilities; basic computer security forensics.
  • strong oral and written communications skills (e.g., technical writing, user guide development, requirements analysis) and ability to interact effectively with technical and non-technical audiences, as well as present in front of small and large groups; participate in external customer and sponsor meetings.
  • ability to travel to various locations within the SEI and CMU community, customer sites, and offsite meetings with weekly/monthly frequency to travel on overnight and on-site assignments; ability to work in varied and diverse situations requiring analytical, interpretative, evaluative and constructive thinking;
  • manage workload and priorities on multiple scheduled assessments;
  • able to function independently or in teams depending on the project;
  • work under pressure; deal with stress;
  • deal with challenging individuals while maintaining composure;
  • ability to exercise tact and discretion when handling highly sensitive and confidential issues;
  • maintain confidentiality while working with highly confidential and sensitive matters.
  • handle sensitive data according to project and/or USG data handling procedures.
  • ability to interpret and communicate information about government regulations and university policies.
  • quantitative and qualitative analytical skills.
  • ability to trouble shoot problems proactively and to answer questions and handle issues as they arise.
  • effective time management skills; and strong problem solving skills.

Environmental Conditions:  close contact with computer monitor for extended periods of time.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training:  MS in Computer Science with one (1) years applicable experience; Current Associate Certified Information System Security Profession (CISSP), IEEE Professional Software Engineering Master Certification, or similar certification is desired.

Experience: 

  • experience with software development and/or system administration in large-scale, distributed computing environments.
  • experience developing materials for senior leadership in government or industry.
  • experience interfacing with the DOD, US federal civilian government, intelligence community, or law enforcement.
  • experience working in a classified environment.

Skills/Abilities: 

  • data mining.
  • machine learning. 
  • text and natural language processing.
  • proven skills working in a team environment on collaborative projects in US government, critical infrastructure sectors involving network, system or data security.

 

Accountability: The individual will be accountable for meeting established deadlines and project milestones. The individual will also be accountable for managing sensitive, and possibly classified, customer information.

Direction: The individual is expected to act in accordance with direct supervision from management and senior staff, as well as follow CMU, SEI, and CERT defined policies, practices, and procedures, and to adhere to any additional sponsor-specified requirements related to the projects involved.

Decisions:The individual must make sound decisions, and demonstrate a commitment to those decisions. The individual must also be able to escalate out-of-scope problems to more experienced team members. The individual must accurately represent the program in interactions with external customers, sponsors, and the public.

Supervisory Responsibilities: The individual may be responsible for managing student interns.

 

Job Functions or Responsibilities:

60%     Develop, deploy, and transition technical solutions for insider threat prevention, detection, and response.

15%     Participate in research into cutting-edge strategies for insider threat data collection and analysis techniques.

10%     Design and develop training materials for insider threat program practitioners.

10%     Contribute to conferences and meetings; participate in marketing calls and technical exchanges with clients; give talks and lectures as appropriate; participate on working groups for subjects of interest.

5%       Provide assistance and input to other teams and projects within the SEI.

100% TOTAL EFFORT

 

Organizational Chart: CERT Program, Director < Risk and Resilience Directorate, Technical Director < Enterprise Threat & Vulnerability Management, Technical Manager < Technical Solutions, Technical Team Lead < Associate Cyber Security Engineer.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

13 Oct
2016
2016 - Scholarship for Service Virtual Career Fair
Pittsburgh, PA or Arlington, VA

We are seeking interns to help support our mission: to lead and advance software and cybersecurity to solve the nation’s toughest problems.

We have internships across a wide range of technical areas, including:

-vulnerability assessment
-malware analysis

-penetration testing
-machine learning
-DevOps
-software research / software prototyping
-secure coding

Requirements:

Candidates must be a current SFS student enrolled in Computer Science, Computer Engineering, or related discipline. BS, MS and PhD level students are encouraged to apply.

13 Oct
2016
Chief Technology Officer
Pittsburgh, PA

Boyden Global Executive Search

Founded in 1946, Boyden pioneered the executive search industry. Boyden is the oldest and one of the largest privately owned search firms in the world, with more than 70 offices in over 40 countries. In the world of executive search, Boyden is distinguished by the expertise of our consultants, the resources of our global firm, our commitment to our clients, and our culture of professionalism and integrity. For further information about Boyden, visit www.boyden.com.

Background

Our client, the Carnegie Mellon Software Engineering Institute (SEI), is seeking a highly experienced and dynamic candidate to fill the position of Chief Technology Officer (CTO). The venue is Pittsburgh, PA. 

Since 1984, the Carnegie Mellon Software Engineering Institute (SEI) has served the nation as a federally funded research and development center. As part of Carnegie Mellon University, which is well known for its highly rated programs in computer science and engineering, the SEI operates at the leading edge of technical innovation.  Its mission is to support the Nation’s defense by advancing the science, technologies, and practices needed to acquire, develop, operate, and sustain software systems that are innovative, affordable, trustworthy, and enduring.

CMU SEI is positioned at the nexus of academia, government, and industry and undertakes the following activities to fulfill its mission as a national resource:

  • Performs research to advance and mature the discipline of engineering and securing software systems
  • Builds proof-of-concept and demonstration systems that are used in conjunction with stakeholders, to assess the viability of new approaches to mission challenges
  • Widely disseminates recent advances and proven solutions relevant to its mission statement
  • Deploys domain expertise on-demand, in short order to assist with critical, urgent, or sensitive government program challenges

CMU SEI aspires to bring software-reliant capabilities with confidence to the DoD, Intelligence Community, and other government entities. Confidence is multi-faceted—in cost and schedule, in functionality, in security, and in desirable architectural properties (i.e., the “ilities” or non-functional requirements such as reliability, sustainability, extensibility, flexibility, availability, safety, etc.). It is also the confidence that people with conventional levels of education and training are able to operate software systems effectively and safely.

The SEI is recognized internationally for its work in software engineering and cyber security. For more information, you may visit the SEI web site at www.sei.cmu.

Position

The CTO is a close working partner with the Director/CEO and Deputy Director/COO. The position reports to the Director/CEO.

Key Responsibilities

The CTO’s focus is strategic in nature. The CTO role is to support the Director in formulating technical and business strategy that is responsive to the needs of the sponsor, and that leverages a view of the future of technology. Total budget for the organization is approximately $149 million, and the CTO has line responsibility for $20 million of research funding which SEI would like to grow, and technical oversight and influence over the entire SEI program.

While the CTO provides input and shares in the development of the overall SEI strategic plan, the CTO has responsibility for the creation and maintenance of the research strategy plan. The CTO develops this plan based on current and predicted future trends of technology in industry and government, and input from the research programs and performance measures. The CTO ensures that the programs’ research plans are aligned with the overall research strategy plan. The CTO is responsible for the technical and business reviews of line funded projects, and for an exploratory program that nurtures new research that develops and realizes the strategic research vision. The CTO is also responsible for understanding the breadth of technical work at the SEI.

The key responsibilities of the CTO are:

  • Managing and reviewing the funded research program
  • Creating a long range vision and developing it into an executable strategic research program
  • Conducting activities to predict the future of technology in industry and government
  • Creating and overseeing an exploratory program
  • Enhancing the brand and reputation of the SEI with current and future constituents
  • Supporting the Director/CEO and Deputy Director/COO in conducting reviews (programmatic, financial, technical)
  • Presenting SEI research strategic direction and technical overviews at professional and technical meetings (e.g., representing the SEI at professional meetings such as IEEE or ACM SWE Conferences, DDR&E and DARPA program reviews, and to forums associated with ASD(R&E), USD(AT&L), Service SAEs, PEOs, and other key stakeholders in the DoD, IC, USG, and industry)
  • Identifying opportunities for technical integration among initiatives
  • Acting as a strong liaison between the SEI and Carnegie Mellon faculty

Selection Criteria

The qualified candidate will have a Ph.D. in Computer Science, Engineering, or a related discipline. He/she must have a minimum of 15 years of progressively increasing CTO responsibilities managing large complex research projects in a University, the Department of Defense, or in a software intensive systems environment. The ideal candidate must have experience in building and managing high technology teams. They must have knowledge of the software engineering discipline and the software acquisition process, as well as cyber expertise and familiarity with cyber missions. The successful candidate must be able to demonstrate experience managing large, complex, research projects that were strategic in nature and the content of which have focused on information technology, software technology, assurance, cyber, and/or software engineering. Management experience within a university, government, military, and/or Fortune 500 technology-based organization is preferred. 

 

Additionally, the candidate should possess:

  • Tier one academic experience with a stellar reputation
  • Strong business acumen
  • He/she must be a visionary, with a strong sense of purpose
  • A reputation for applied and/or theoretical research and be well published
  • Success in securing support and funding for research projects
    • Track record of accomplishment in leading the research agenda for technology-based organizations
  • Strong influencing skills
  • Demonstrated abilities in strategic planning
  • Demonstrated understanding of the DoD and Federal acquisition and developer communities
  • Reputation for highest level of integrity
  • High comfort level with ambiguity
  • Success at building consensus within a matrixed organization
  • Excellent oral, written, and presentation skills
  • Cleared or the ability to be cleared at the Top Secret level

Compensation and Benefits

This is an outstanding career opportunity for an individual interested in a genuine professional challenge. With this position comes a very competitive compensation and benefits program.

HOW TO APPLY

The Officer-in-Charge of this engagement is Tim McNamara, Managing Partner. Linda Kearschner, Principal, is leading the recruiting effort for the project. Interested parties should submit, in electronic format, a resume with salary history and a cover letter outlining reasons for interest in this opportunity to lkearschner@boyden.com, or may call our toll free number at 1 877.2.BOYDEN (226-9336) or 1 202.536.5168 for additional information.

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

03 Oct
2016
Threat Analyst - 2004219
Pittsburgh, PA or Arlington, VA

Position Summary: The CERT program is part of the Software Engineering Institute (SEI), a federally funded research and development center at Carnegie Mellon University in Pittsburgh, PA.  The CERT Threat Analysis group is an applied research and development group that provides strategic threat analysis, conducts quantitative studies of large-scale USG networks and builds prototype tools in support of operational sponsors.  This group has diverse expertise to include security analysts, network engineers, malware analysts, statisticians, and developers in the Pittsburgh and Washington DC-area.  The position of Threat Analyst is responsible for performing in-depth analysis of cyber threat data to include: identification of active security threats, development of new analytic methods, reverse engineering of malicious code, and documenting and transitioning results in reports, presentations, and technical exchanges.

 

Minimum Qualifications and Requirements:

Education/Training:  MS/MA in Computer Science or scientific/technical field with 8 years experience.  PhD in a technical field with 5 years experience.

Licenses:  N/A

Experience: 

  • Experience in analyzing cyber threat data.
  • Experience in development of analysis techniques.
  • Knowledge of static and dynamic code analysis techniques and tools, to include existing gap areas.
  • Experience publishing research and academic papers.

Skills/Abilities:

The ability to:

  • reverse engineer malicious code.
  • develop code in Python or Java.
  • communicate complex designs or plans to sponsors, project managers and technical staff in clear concise language tailored to the audience.
  • meet deadlines while working on multiple tasks often with shifting priorities.
  • deal collaboratively and successfully with customers, co-workers and other professional colleagues, managers, and staff.

Knowledge of USG networks, policies and missions areas/owners in cyber security. Knowledge of Internet protocols, operations, and governance. Excellent oral and written communication skills.

Mobility: Primarily sedentary in an office setting with some mobility.  Requires travel to various domestic locations within the SEI and CMU community to include the SEI Pittsburgh office; sponsor sites; conferences; and offsite meetings with routine frequency (2-3 trips a month)

Environmental Conditions:  Normal office conditions; close contact with computer display for extended periods of time

Mental:  

The ability to:

  • work meticulously with careful attention to detail.
  • meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities.
  • deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff.
  • grasp the big picture, direction, and goals of an effort.
  • develop and communicate innovative ideas.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: MS/MA in a scientific, technical, or business field with 10 years experience, or equivalent;  PhD in a technical field with 6 years experience.

Experience: 

  • Experience on an incident response; intelligence or security operations floor
  • Participation in broad public forums through activities such as standards, open source development, or publication
  • Experience working with the government, or within a critical infrastructure sector
  • Expertise in Cyber intelligence tradecraft
  • Knowledge of current challenges and threats faced by USG network security and intelligence organizations

Skills/Abilities: 

  • Knowledge of multiple modern operating systems
  • Strong background with mathematical programming and visual analysis systems
  • Working knowledge of all of the following technologies: code analysis tools (e.g., IDA Pro, OllyDbg, WinDBG), run-time environments, virtual machines, relational databases, anti-virus systems, secure systems and network architecture practices, intrusion detection systems and passive DNS

Accountability: This position is accountable for ensuring that the Threat Analysis technical area delivers on the execution of the statement of work for a specific customer.

Direction: The individual in this position is expected to act autonomously using CMU, SEI, and NSS, defined policies, practices, and procedures.  Additionally, this position will assist in setting Threat Analysis direction based on an understanding of customer needs.

Decisions: The individual in this position is expected to participate in the decision-making and problem solving process of designing, building and operating systems for network security; suggesting and implementing policies and procedures to support these activities; and creating prototyping implementations of tools and approaches for threat analysis.

Supervisory Responsibilities: This position has no supervisory responsibilities.

 

Job Functions or Responsibilities:

30%     Design, prototype, and transition new analysis methods and tools

30%     Identify and document high-impact, emerging, and complex active security threats

30%     Perform in-depth reverse engineering of malicious code, document and transition results in reports, presentations, and technical exchanges     

10%     Participate in and/or lead presentations to customers, analyst technical exchanges, training sessions and public speaking engagements

100% TOTAL EFFORT

 

Organizational Chart: Program Director, CERT < Technical Director, Threat Analysis < Malware Analysis Technical Manager < Threat Analyst

 

Other: Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran                                                                            

29 Sep
2016
Senior Cyber Security Researcher - 2004139
Pittsburgh, PA

Position Summary: The CMU/SEI Forensic Operations and Investigations team is a leading edge analytical resource focusing on critical U.S. Government (USG) needs.  For the past 10 years, CERT has provided analytical and operational support to high-profile investigations including numerous activities of national or international significance. Through this work the FOI can see the current limitations of digital analysis and incident response in the field first hand. Combining applied research with the unique talents, operational experience, research capabilities, and the vast knowledge base of Carnegie Mellon University, FOI is unmatched in its ability to develop new tools and methods to address cyber security limitations and critical gap areas.

This individual will serve in a multi-disciplinary role providing ongoing support to federal law enforcement, defense agencies, and the national intelligence community. As a member of the FOI team this candidate will provide support to on-going operations in the areas of incident response and investigation, full-spectrum digital forensics and applied research in emerging areas of cybercrime. At times, this position will require the team member to develop and deliver training modules related the aforementioned domains.

The successful candidate must have proven computer forensics experience in multi-jurisdiction criminal investigations, be self-directed, have a track record of creating interdisciplinary approaches to problem solving, and demonstrate exceptionally strong presentation and instructional skills. The candidate must also be able to interact with clients and staff of all levels in a highly professional and competent manner.

 

Minimum Qualifications and Requirements:

Education/Training: BS Computer Science, Information Security or other related discipline and a minimum of ten (10) years of related experience; or equivalent combination of training and experience.

Licenses: Certified Encase Examiner, ACE. CISSP, GIAC, SSCP, OSCP or other related/relevant certifications preferred.

Experience:  At least four or more (4+) year’s relevant experience in computer forensics, to include field and laboratory collection/imaging, analysis, with prior court room testimony preferred.  Technical experience required with host and network based forensics investigations and tools, analysis of Microsoft Windows, Unix/Linux and Mac OS operating systems, and removable media data recovery.

Skills/Abilities: Candidate must be able to prioritize workload and complete deliverables on time, have good technical problem-solving skills, have strong analytical and information organization skills, have excellent oral and written communication skills, and strong technical teaching skills.  Candidate must be skilled in instructional design, course development, and evaluation techniques.  Candidate must be able to multi-task and work effectively with multiple project teams and sponsors/customers. Technical proficiency with operating systems and detailed knowledge of network protocols are required.

Mobility: Sedentary in an office setting with some mobility, i.e., able to travel to various locations within the SEI and CMU community as well as travel to customer sites.

Environmental Conditions: Close contact with CRT for long periods of time.

Mental:  Ability to pay close attention to detail, meet deadlines, work under pressure, and communicate effectively.

Other:  U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.

 

Preferred Qualifications and Requirements

Education/Training: BS in Computer Science, Information Security or other related discipline with a minimum of ten (10) years of applicable experience; MS in Computer Science, Information Security or other related discipline with a minimum of eight (8) years of applicable experience; PhD in Computer Science, Information Security or other related discipline with a minimum of five (5) years of applicable experience; or equivalent combination of training and experience.

Experience: Experience with state or federal law enforcement organization; operational knowledge of recently enacted state and federal laws and procedures relating to computer forensics investigations; coordination with criminal investigators, including courtroom testimony. 

Skills/Abilities:

  • Penetration Testing

  • Information and network security including experience with IDS/IPS

  • Knowledge of common vulnerabilities, exploits and mitigations

  • Digital Forensics (host, network and mobile devices)

  • Incident Response

  • Ability to research and characterize security threats including defining appropriate countermeasures

  • Hardware or software reverse engineering for either vulnerability discovery/assessment or malware analysis

  • Virtual infrastructure and hypervisors

  • Experience with common security controls including firewalls, proxies, IDS/IPS, Web Application Firewalls

  • Technical knowledge of fundamental Internet protocols, services, and technologies to include HTTP, TLS, DNS, SMTP, TCP/IP, ICMP, AJAX, JSON, REST

  • 2+ years with a scripting language including SQL, Python, Ruby, JavaScript, Perl, PHP and/or shell scripting

 

Accountability:  The incumbent is accountable for the definition, creation, and maintenance of final deliverables and products.

Direction: The incumbent is expected to act independently using CMU and SEI defined policies, practices, and procedures.

Decisions:  Required to design, develop, pilot and deliver products.  Required to accurately represent NSS and its technical work in interactions with customers, sponsors, and the public.

Supervision:  Contributes to hiring decisions of program staff; mentors junior staff; supervises student interns.  The experienced candidate may perform project management responsibilities.

 

Job Functions or Responsibilities:

55%     Operational support for SEI customers.

20%     Perform applied research in emerging areas of digital forensics.

15%     Deliver technical and management training to customers.

5%       Mentor, guide and interact with team and other staff.

5%       Contribute to the research and technical agendas of the FOI. 

 

Organizational Chart:  CERT Division Director, Technical Director, Cyber Security Solutions > Deputy Director, Cyber Security Solutions > Technical Manager, Forensic Operations and Investigations > Senior Cyber Security Researcher

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

29 Sep
2016
Systems Administrator - 2004185
Pittsburgh, PA

Position Summary: The Web Services Systems Administrator (WSSA) is part of the Web Services team within the Office of the Chief of Staff/Office of the Chief Information Officer (OCOS/OCIO).  The WSSA is responsible for managing and implementing research and production Linux-based web services.  The WSSA is responsible for the secure configuration, deployment and operation of Intranet and Internet-facing web services using various technologies including Java/J2EE, Apache/Tomcat, LAMP, commercial products (e.g. Atlassian Confluence, JIRA, Bamboo, and BitBucket Server), and search appliances.

 

Minimum Qualifications and Requirements:

Education/Training: BS or BA in Computer Science, Information Science, or Information Technology or an equivalent combination of training and experience.

Licenses: None

Experience:  Three of more years of experience as a systems administrator in a high-availability production environment; at least 12 contiguous months of relevant experience served in the same organization evolving a specific infrastructure.  Candidate must have experience in the secure deployment and on-going maintenance of Internet-facing web-based information systems.  Experience in the deployment, testing, and secure management of web applications based on Apache, PHP, Java technologies (JSP, J2EE, servlets) and data sources (e.g. databases, XML).  Candidates should also have experience in architecting and implementing multi-tier web services.

Skills/Abilities: A working understanding of web service protocols, superb script writing and maintenance (e.g., Python, Bourne shell, PERL, PHP, Ruby) skills.  Ability to administer production LAMP (Linux, Apache, MySQL, PHP/Perl) and Java services in an enterprise environment.  Working knowledge of one or more application languages (Java , PHP, and Perl).  Candidate must understand the issues surrounding security of Intranet and Internet-facing systems in production environments and be able to discuss options in the context of a risk analysis for a deployment.  Knowledge of Unix/Linux systems in the areas of security, performance tuning and troubleshooting is required for this position.

  • Ability to collaborate across functional teams to achieve desired objectives
  • Excellent analytical, organizational, reasoning and problem solving skills
  • Ability to interact effectively with SEI and external customers, especially in requirements elicitation
  • Work in a changing environment with a strong learning capability
  • Work successfully on multiple complex tasks in a team environment
  • Organize his/her work and meet deadlines
  • Strong verbal and written communication skills

Mobility: The qualified candidate must be able to work in a normal sedentary position with some mobility (e.g., going to other offices to investigate problems, attending meetings on campus or conferences). Occasional business travel required.

Environmental Conditions: Normal office setting.

Mental: The qualified candidate must be able to work well under pressure in a constantly changing environment, deal with stressful situations while maintaining composure, and prioritize the tasks associated with multiple groups in a team environment.

Other:  Evening/weekend hours may be required in order to meet production deadlines or to handle maintenance windows outside normal business hours on an infrequent basis. There is a rotating on-call component to this position – average call volume is very light, about 3-5 calls/week. Candidate must be able to respond to outage events at the main facility in Pittsburgh, PA (Oakland) in a reasonable time (e.g. within ~30 minutes).

Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: MA or MS in Computer Science, Information Science, or Information Technology or an equivalent combination of training and experience.

Licenses: None

Experience: Over 12 contiguous months of experience relevant to the minimum qualifications served in the same organization supporting the same network infrastructure.  Experience managing a Microsoft-oriented web application stack (IIS, .NET, ASP,) in addition to the minimum LAMP/Java requirement. Experience managing a development stack (e.g., JIRA, Confluence, Bamboo, Bitbucket Server, HipChat) that supports a DevOps community. Extensive experience in designing deploying, securing, administering, and troubleshooting multiple redundant, complex, multi-tier web application systems.  Knowledge of the Java and PHP languages to debug application issues and assist as necessary in the development and deployment of applications.  Enterprise-level experience in the use and management of content-management systems and EDI systems as key applications in non-technical business units’ daily workflow.  Experience with search applications/appliances and the content issues that impact search effectiveness.

Experience working with and/or managing third-party contractors working with internal staff on web applications.

Other: Existing DoD clearance.

 

Accountability: Employee is accountable for describing, implementing and/or maintaining an efficient, reliable and secure configuration of computing services in support of OCOS initiatives and/or a sponsor/client.

Direction: Employee will be expected to work under minimum supervision within the defined scope of authority and in accordance with Web Services guidelines.

Decisions: Under management direction, employee will decide the appropriate configuration for production computing services.  Employee will determine how best to allocate and/or acquire resources necessary to implement and evolve information services.

Employee will determine the cause of computing problems and take corrective action in a timely fashion when a system/service fails or becomes unavailable.

Employee will describe the appropriate procedures to configure and maintain a particular computing system to support one or more critical business functions in a secure manner.

Supervisory Responsibilities: Employee may, at the manager’s discretion, task/supervise student/temporary employees in completion of specific tasks.

Employee will provide assistance to staff members/clients in the proper configuration/use of computer hardware and software services and tools.

Employee may be required to participate in activities aimed at verifying user-managed systems’ compliance with relevant “acceptable use” policies.

 

Job Functions or Responsibilities:

40%     Maintenance and evolution of Internet-facing and Intranet web services and applications.

30%     Work across functional teams to architect, develop, and test web applications.

10%     Maintenance, troubleshooting and upgrading of other production services

5%       Providing technical guidance to users of deployed services

5%       Documentation (e.g., administrative procedures, SLAs, et cetera)

5%       Professional development – including training classes, seminars and other learning opportunities. Maintaining awareness of evolving trends and techniques in the web services realm.

5%       Other duties as assigned including meetings and interaction with other SEI staff

100% TOTAL EFFORT

 

Organizational Chart: Chief Information Officer < Web Services Manager < Web Services Systems Administrator

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

07 Sep
2016
Linux Systems Administrator - 2004030
Pittsburgh, PA

Position Summary: The individual in this position will work as a member of the IT staff on the Unix Systems Team.  The primary responsibility of this position is the operation and administration of systems hosting various Linux-based information services in a multi-platform environment. Desirable candidates will have:

  • Experience operating and maintaining production Linux-based IT services
  • Working knowledge of system administration scripting languages (Bourne Shell, Perl)
  • History participating in the entire lifecycle (planning, deployment, maintenance) of critical IT services

 

Minimum Qualifications and Requirements:

Education/Training:  BS in Computer Science, Information Science, Information Technology with at least three (3) years of experience or equivalent combination of training and experience.

Candidates with a degree in other technical fields (e.g., engineering) and 3 years of relevant experience as described above will be considered as well.

Experience: Candidate must have experience in the operation and maintenance of Linux-based systems hosting a variety of applications, a basic understanding of IP networks, a basic understanding of mail systems, basic script writing and maintenance skills (e.g. BASH, Perl), general administrative familiarity with open-source technologies (e.g. Sendmail, BIND, MySQL, Apache).

Skills/Abilities: Candidate should be capable of operating and administering Linux systems and their applications with little technical oversight based on documented operations practices.  Demonstrable skill in analyzing logging and other diagnostic output from multiple systems to troubleshoot and resolve issues is required.  Temperament to serve as a second-tier escalation point for issues from the helpdesk and to function as a liaison between customer groups, the helpdesk and systems engineers is required to perform well in this role.

Mobility:  Some infrequent business travel required. Computer hardware installation and configuration required on a regular basis, sometimes involving transport of heavy objects (typically under 100 lbs.) short distances, use of hand tools, et cetera. Carrying of light objects (< 20 lbs.) for longer distances (intra-campus; 2-3 city blocks) may also be required.  Will have to travel to other campus locations on a daily basis.

Environmental Conditions: Close contact with CRT/LCD screens for extended periods; periodic work in a computer datacenter environment.

Mental:  Ability to work under pressure and meet deadlines; ability to prioritize tasks; strong learning capability; ability to interact effectively with others of varying technical competency, vendors, managers, and other technical research staff; ability to work effectively with all levels of staff within the SEI and Carnegie Mellon. Good technical problem-solving skills. Strong information organization skills as well as good oral and written communication skills are required.

Other:  Evening/weekend hours will be periodically required in order to perform service outside of normal operating hours. There is a rotating on-call component to this position – average call volume is very light, about 3-5 calls/week. Candidate must be able to respond to outage events at the main facility in Pittsburgh, PA (Oakland) in a reasonable time (e.g. within ~30 minutes).

Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Licenses: RHCE, RHCT

Experience: Experience in the preparation of systems to conform to DISA STIG guidelines, executing Security Readiness Review (SRR) scripts, following DISA Security Checklists and resolving findings in preparation for IA review and accreditation.  Some skill at automating log analysis and generating reports from analysis is desirable. At least 12 months of said relevant experience served in the same organization evolving a single infrastructure is preferred. Enterprise-level operation of collections of systems running Red Hat Enterprise Linux is preferred to other Linux experience.  Experience in administering Linux systems in a virtualized environment (e.g. VMware ESX) would be helpful.

Skills/Abilities:  Experience with compiling, packaging and debugging software packages.  Desirable candidates will also have working experience with iptables firewalls, basic software building, advanced troubleshooting of multi-system applications and general software development skills in a Unix-based language such as Perl, Python or Ruby.  Experience with systems management tools such as Spacewalk, Red Hat Network Satellite, CFEngine, Puppet is preferred.

Other: Clearances: United States DoD Top Secret that is transferrable to the SEI.

 

Accountability: Employee is accountable for describing, implementing and/or maintaining an efficient, reliable and secure configuration of computing services in support of the SEI’s initiatives and/or a sponsor/client. Employee may be responsible for the proper handling/destruction of confidential, sensitive or classified information.

Direction: Employee will be expected to work under some supervision within the defined scope of authority and in accordance with SEI and IT operating guidelines.

Decisions: Under management direction, the employee will decide the appropriate configuration for production computing services for programs within the SEI. Employee will determine how best to allocate and/or acquire resources necessary to implement and evolve information services.

Employee will determine the cause of computing problems and take corrective action in a timely fashion when a system/service fails or becomes unavailable.

Employee will describe the appropriate procedures to configure and maintain a particular computing system to support one or more critical business functions in a secure manner.

Supervisory Responsibilities:  Employee may, at the manager or team leader’s discretion, task/supervise student/temporary employees in completion of specific tasks.

Employee will provide assistance to staff members / clients in the proper configuration/use of computer hardware and software services and tools.

 

Job Functions or Responsibilities:

40%     Participates in the administration and operation of Linux services for the SEI.  Drafts documents to describe the proper configuration/use of such services from an IT perspective when necessary.

Regularly reviews logging and other output sources and takes actions based on operating conditions.  Performs software updates and host servicing as necessary.

40%     Functions as an escalation point for issues from first-line support that cannot be handled in that group due to skill or privilege restrictions.

5%       Packages software for use in the Linux infrastructure.

10%     Maintains and updates operational documentation

Secondary Functions

5%       Training and professional development.

100% TOTAL EFFORT

 

Organizational Chart: SEI Chief Information Officer < Systems Group Manager < Linux Systems Administrator

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

29 Aug
2016
Arlington, VA Career Fair
Arlington, VA

The Software Engineering Institute at Carnegie Mellon University is hiring.

Join us at our invitational career fair in Arlington, VA on September 28-29, 2016.

SEI staff will be interviewing in Arlington, VA to fill immediate local positions. At the SEI you will have opportunities to make an impact on internet security and work with some of the most talented people in the field.  

Pursue your passion and work alongside world-recognized leaders in the field of software engineering and cyber security. Our staff works with the highest levels of U.S. government and industry to secure the nation’s critical infrastructure, improve mission-critical systems, and advance the state of the art.

We are hiring in the following areas:

Cyber Security Workforce Exercise Development                             Insider Threat Research
Software Architecture                                                                         Information Security Research
Software Development                                                                       Critical Infrastructure
High Performance Computing                                                            Network Security Deployment
Vulnerability Assessment                                                                   Cloud Computing
Malware Analysis                                                                                Systems Administration
Network Defense Analysis                                                                  Solutions Engineering

Penetration Testing                                                                             Information System Security Management
 

*You must have a degree in computer science, electrical engineering, mathematics, or a related discipline (master’s degree or doctorate preferred), and you must be eligible to obtain a Department of Defense security clearance.

*INTERVIEWS ARE BY APPOINTMENT ONLY.

*An SEI representative will contact you if there is initial interest.

 

-  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  - -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -

 

The Software Engineering Institute

The SEI is a research organization on the cutting edge of cybersecurity. Using proven software engineering principles and practices, we serve as a national resource in software engineering, computer security, and process improvement.

Our collaborative work environment enables our staff to participate in cross-functional teams in the CERT Division, the SEI, other Carnegie Mellon departments, and across the global community.  We also recognize the value of professional growth and take advantage of opportunities to increase subject matter knowledge and leadership capabilities.

Excellent Employee Benefits

The university offers competitive employee benefits, including

  • Carnegie Mellon tuition benefit programs for you and your dependent children

  • Health benefits (a wide selection of medical insurance plans from several different providers, drug prescription plans, flexible spending accounts, multiple vision and dental plans)

  • Competitive (8%) salary contributions to 403(b) retirement accounts

  • Relocation assistance

  • Lifestyle support (university-run child care, free public transportation, paid time off, etc.)

 

29 Aug
2016
Pittsburgh, PA Career Fair
Pittsburgh, PA

The Software Engineering Institute at Carnegie Mellon University is hiring.

Join us at our invitational career fair in Pittsburgh, PA on November 17 - 18, 2016.

SEI staff will be interviewing in Pittsburgh, PA to fill immediate local positions. At the SEI you will have opportunities to make an impact on internet security and work with some of the most talented people in the field.  

Pursue your passion and work alongside world-recognized leaders in the field of software engineering and cyber security. Our staff works with the highest levels of U.S. government and industry to secure the nation’s critical infrastructure, improve mission-critical systems, and advance the state of the art.

We are hiring in the following areas:

Cyber Security Workforce Exercise Development                            Insider Threat Research
Software Architecture                                                                        Information Security Research
Software Development                                                                      Critical Infrastructure
High Performance Computing                                                           Network Security Deployment
Vulnerability Assessment                                                                   Cloud Computing
Malware Analysis                                                                               Systems Administration
Network Defense Analysis                                                                 Solutions Engineering

Penetration Testing                                                                           Front-End Web Developer
 

*You must have a degree in computer science, electrical engineering, mathematics, or a related discipline (master’s degree or doctorate preferred), and you must be eligible to obtain a Department of Defense security clearance.

*INTERVIEWS ARE BY APPOINTMENT ONLY.

*An SEI representative will contact you if there is initial interest.

 

-  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  - -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -  -

 

The Software Engineering Institute

The SEI is a research organization on the cutting edge of cybersecurity. Using proven software engineering principles and practices, we serve as a national resource in software engineering, computer security, and process improvement.

Our collaborative work environment enables our staff to participate in cross-functional teams in the CERT Division, the SEI, other Carnegie Mellon departments, and across the global community.  We also recognize the value of professional growth and take advantage of opportunities to increase subject matter knowledge and leadership capabilities.

Excellent Employee Benefits

The university offers competitive employee benefits, including

  • Carnegie Mellon tuition benefit programs for you and your dependent children

  • Health benefits (a wide selection of medical insurance plans from several different providers, drug prescription plans, flexible spending accounts, multiple vision and dental plans)

  • Competitive (8%) salary contributions to 403(b) retirement accounts

  • Relocation assistance

  • Lifestyle support (university-run child care, free public transportation, paid time off, etc.)

15 Aug
2016
Information System Security Manager - 2003860
Arlington, VA

This position is located in Arlington, VA.

Position Summary:  The Information System Security Manager is a hands-on information system security role within the Office of the CIO Information Assurance (IA) team of the Software Engineering Institute (SEI) that operates, monitors, and maintains accredited information systems. This is an opportunity for a cleared IA professional in the Arlington VA area with strong organization and communication skills and working experience with modern Windows system administration tools and operating techniques in a Windows-based accredited network. This position is responsible for facilitating and assuring that information systems in the Arlington VA office remain complaint with DoD and other USG regulations. The position works closely with SEI groups and outside sponsors to coordinate the certification and accreditation of accredited information systems.

 

Minimum Qualifications and Requirements:

Education/Training: Bachelor’s degree in Computer Science, Information Technology, or related field, or equivalent combination of training and experience. Current Microsoft server certifications; one or more of MCITP (Server & Client), MCSA, MCSE, etc.

Licenses:   One or more of: CAP, CASP CE, Security+CE, SSCP, GSEC, CISM

Experience: Five or more (5+) years of system and network administration experience using modern system administration tools and operating techniques in an accredited production Microsoft Windows infrastructure. Prior experience as an ISSO / ISSM (IAO/IAM) in a small to medium-scale classified enclave. Experience as a system / network administrator for services under government cognizance (e.g., DISA, DSS); knowledge of the DOD STIGs and their application in establishing and operating information systems. Experience confirming audit records and STIG compliance for systems in an accredited Microsoft Windows infrastructure.

Skills/Abilities: Problem solving skills. Demonstrated knowledge of Windows operating system commands/utilities; demonstrated knowledge of system administration tools and processes such as those used to manage software, Group Policy Objects, and other aspects of Active Directory; demonstrated knowledge of server and network problem resolution based on examination of events/alerts and system monitors/logs.

Physical Mobility: Some infrequent business travel required involving overnight stays. Computer hardware installation and configuration required on a regular basis, sometimes involving transport of heavy objects (typically under 100 lbs.) short distances, use of hand tools, et cetera. Carrying of light objects (< 30 lbs.) for longer distances (intra-campus; 2-3 city blocks) and lifting of equipment weighing ~50 pounds may also be required. 

Environmental Conditions: Normal office condiditons, close contact with computer displays for prolonged periods of time.

Mental: Ability to identify, isolate and resolve systems problems. Communicate the nature of problems to different parties (e.g., system / network administrators, IA professionals, IT user support, etc.) to resolve technical issues, sometimes under pressure. Temperament and maturity to self-motivate and prioritize tasks with input from a remotely located manager.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance. Must meet and maintain DoD 8570-M readiness requirements within six (6) months of employment. Additional work hours (weekend and evening hours) may be required on an infrequent basis. May be required to stay at or return to work during incidents and/or emergencies to perform duties as requested.

 

Preferred Qualifications and Requirements:

Licenses:   One or more of the following: Active CISSP (or Associate), GSLC, CISM.                                                                                            

Experience:  ICD-501/503 experience; prior use of the ACAS tool chain, Security Content Automation Protocol (SCAP) validation tools, awareness of NISPOM IS-relevant rules, etc.

 

Accountability:  Ensures server(s) and client stations are operating efficiently and resolves issues. Verifies that accredited systems maintain their prescribed configuration and addresses/reports deviations from same immediately.  Recommends and performs modifications to enhance server/service performance and reliability.

Regularly communicates with the ISSO and ISSM as well as IT engineering group leaders in Pittsburgh to convey operational status information relevant to the services in scope.

Responsible for proper handling (e.g., safe storage, proper marking, approved destruction) of document and media used in the operation and maintenance of classified systems.

Responsible for providing information relating to equipment and facility needs each fiscal planning session to aid in budgeting expenses related to the operation of accredited systems in “closed” areas.

Participates in the development or revision of IS-specific security safeguards and local operating procedures to satisfy certification requirements. Works with the ISSM and ISSO in Pittsburgh to align policies to DC operations.

Direction:  Works under limited supervision from a remote manager as part of the OCIO IA team.

Expected to act independently to maintain and securely operate accredited systems with guidance from the lead ISSM, FSO, and OCIO senior management. Draws guidance from relevant operational security guidelines / manuals, turning to the lead ISSM for clarification when needed.

Most work is performed independently, or in concert with the lead ISSM and appropriate IT staff.

Decisions: Must be able to identify user and systems issues and resolve trivial issues independently. Information Security issues and complex operational problems are handled in concert with the ISSO, ISSM and appropriate IT or Security staff.

Supervisory Responsibilities:  No regular staff supervisory responsibilities.

Regularly inspects accredited systems and may task other IT personnel in order to address infractions or post-audit POA&M issues.

Will assist in the training process for new staff and users of accredited systems.

 

Job Functions or Responsibilities:

20%   Installs, maintains, configures and upgrades accredited servers, workstations and network devices in accordance with most current STIG documents. Assists users to resolve problems related to closed area systems and services.

15%   Reviews server logs directly or with analysis tools to discern operational anomalies, including operational threats (e.g., resource contention/exhaustion) and security concerns; addresses and/or reports these to IA colleagues or IT as appropriate.

15%   Reports on the operational status of accredited information systems based on reviews and scans to accrediting agencies, possibly through established channels such as ACAS, HBSS, etc. Reporting is coordinated with the IA team in the Pittsburgh office.

10%  Performs C&A duties including submission of accreditation documents. Drives IS related self-inspection activities and C&A / CCRI preparations. Primary interface to the local DSS IS representative.

10%  Performs classified IS user indoctrination briefings and manages IT accounts / credentials of classified systems, including required recordkeeping (account lifecycle, DoD IAA training status, policy acknowledgements, etc.).

5%   Functions as the secondary COMSEC custodian for the SEI Arlington (a/k/a DC) office responsible for device inventory, key management and loading, etc.

5%   Supports the FSO to prepare for traditional security inspection activities, complete self-inspections, etc.

5%   Performs limited FSO or CSSO duties in a backup capacity as directed.

Secondary Functions

10%    Other IT / IA related duties as assigned by the OCIO.

5%    Training and professional development to keep current with new technologies and regulations.

100% Total Effort

 

Organizational Chart:  CIO < Deputy CIO < Information System Security Manager

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

15 Aug
2016
Senior Engineer - SSD Washington Operations - 2003668
Arlington, VA

Position Summary: This position reports to the Associate Director, Software Solutions Division (SSD) Washington Operations in Arlington, Virginia or the Associate Director’s Senior Engineer designee.  The person in this position will function as a member of SEI project teams delivering technical expertise and solutions to DoD and Federal agency clients engaged in the acquisition and sustainment of complex, software intensive systems with an emphasis on information systems. The scope of this position includes applying evidence based practices to (1)  identify and translate key user and stakeholder business goals/functions/workflows into information system functional and non-functional systems requirements; (2) implement commercial off-the-shelf (COTS) software solutions and provide technical advice and mentorship on application of Agile software development methods; (3) engage on-site with Chief Information Officer (CIO) and line-of-business leadership, management, and staff in analysis of enterprise and vertical business and IT systems, including applications and data, IT governance, processes, methods, and workflows; (4) lead SEI project task activities and serve in a project management role with responsibilities for developing project milestone plans, project budget and financial controls, and executing the life cycle of project deliverables. The person in this position will interact with staff across the SEI to leverage the expertise of the Institute to achieve customer success. 

 

Minimum Qualifications and Requirements:

Education/Training:  Bachelor's degree in information systems, systems engineering, software engineering, or equivalent combination of experience and training.

Experience: The candidate must have at least ten (10) years’ experience in DoD or other federal agency organizations and settings involving the acquisition, operation, and sustainment of information systems. Must be knowledgeable of the roles, responsibilities, and functioning of a CIO (or CIO-equivalent) organization and its governance- or consulting-related relationships with line-of-business organizations to enable IT needs in dealing with modernization of legacy business processes, workflows, and IT systems. The candidate must have supervisory and project management experience in forming and leading teams engaged in the building, leading, managing, and participating on cross-functional, high technology teams, should be able to operate effectively with all organizations within the software and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.   

Skills/Abilities:  Strong technical abilities coupled with written and verbal communications skills to include the ability to craft and make presentations internally within SEI and to external clients. Keen interpersonal skills to build relationships with clients at the leadership, management, and staff levels.  Program and project management skills to develop project plans, scope and track deliverables, manage risks, and perform financial management duties. Ability to lead and participate in multidisciplinary teams.

Experience in three or more of the following:  (1) Solid technical breadth and understanding of all aspects of the end-to-end software lifecycle (e.g. requirements, design, implementation, testing, operations, sustainment, etc.) and configuration management; (2) Enterprise Resource Planning (ERP) systems; (3) IT Infrastructure Library (ITIL) v3 Service Management; (4) Implementation of COTS software tools or platforms for team collaboration, automated business process workflows, and knowledge management, such as Microsoft SharePoint and Atlassian JIRA; (5) Agile software development methods.

Mobility:  Will be required to travel on overnight assignments; work on-site at customer locations in the Washington D.C. area.

Environmental Conditions: Usual office setting with extended use of typical office computers (display screens and input devices), and other office automation equipment.

Other:   Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training:  Master's degree in Computer Science, Information Systems, systems engineering, or software engineering, Business Management, or acquisition management with 8 years’ experience.

Experience: Experience in DoD or other federal agency organizations and settings involving the acquisition, operation, and sustainment of information systems.

Licenses/Certifications: Certified Scrum Master, Certified Project Management Professional, or Software Architect/Enterprise Architect.

Skills/Abilities:  Experience as a consultant or government employee working at the DoD/Federal level in a Program Executive Office (PEO), Program Management Office (PMO) for a formal acquisition program, and/or on a CIO staff.

 

Accountability:  The member will be directly accountable for understanding DoD acquisition needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction: As a technical staff member, this person will be expected operate with minimum supervision using CMU and SEI defined practices, policies and procedures, in concert with the SEI mission.

Decisions: Will be required to work with government organizations to identify strengths and weaknesses within the acquisition/sustainment program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  The person selected for this position may supervise others on a team.

 

Job Functions or Responsibilities:

85%     Participate as a leader or member of technical teams in support of government CIO, line of business, or program offices delivering expertise to solve IT acquisition, operations, or sustainment issues.

15%     Other duties as assigned by the Associate Director, SSD Washington Operations or their designee.

100% Total Effort

 

Organizational Chart: SEI Director's Office > Director, Software Solutions Division > Associate Director, Software Solutions Division > Senior Engineer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

15 Aug
2016
Senior Research Scientist - Research Group Lead - 2003869
Pittsburgh, PA

What we do: The SEI Emerging Technology Center helps the government stay on the edge of technology. The world is innovating software and information technologies rapidly, and the Center identifies, demonstrates, and applies emerging software technologies to meet critical mission needs. We promote government awareness and knowledge of emerging technologies and their application, and our work shapes and leverages academic and industrial research.
 

Position Summary: The SEI Emerging Technology Center matches state-of-the-art software research with critical U.S. Government (USG) needs. We are seeking a Senior Research Scientist who will also fill the role of Research Group Lead.

The Senior Software Developer – Research Group Lead will support the Center’s mission by capturing government needs and identifying, shaping, and guiding research that matches these needs and operationalizing research concepts in a realistic USG environment.  The Research Group Lead is responsible for managing and professionally growing technical research staff, while ensuring successful work that meets our customers’ mission needs. If you 1) possess excellent analytical, organizational, supervisory, reasoning, and problem solving skills, 2) are a researcher passionate about big data, cloud computing, human information interaction, analytics/machine learning/data mining/knowledge discovery, or scalability, and 3) are committed to bringing innovation to government and beyond, then this is the position for you.

The Senior Research Scientist – Research Group Lead will have demonstrated technical expertise and management experience; be a solid presenter capable of communicating with and in front of internal and external leaders, collaborators, and customers from diverse military, government, and academic backgrounds;  be able to respond quickly and effectively to changing priorities and possess the ability to work simultaneously on multiple projects; have excellent written and oral communication skills and good interpersonal skills; and have the ability to convey a sense of purpose and mission that motivates others.

Duties include:
Take a hands-on lead role for the Research Group, which consists of Research Scientists; supervise and assist in professionally developing Research staff; work with the Center’s leadership team to plan, develop, and implement an overall research strategy, initiate and conduct novel research in-line with the Center’s broad technical focus of “data-intensive scalable computing,” and lead and collaborate with other research and development technical staff in the Center and across the SEI; directly participate in forming a research agenda and assist the Center in establishing a national agenda in future technology; develop research ideas in collaboration with sponsors and customers, collaborate with world leaders in the academic community, lead and conduct hands-on research, and direct research staff to advance ideas in support of the Center’s current and future customer needs; work closely with the Center Director to define our near-term and strategic research approach and agenda, as well as lead, conduct, and direct research projects.

This position will afford the opportunity to participate in strategic planning for the whole Center as part of an interdisciplinary team of highly talented visionaries. The work requires a deep understanding of technical challenges and emerging trends in computing and information science and an awareness of opportunities in industry and government. It also requires effective formulation and presentation of forward-looking ideas. While deep technical knowledge in one or more fields is desirable, a demonstrated track record of research contributions across multiple fields is preferred. The SEI Emerging Technology Center and our customers are inherently interdisciplinary.

Specific responsibilities include the following. Interface directly with USG customers to identify, capture, and articulate critical software-related capability needs, specifically in the domain of data-intensive scalable computing; identify, shape, and guide research activities directed at filling critical USG computing and information needs; leverage research ideas to design, document, and oversee the development of solutions relevant to critical government needs; oversee interdisciplinary development teams from problem definition to solution concept to solution development, test and evaluation, and technology transition; develop and operationalize novel transition strategies for taking solutions from research concept to operational capability; promote and practice user-centered design methodologies throughout the solution life-cycle, from research concept to operational capability; publish and promote Center research to raise awareness and broaden the reach of Center and SEI work; and mentor other Center staff and collaborators on research methods, technical areas of expertise, user-centered design concepts, and solution design principles.

 

Minimum Qualifications and Requirements:
Education/Training: Bachelor of Science in Computer Science, Information Systems, or related field with ten (10) years’ experience or equivalent; Master of Science in Computer Science, Information Systems, or related field with eight (8) years’ experience or equivalent; Ph.D. with five (5) years’ experience or equivalent combination of training and experience.

Experience: The candidate should have experience building, leading, and managing technology research teams; be able to effectively interact with partners, customers, and sponsors; have demonstrated management experience with responsibility for projects and people; have experience with budgets and/or contracts; have a solid track record of accomplishment in technical organizations; be able to make decisions and recommendations that have positive impacts on projects; understand and appreciate the interplay between technology and policy; and have the ability to influence, work with, manage and professionally develop technical staff.
Professional experience listed above should include the following areas: leading research and research teams; capturing and documenting user/customer needs and requirements in complex technical areas under uncertainty and changing requirements and priorities; conducting research and applying scientific methods; basic and applied research; facilitating participatory design and innovation sessions for all aspects of software, solutions, and research design concepts; software development in support of research and taking software capabilities from the lab to operations; hands-on modeling and simulation, data analysis/analytics, and large-scale computing; visual communication of complex ideas and concepts; preparing and delivering technical proposals, papers, and presentations; conducting user-centered design activities including user studies, novel prototyping, and exploring multiple solution concepts in parallel; and design of information architectures for complex human-centered software systems.

Experience working with DARPA, IARPA, Service Labs, or other government research sponsors is a plus. Ideal candidates have three to five years of progressively responsible experience in a technology- or research-based organization in government, industry, or higher education; three to five years’ experience in researching, developing, or applying data-intensive scalable computing in a commercial or DoD/government-related environment; and experience in building and managing high technology research teams. The candidate should have in-depth knowledge of software and systems engineering; demonstrated success in formulating and delivering successful research proposals to the federal government and in leading the resulting projects; demonstrated record of publications and contributions to the science and technology community; and demonstrated management experience with responsibility for projects, people, budgets, and contracts.

Skills/Abilities: The candidate should have knowledge in the following technical fields and subjects: software engineering including design, architecture, development, testing, and deployment; human-computer interaction, human-machine interaction, and human-information interaction; modern computing, data, and storage solutions; data processing architectures (MapReduce, Hadoop, NoSQL); cloud computing; analytics, data mining, machine learning, knowledge discovery; information analysis, visualization, and manipulation tools and techniques.

The candidate must be a visionary leader with a strong sense of purpose and a reputation for the highest level of integrity. The candidate should have a track record of accomplishment in leading the research agenda for technology-based organizations; a high comfort level with ambiguity; the ability to respond quickly and effectively to changing priorities; the ability to build consensus within a matrixed organization; the ability to lead and participate in multidisciplinary teams; the knowledge to make decisions and recommendations that significantly change important public policies or scientific programs; an understanding of and appreciation for the interplay between technology and policy; the ability to influence, work with, and manage technical staff; excellent analytical, organizational, supervisory, reasoning, and problem solving skills; and the ability to interact effectively with diverse constituencies internally and externally.

The candidate must be well equipped to establish and maintain relationships with colleagues and customers, and to present current research and secure new work. The candidate must have strong communication skills and must be able to collaborate with software developers, analysts, and non-technical experts; confidence in presenting to high-visibility stakeholders internal and external to the organization; the ability to interface with clients, develop proposals, and establish relationships with new DoD and/or government clients; and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight). 

Physical Mobility: Primarily sedentary in an office setting with some mobility. Flexible to travel to various locations within the SEI and CMU community, sponsor sites, conferences, and offsite meetings potentially with routine frequency.

Environmental Conditions: Normal office conditions; close contact with computer screen for extended periods of time.

Mental: The candidate must be able to design and develop detailed problem formulations and research approaches based on requirements elicitation from internal and external stakeholders; communicate with software developers, analysts, and non-technical experts; work meticulously with attention to detail; remain calm during difficult situations; meet inflexible deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities and frequent interruptions; deal collaboratively, diplomatically, and successfully with customers, co-workers, and other professional colleagues, managers, and staff; grasp the big picture, direction, and goals of an effort; interface with world-class research community; develop and communicate innovative ideas; take a leadership role in technical projects; oversee the technical activities of teams of researchers, developers, and designers; take leadership role in personnel management of technical research projects; and quickly learn new procedures, techniques, and approaches.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Ph.D. in Computer Science, Engineering, Mathematics, Information Systems, or related discipline with five (5) years’ experience, or equivalent combination of training and experience.
 

Accountability: Responsible for transforming vague and uncertain customer needs and requirements into clear problem statements and research programs. Research will always be conducted with a solutions and outcome focus. This includes matching problems to research ideas, technology capabilities, and ultimately solutions. This also includes working with and supervising teams of researchers and other technical personnel to create solutions.

Direction: Work with minimal supervision in accordance with SEI procedures and policies, such as those involving product development, team interaction, and confidentiality.

Decisions: Conduct research, make decisions about research approaches and ideas, explore and specify solutions and designs, and make implementation choices for a wide range of data-intensive scalable computing problems. The Senior Software Developer – Research Group Lead will conduct research staff personnel management and make decisions about day-to-day technical research project activities.

Supervisory Responsibilities: Supervise a small to medium-sized group of researchers or research programmers (2-10 team members); act as a mentor to research scientists and other technical staff. The Senior Software Developer – Research Group Lead may eventually directly supervise several team leads who in turn will supervise a maximum of six technical research staff to a team. 

 

Job Functions or Responsibilities:

60%     Technical Leadership and Personnel Management - Lead, direct, and oversee the activities of a group of research scientists working on diverse set problems and projects; develop and manage research scientists.  Interface with USG technical and research customers to understand, capture, and translate USG problems to the research community and other SEI staff focused on developing meaningful research problems, conducting research, and developing solutions. Lead, conduct, and facilitate exploration and innovation sessions and workshops to elicit clear definition of USG challenges and concepts. Craft and conduct research in partnership with USG customers, academic partners, SEI staff, and industry collaborators where appropriate.

15%     Serve as a principal advocate for the research of the SEI Emerging Technology Center. Formulate and evolve the research strategy and work with Center management to implement that strategy. Assist with formation and growth of the research team and recruiting appropriate talent.

15%     Serve as liaison to internal CMU/SEI functions and programs in active and potential areas of research. Build external relationships to foster research collaborations. Represent the SEI Emerging Technology Center to the S&T community by participation in S&T community events and forums. Work with Center management to identify critical research areas and research opportunities that support the needs of current and future customers.

10%     Mentor internal researchers, designers, and software developers; communicate the design of solutions to internal stakeholders; and provide technical guidance on integration and design to external stakeholders.

100% Total Effort

 

Organizational Chart: SEI Emerging Technology Center Director < Senior Research Scientist – Research Group Lead

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

11 Aug
2016
Front End Web Developer - 2003847
Pittsburgh, PA

Position Summary:  At the SEI, we work in a dynamic environment that relies on having the right tools and information at our fingertips. So when things get in the way of progress, the Technical Solutions and Special Projects team steps in to remove these roadblocks. The team manages a portfolio of web applications that organize key business information and link employees to the knowledge assets they need to do their job more effectively. As we continue to grow, our Senior Front End Developers play a significant role in furthering our code standards, ensuring the highest code quality and best user experience possible in coordination with our designers, user experience strategists, and backend developers.

As a member of the team, this position works collaboratively across the organization to identify key business challenges and collaborate with team members to build enterprise solutions that are reliable, scalable, and provide a great user experience.

This position participates in the full lifecycle of application development with a primary focus on front end web development. Key responsibilities include collaborating with stakeholders to understand business processes, designing and implementing systems that meet those requirements, and shepherding the system throughout its lifecycle with other IT groups.

Here’s an idea of the kind of tasks you’d be working on:

  • Writing advanced, well-documented, and clean JavaScript, CSS/SCSS, and JSP code to support Java-based application frameworks lending towards responsiveness and interactivity
  • Keeping up with the latest trends in front-end development
  • Opportunities to expand through mentoring and collaboration with designers, user experience strategists, engineers, and writers
  • Code reviews and peer support
  • Uphold internal coding standards and help further those standards
  • Integrating with other teams throughout the company to help development of front end solutions

Key skills required for this position are advanced frontend web development knowledge in JavaScript, CSS, SCSS, responsive design, and dynamic languages such as PHP. Must also have a strong understanding of Git, advanced debugging skills, be familiar with data exchange formats such as JSON, and the ability to successfully work in a full-service development environment that uses source control, unit testing, issue tracking, and developer-level collaboration tools.

 

Minimum Qualifications and Requirements:

Education/Training: Bachelor's degree in information systems or computer science, or equivalent combination of training and experience.

Licenses: None required.

Experience:

  • Five years of web development with HTML, CSS/SCSS, and JavaScript.
  • Three years of experience with Agile methodologies
  • Three years of experience writing test cases, test scripts, and performing unit, functional, and integration testing
  • Experience with Git and source code management concepts such as branching, pull requests, and merging.
  • Experience developing cross-platform and cross-browser compatible solutions
  • Experience creating self-contained, reusable, and testable modules and components
  • One year of experience with a modern query and/or data interchange formats such as JSON and XML.

Skills/Abilities: Ability to work effective on a small but dynamic team, prioritizing work on multiple simultaneous efforts with limited daily tasking from a supervisor. Must be able to clearly communicate information to technical and non-technical stakeholders. Must be a self-starter to research and learn new concepts and technologies to solve challenges.

Physical Mobility: Sedentary in an office setting with some mobility. Daily foot travel between buildings in and around the CMU campus. Infrequent business travel required, usually to the SEI offices in Arlington, VA (approx. 2 times/year).

Environmental Conditions: Ability to use a computer keyboard and computer display for extended periods of time

Mental: Pay close attention to detail, meet inflexible deadlines, balance multiple tasks, remain calm during difficult situations, work under pressure, and work with frequent interruptions. Highly disciplined in terms of time-management and genuine positive attitude with a passion for the work and ability to project same to influence others.

Deal collaboratively, diplomatically, and successfully with partners, co-workers, and other professional colleagues, managers, and staff; develop and communicate innovative ideas; quickly learn new procedures, techniques, and approaches. Strong information organization skills as well as good oral and written communication skills are required.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training:     Master’s degree or equivalent in area of expertise.

Experience:                 

  • Three years of experience with collaboration/tracking tools like JIRA, Confluence, and Stash
  • Three years of experience with continuous integration environments and tools such as Bamboo or Jenkins
  • Experience with web application development, preferably with Java frameworks such as Spring, Struts, Hibernate, etc. and/or experience using application building blocks such as Node.js or AngularJS
  • Experience coding applications that include an SQL-based database component
  • Experience creating robust testing suites to perform automated functional and regression testing with tools such as CasperJS and Selenium
  • Three years of experience researching, identifying, evaluating, and recommending technical solutions to solve business problems
  • Shell scripting in Unix/Linux
  • Domain knowledge of enterprise content management systems
  • Familiarity with Unix/Linux
  • Experience with Microsoft SQL Server database
  • Experience providing effective technical leadership on impactful projects involving customers / sponsor stakeholders

 

Accountability: Employee is accountable for describing, developing, implementing and/or maintaining, and providing support for enterprise applications and technology solutions supported by the Technical Solutions and Special Projects team.

Employee is accountable for working collaboratively and strengthening relationships with internal customers to develop and implement technical solutions that solve critical enterprise and knowledge management challenges.

Direction: Employee will be expected to work under minimum supervision within the defined scope of authority and in accordance with departmental and university procedures and policies. Difficult or unique situations are referred to the supervisor. General supervision is provided by Technical Solutions and Special Projects Manager.

Decisions: Under management direction, the employee will decide the appropriate configuration for production applications and services supported by the Technical Solutions and Special Projects team. Employee will appropriate team members and other IT groups on how best to allocate and/or acquire resources necessary to implement and evolve enterprise applications.

Employee will determine the cause of problems in applications supported by the Technical Solutions and Special Projects team and take corrective action in a timely fashion when a system/service fails or becomes unavailable.

Employee will describe the appropriate procedures to configure and maintain applications supported by the Technical Solutions and Special Projects team.

Supervisory Responsibilities: Employee may, at the manager or team leader’s discretion, task/supervise other employees in completion of specific tasks. Employee may be required to coach and mentor junior developers and/or direct activities of temporary / staff or contractors.

 

Job Functions or Responsibilities:

50%     Web Development - Design, develop, test, and implement technical solutions that support the portfolio of web applications maintained by the team. Collaborate with business teams, architects, and developers to understand high-level requirements and translate those into functional web applications in collaboration with other team members. Design and develop applications in adherence with standards for code, design, performance, quality, security, and corporate policies. Define, conduct, and participate in testing including development walkthroughs. Assist in developing recommendations for future development, releases, and enhancements.

35%     Maintenance and Support – Troubleshoot and resolve problems with vendor products or in-house development applications. Adhere to change management practices and communicate changes and impact to those affected. Share knowledge and information with others and perform customer outreach to increase user adoption and collect feedback. Respond to outages and develop relationships with customers to accelerate user adoption and collect feedback.

15%     Technical Leadership – Take accountability for your own commitments, team deliverables, and overall team success. Recognize and escalate quality, deadline, or deliverables issues/ Provide technical leadership in the adoption and development of software engineering procedures, standards, and methods. Partner with internal teams to improve internal business processes. Participate in knowledge sharing activities with peers to increase knowledge of software development practices.

100% TOTAL EFFORT

 

Organizational Chart: SEI Chief Information Officer < Technical Solutions and Special Projects Manager < Front End Web Developer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

09 Aug
2016
Technical Director, Client Technical Solutions (CTS) Directorate - 2003821
Pittsburgh, PA

Position Summary: The Technical Director, Client Technical Solutions (CTS) Directorate reports to the Director, Software Solutions Division (SSD).  The Technical Director is responsible for enabling accomplishment of the goals of the CTS Directorate.  In this role, the Technical Director will provide technical and management leadership to apply, integrate, innovate, and transition research, and state of the practice experience accumulated from the SEI and other bodies of knowledge to the Department of Defense (DoD), Intelligence Community (IC), Federal Agencies, and non-federal clients. The Technical Director will be responsible for the oversight of all CTS customer work and will formulate a technical, business and research strategy that is responsive to the needs of customers and improves the standard practice for principally for Life Cycle Acquisition and Software Engineering.

Key responsibilities of the Technical Director, CTSD include:

  • Working in tandem with SSD and SEI business development personnel in the development of new customer opportunities and extension/expansion of existing opportunities.
  • As part of the SSD leadership team, support SSD strategy and execution formulation.
  • Working with other SSD SEI Technical Directors to help define strategic technical direction for CTSD, SSD and the SEI.
  • Achieving CTSD revenue and DoD STE objectives established by the Director, SSD.
  • Create and implement an integrated strategy and organizational capability for leveraging and transitioning SEI and other software engineering technologies to maximize impact on DoD, IC, federal agencies, and non-federal customers.
  • Advising the Director, SSD and SEI senior leadership on emerging trends and topics of interest within communities that should be addressed in SEl's core research and technical programs.
  • Working with CTSD, other Technical Directors, SSD Director and Deputy, Chief Scientists, CTO and Deputy CTO to better articulate and define value, impact, and contribution of customer engagements consistent with an R&D FFRDC.
  • Defining how customer engagement practice and experience will inform SEI research directions and how SEI research investments will be properly translated and transitioned into DoD and federal customer settings.
  • Providing effective technical and program management across the CTSD portfolios through continuous engagement with customers and leveraging key bodies of work and domain knowledge and experience to add value to the customer with the goal of increasing customer impact and advancing software engineering and acquisition state of the practice.  Ensure effective program and project management across all portfolio activities and provide SSD DO with visibility of program and project status.
  • Leading all human resource actions for the CTS portfolio including staffing, performance management, communications, training and development.
  • Supporting the broader research and transition missions of the SEI.
  • Developing, enabling, and executing Line Funded initiatives.
  • Working closely with the SEI, division Chief Scientists, Director and Deputy Director SSD, mentoring and supporting all customer engagements and Research (Line and LENS) Funded Work.

 

Minimum Qualifications and Requirements:


Education/Training: Masters of Science in a technical field such as Computer Science, Information Systems, or Engineering or equivalent combination of training and experience.

Experience: The successful candidate must have a proven record of progressively increasing experience managing the acquisition life cycle and development of complex software intensive projects in a DoD or government related environment including those at a classified level. The ideal candidate must have experience building and managing interdisciplinary, high technology teams and have knowledge of the DoD, IC and Federal agencies computer science, IT architecture, software technology and acquisition processes. The successful candidate must be able to demonstrate experience managing and exercising oversight of large, complex software intensive programs that are strategic in nature. Leadership and management experience within the Federal government, the military, a university, FFRDC, and/or Fortune 500 technology organization is required. Deep understanding of one or more of the SEI technical domains is required.

Skills/Abilities: Able to work closely and negotiate agreements with senior officials.  Able to work with and coordinate cross-functional teams of technical staff from the SEI and, customer team members and others from the broader community.  Able to develop plans, manage projects (budgets, schedules, etc.) and develop and deliver marketing/sales forecasts and proposals. Have strong organization, team building and mentoring skills.

The successful candidate must possess:

  • Strong technical and business acumen with vision and a strong sense of purpose.
  • Track record of accomplishment in portfolio, project and program management.
  • Strong influencing and engagement management skills.  Demonstrated abilities in strategic planning, financial and personnel management.
  • Reputation for the highest level of integrity.
  • Success at building consensus.
  • Experience originating new techniques and approaches.
  • Excellent oral, written and presentation skills.

Mobility: Will be required to travel on overnight assignments.

Environmental Conditions: Usual office setting with extended use of computers.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Same as above

Licenses: Certified DoD Acquisition Professional; PMP Certification.

Experience:  The successful candidate should have a 15 - 20 year proven record of progressively increasing experience managing the acquisition life cycle and development of complex software intensive projects in a DoD or government related environment at a classified level. The ideal candidate must have experience building and managing interdisciplinary, high technology teams and have the knowledge of the DoD/IC/Federal agency communities.

 

Accountability: The incumbent will be responsible for developing and implementing operational plans that enable the DoD, IC and Federal Agency communities to maintain technical superiority;  developing and meeting revenue projections; developing and meeting commitments made to customer;  performing administrative oversight for all CTS work, and building and maintaining staff to execute against plans.

Direction: The incumbent is expected to participate as a member of the SSD leadership and management team and operate with minimum supervision using CMU, SEI and SSD defined practice, policies, and procedures. Additionally, it is expected that the Technical Director will identify, define and implement continuous improvements of policies and processes related to the portfolio of work. Provide technical, management and leadership guidance on CTS and SSD work.

Decisions: The incumbent is responsible for making decisions regarding the budget, performance and deliverables for the portfolio of work.  Will be required to identify best practices, determine methods that will assess the challenges of CTS customers and integrate and innovate solutions including pilot tests of the technology and adoption processes.  This includes determining and implementing workforce development that allows customers to make large-scale improvement in software-reliant programs and cyber operations.

Supervisory Responsibilities: Will have direct supervisory responsibilities over delivery teams as assigned. The position is directly responsible for complete human resource management to include hiring and job assignment, performance management, and salary administration.


Job Functions or Responsibilities:

60%     Lead the CTS Portfolio of work. Participate as a leader or member of technical teams in support of government acquisition program offices or participate as a member of a technical team performing research.  Identify and support the implementation strategies for capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses and blog entries). Investigate and provide guidance and direction in helping to focus SEI programs to more effectively transition technology into practice in the CTS portfolio communities.

20%     Participate as a member or leader of SEI business/technical development teams to support acquisition excellence, lifecycle software engineering, innovation, and performance impact.

10%     Serve in an advisory capacity to other SEI technical programs on CTS Sector acquisition and innovation issues.

10%     Other duties as assigned by the Director, Software Solutions Division (SSD).

100% TOTAL EFFORT


Organizational Chart: SEI Director’s Office < Director, Software Solutions Division < Technical Director, Client Technical Solutions (CTS) Directorate.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

08 Aug
2016
Chief Scientist, Software Solutions Division - 2003820
Pittsburgh, PA

Position Summary: The Chief Scientist of the Software Solutions Division has strategic, operational and tactical responsibilities. Strategic responsibilities include:

  • Leading the development of the SSD technical strategy in conjunction with the SSD Director, Deputy Director, Technical Directors, and the Chief Technology Officer.  The strategy must align with the SEI strategic plan and extends across the division-wide technical pipeline of research, development, maturation and transition.
  • Maintaining an active presence in the software engineering research and DoD S&T communities; building external relationships to foster SSD technical collaborations (with other FFRDCs, industry, research labs, etc.) and expand the sources of research funding; fostering strong ties with researchers from Carnegie Mellon; and maintaining a personal technical footprint necessary for credibility with software researchers within SSD, across the SEI, and within the software engineering research and DOD S&T communities.
  • Establishing and implementing processes to enhance the quality and competitiveness of SSD research and technical support.
  • Establishing and implementing processes for the routine and systematic flow of information between research and customer delivery projects to fulfill the research to practice and practice to research cycle.

Tactical and operational responsibilities include:

  • Serving as the primary SSD representative to the SEI Tech Council.
  • Periodically communicating the needs of sponsors and stakeholders to the technical staff.
  • Facilitating the development and maturation of high quality, competitive research proposals especially with respect to the design of the research and approach to establishing scientific and operational validity.
  • Staying abreast of work in other SEI divisions and seeking synergies and opportunities for collaboration.
  • Supporting SSD business development with strategic sponsors and customers.
  • Serving as a mentor and helping to grow and advance the careers of the SSD technical staff.
  • Serving as a member of the SSD Director’s Office and Leadership team.

 

Minimum Qualifications and Requirements:

Education/Training: MS degree in computer science, engineering, or acceptable equivalent.

Licenses: None

Experience: Fifteen years of experience conducting research and/or managing the research and development of software-intensive projects. Experience in building and managing high quality technology teams. Working knowledge of the software engineering discipline. Established reputation in the software engineering research community.

Skills/Abilities: Able to team with senior managers and officials, technical researchers and engineers, and all levels of SEI personnel. Demonstrated capability in leading senior level researchers, managing and contributing to research agendas, and financial management.  Able to develop plans, manage and contribute to projects in an integrated team environment. Able to develop and deliver products and projects. Have strong organization, team building, communication and mentoring skills.

Mobility: Some extended trips to various site locations including Europe, Asia and Australia.

Environmental Conditions: Normal office setting with continuous usage of computers

Mental: Ability to work under pressure, negotiate with customers, and meet inflexible deadlines

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training:  PhD in computer science, engineering, or acceptable equivalent.

 

Accountability: The SSD CS is accountable for the creation of the SSD technical strategy and in conjunction with the SSD DO is accountable for the acquisition of adequate resources (i.e., funding, collaborators) for execution of the technical strategy.

Direction: As a member of the SSD DO, the CS takes direction from the SSD Director and Deputy Director.  The CS operates with minimum supervision using CMU and SEI defined practices, policies, and procedures.

Decisions: The CS leads the development of strategies and initiatives and assists with their implementation by identifying research topics and specific opportunities. The CS also selects and funds special research projects and activities that further the mission of SSD and the SEI.

Supervisory Responsibilities: The Chief Scientist supervises special technical projects funded by the CS or as directed by the SSD Director. 

 

Job Functions or Responsibilities:

35%     Lead the formulation of the SSD technical strategy in consonance with the SSD Director, Deputy Director, Technical Directors, and the CTO.  Work with the Technical Directors and teams to implement that strategy.  Assist with research team formation, recruiting appropriate talent, and mentoring of technical staff.  Provide guidance to and monitor the success of SSD research and special technical projects and cross-cutting efforts.  Advocate for and present the SSD technical agenda. 

10%     Participate as a member of the SSD senior leadership team. Work to ensure positive working environment, organizational effectiveness, impactful technical contributions, and SSD mission success.

30%     Establish and maintain relationships within the software research community, DoD and other US government agencies, Carnegie Mellon Community, as well as leaders in the software and systems development communities.   Identify and nurture technical collaborations and funding opportunities.

10%     Serve on the SEI Tech Council.  Collaborate and coordinate with the CTO and other SEI Chief Scientists.  Serve as the SSD liaison on activities related to OSD governance of Line-funded projects.  

15%     Contribute technically and maintain leading-edge currency in software research/profession.

100% TOTAL EFFORT

 

Organizational Chart: SSD Director < SSD Deputy Director  = SSD Chief Scientist

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

22 Jul
2016
Cyber Security Engineer - Exercise Developer - 2002530
Pittsburgh, PA or Arlington, VA

This position has multiple openings and can be located in Pittsburgh, PA or Arlington, VA.

Position Summary:  As a member of CERT's Workforce Development program, the candidate will work with other team members in developing cyber-security training exercises and simulations, primarily for US military/government customers. This involves interacting directly with customers, gathering training requirements and objectives, producing and facilitating creative and engaging exercise scenarios, and building supporting physical and virtualized systems and network topologies. As such, the candidate will work regularly with a wide range of software and hardware technologies within CERT labs. The candidate may also assist in developing and teaching cyber security training content to external customers. The candidate will also be involved software and hardware prototype development.  Additionally, the position requires the candidate to have demonstrated and effective leadership/management abilities as he/she may supervise and evaluate full time direct reports as well as the activities of graduate student assistants. The successful candidate must be self-directed, have an interdisciplinary approach to problem solving, and work well communicating technical information to technical and non-technical users. The candidate must also be able to interact with clients and staff of all levels in a highly professional and competent manner.

 

Minimum Qualifications and Requirements:

Education/Training:  Bachelor’s degree in Computer Science, Information Science, or related discipline with eight (8) years applicable working experience in information technology, Master’s degree in Computer Science, Information Science, or related discipline with five (5) years of applicable working experience in information technology, PhD Computer Science, Information Science, or related discipline with two (2) year of applicable working experience in information technology, or equivalent combination of training or experience.

Experience: Successful candidates must possess "hands-on" experience with Computer/Network Security and I.T. system and network administration. Additionally, he/she must have practical experience with Windows server and desktop platforms and Linux/Unix operating systems. The candidate must have experience in network design and troubleshooting and implementing standard networking protocols. Additionally, demonstrated practical experience working with common commercial and open-source cyber security tools is required. The candidate should have some experience teaching technical content to students, peers, and non-technical individuals and must enjoy doing so.

Skills/Abilities: Candidate must be able to prioritize workload and complete deliverables on time, have good technical problem-solving skills, strong analytical and information organization skills, excellent oral and written communication skills, and strong technical teaching skills. Candidate must be able to multitask and work effectively with multiple project teams and sponsors/customers. Experience with virtualization technologies, particularly VMWare ESX server is highly desired. Programming experience in C, C++, C#, Python, and Java is also highly desirable.

Physical Mobility: Sedentary in an office setting with some mobility, i.e., able to travel to various locations within the SEI and CMU community as well as travel to customer sites.

Environmental Conditions: Close contact with computer for long periods of time.

Mental: Ability to pay close attention to detail, meet deadlines, work under pressure, and communicate effectively.

Other:  U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.

 

Preferred Qualifications and Requirements:

Education/Training: BS and MS in Computer Science; training in enterprise security tools (i.e. McAfee ePO/HIPS, ArcSight, etc.)

Licenses: CISSP, Network+, Security+ and/or other industry standard certifications

Experience: US military service in a series of positions involving information technology, cyber security, and management of large scale government networks.

Skills/Abilities: Strong presentation/platform skills and excellent writing skills.

 

Accountability:  The incumbent is accountable for the definition, creation, and maintenance of final deliverables and products and may manage unclassified/classified DoD projects in excess of $3M annually.

Direction:  The incumbent is expected to act independently using CMU and SEI defined policies, practices, and procedures.

Decisions: The incumbent must use good judgment to solve customer and personnel problems and is required to envision, design, develop, pilot, and deliver new capabilities, products, and services.  Candidate will also be required to accurately represent SEI/CERT and its technical work in interactions with customers, sponsors, and the public.

Supervisory Responsibilities:  The incumbent may have at least 2 direct reports as well as up to 15 secondary reports and will be required to provide performance management, career guidance, and take personnel corrective actions as required.

 

Job Functions or Responsibilities:

10%      Design and develop technical documents and instructional materials.

10%      Research, evaluate, develop, install/configure hardware and software including promising new technologies that require examination for cyber security research and development.

10%      Deliver technical and management training to customers.

55%      Mentor, guide and interact with team and other staff.

15%      Contribute to transition planning and strategy.

100% TOTAL EFFORT

 

Organizational Chart: Director, CERT Division < Technical Director, Cyber Security Solutions Directorate < Technical Manager, Cyber Workforce Development Initiative < Cyber Workforce Development Team Lead < Cyber Security Engineer - Exercise Developer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

21 Jul
2016
Senior Software Developer - Prototyping Group Lead - 2003679
Pittsburgh, PA

What We Do: The SEI Emerging Technology Center helps the government stay on the edge of technology. The world is innovating software and information technologies rapidly, and the Center identifies, demonstrates, and applies emerging software technologies to meet critical mission needs. We promote government awareness and knowledge of emerging technologies and their application, and our work shapes and leverages academic and industrial research.

Position Summary: The SEI Emerging Technology Center matches state-of-the-art software research with critical U.S. Government (USG) needs. We are seeking a Senior Software Developer who will also fill the role of Prototyping Group Lead.

The Senior Software Developer – Prototyping Group Lead supports the Center’s mission by serving as a subject matter expert who leads teams that are developing, applying, demonstrating, evaluating, prototyping, and transitioning software capabilities that operationalize research concepts of significant value to the USG. Software developers in the Center work on leading edge technologies and apply them to important and challenging problems. The work environment is dynamic and flexible, with constant opportunities to develop new skills, to learn new programming methods and techniques, to work on emerging architectures and systems, and to make a difference.

The Senior Software Developer – Prototyping Group Lead leads the Center’s Prototyping Group and directly supervises Team Leads. The Prototyping Group Lead is responsible for managing and professionally growing Team Leads and their technical staff teams, while ensuring successful work that meets our customers’ mission needs. Our teams work in technical domains that include advanced computing (including high performance computing, distributed and scalable computing, and alternative/emerging computing architectures), applied machine learning, and adaptive and autonomous systems. If you are interested in these technical areas—and if you possess excellent analytical, organizational, supervisory, reasoning, and problem solving skills and are committed to bringing innovation to government and beyond—then this is the position for you.

The Senior Software Developer – Prototyping Group Lead will have demonstrated technical expertise and management experience; be a solid presenter, capable of communicating with and in front of internal and external leaders, collaborators, and customers from diverse military, government, and academic backgrounds;  be able to respond quickly and effectively to changing priorities and possess the ability to work simultaneously on multiple projects; have excellent written and oral communications skills and good interpersonal skills; and have the ability to convey sense of purpose and mission that motivates others.

Duties include:

Take a hands-on lead role for the Prototyping Group, which consists of  teams of Software Developers; supervise and assist in professionally developing Team Leads (who are first-level supervisors); develop and code software solutions that provide needed capabilities to the USG, building on state-of-the-art research in analytics, data architectures, software assurance, security, and human-information interaction; conduct rapid software prototyping to demonstrate and evaluate technologies in relevant environments; conduct performance, security, and other evaluations of software systems; test software capabilities using novel testing and analysis techniques; document software with an emphasis on architectures, user stories, and interface definitions; practice agile software development methods and actively participate on teams of software developers, researchers, designers, and technical leads; support software development infrastructure and assist in building and configuring computing systems and resources; interface with the research community and the USG to understand challenges, needs, and possible solutions; contribute to improving the overall technical capabilities of the Center by mentoring and teaching others, participating in design (software and otherwise) sessions, and sharing insights and wisdom across the SEI Emerging Technology Center team.

 

Minimum Qualifications and Requirements:

Education/Training: Bachelors of Science in Computer Science, Information Systems, or related field with ten (10) years’ experience in hands-on software development, or equivalent; Masters of Science in Computer Science, Information Systems, or related field with eight (8) years’ experience in hands-on software development, or equivalent; PhD with five (5) years’ experience is a plus.

Experience:The candidate should have experience building, leading, and managing technology teams; be able to effectively interact with partners, customers and sponsors; have demonstrated management experience with responsibility for projects and people; have experience with budgets and/or contracts; have a solid track record of accomplishment in technical organizations; be able to make decisions and recommendations that have positive impacts on projects; understand and appreciate the interplay between technology and policy; and have the ability to influence, work with, manage, and professionally develop technical staff.

Professional experience listed above should include the following: eight (8) years of production or intensive research software development experience in modern languages such as C/C++ or Java; knowledge of other commonly used languages such as Perl, Python, Ruby, and JavaScript; working knowledge of some modern computing paradigms and environments such as NoSQL systems (Hadoop, Neo4J, MapReduce), cloud computing and virtualization, parallel programming, HPC development, network programming, mobile development, and interface development; familiarity with end-to-end software development activities in Linux/Windows/Unix/Web environments; familiarity with software development tools including IDEs (Eclipse, IntelliJ, emacs, etc.), version control systems (git, svn, p4 etc.), and bug tracking systems (e.g., bugzilla); working knowledge and experience in participating in agile software development practices and team design sessions; experience as personnel supervisor; experience leading groups/teams; and demonstrated problem solving ability with the ability to explore and evaluate many possible solutions to problems. Proven contribution to open source development projects is a plus.

Skills/Abilities: Knowledge of: Software development in Python, C/C++, Java, and other modern languages; modern computing, data, and storage solutions including advanced web development; data processing architectures (MapReduce, Hadoop, BigTable) including cloud computing and virtualization concepts; virtualization, hypervisors, cloud controllers, and other cloud provisioning concepts; algorithm design and analysis including analysis of algorithm complexity; familiarity with core Internet protocols (e.g., TCP/IP, BGP, UDP, ICMP, DNS, SMTP, HTTP); software/systems development lifecycle, QA testing, revision control, and change management practices. Ability to effectively communicate; problem solve; manage people; and professionally develop/build others.

Strong communications skills and the ability to present to high-visibility stakeholders internal and external to the organization.  Proven management skills including interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight).  Ability to lead and participate in multidisciplinary teams.

Physical Mobility: Primarily sedentary in an office setting with some mobility. Flexible to travel to various locations within the SEI and CMU community, sponsor sites, conferences, and offsite meetings on occasion. Travel outside of Pittsburgh limited to no more than five working days a month.

Environmental Conditions: Normal office conditions; close contact with computer screen for extended periods of time.

Mental: The ability to explore and solve complex, ill-defined problems; work meticulously with attention to detail; remain calm during difficult situations; meet inflexible deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities and frequent interruptions; be a self-starter willing to take on tasks and initiate constructive activity with little guidance; deal collaboratively, diplomatically, and successfully with customers, co-workers, and other professional colleagues, managers, and staff; grasp the big picture, direction, and goals of an effort; interface with world-class research community; develop and communicate innovative ideas; quickly learn new procedures, techniques, and approaches. Communicate with software developers, analysts, and non-technical experts; take leadership role in personnel management of technical projects.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: PhD in Computer Science, Mathematics, Information Systems, or related discipline with five (5) years’ experience, is a plus.

 

Accountability: Responsible for exploring, defining, developing, demonstrating, and, in some cases, transitioning software capabilities. This includes working with and supervising teams of developers, researchers, designers, and other technical personnel to create solutions.

Direction: Act with minimal supervision in accordance with SEI procedures and policies, such as those involving product development, team interaction, and confidentiality.

Decisions: Explore, develop, and demonstrate software capabilities and make implementation choices for a wide range of software-intensive problems; conduct technical staff personnel management and make decisions about day-to-day technical project activities. 

Supervisory Responsibilities: Directly supervise several team leads (currently two team leads – with potential to increase to six team leads), who in turn supervise multidisciplinary teams of a maximum of six technical staff to a team; supervise personnel and act in the capacity of a mentor to solutions architects, software developers, and designers.

 

Job Functions or Responsibilities:

40%     Technical Leadership and Personnel Management -  Lead, direct, and oversee the activities of a group of developers working on diverse sets of problems and projects; develop and manage the team leads.

20%     Design, develop, test, document, and demonstrate software.

20%     Interface with the research community to understand the state of research ideas and the practicality of applying those ideas to real USG problems and challenges. Interface with USG customers to understand their needs and capabilities and identify possible solutions.

10%     Actively participate in agile team software development activities and team brainstorming, innovations, and design sessions.

10%     Participate in the broader SEI software research community through collaboration, papers, and presentations.

100% Total Effort

 

Organizational Chart: SEI Emerging Technology Center Director > Senior Software Developer – Prototyping Group Lead

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

21 Jul
2016
Software Systems Engineer - 2003677
REMOTE - San Antonio, TX

Position Summary: The Client Technical Solutions (CTS) Directorate is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. CTS is focused on matching state-of-the-art software capabilities with critical US Department of Defense and other government agency acquisitions and organizations. This position will support the SEI’s mission by capturing government needs and identifying, shaping, and guiding programs to operationalize the most appropriate software engineering and acquisition techniques and practices. If you are an engineer passionate about improving the ability to deliver high quality, mission critical systems, and you are committed to bringing innovation to government and beyond, then this is the position for you.

The Member of the Engineering Technical Staff of the Software Solutions Division will be responsible for participating on teams that enable the organizations within the Department of Defense to enhance the predictable performance and mission assurance in the acquisition, evolution and operations of software-reliant systems. Key activities include understanding customer requirements and key challenge problems and addressing them with tailored solutions; applying, adapting, integrating, verifying and transitioning the SEI body of knowledge and other bodies of knowledge to maximize impact; creating, applying and codifying new approaches to support customer needs and advance the software engineering state of the practice; and maintaining situational awareness in technical and DoD domains. The candidate will coordinate closely with staff across the SEI to deliver software engineering technical expertise to customers throughout the life-cycle.

 

Minimum Qualifications and Requirements:

Education/Training: BS or equivalent degree in relevant discipline with eight (8) years applicable experience; MS or equivalent degree in relevant discipline with five (5) years applicable experience; PhD or equivalent degree in relevant discipline with two (2) years applicable experience, or equivalent combination of training and experience.

Experience: The candidate must have experience in software engineering, development or management, and/or systems engineering. Must be knowledgeable of the software engineering and system engineering disciplines as well as understanding the DoD, Intelligence Community, or Civilian Agency acquisition processes. The candidate should have experience building, leading, managing, and participating on cross-functional, high technology teams. The candidate should be able to operate effectively with all organizations within the software and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.  Experience in three (3) or more of the following: DoD or Civilian Agency software systems acquisition on major programs (~100K SLOC or more of custom developed code, and/or significant integration of COTS/GOTS products); solid technical breadth and understanding of all aspects of the end-to-end software lifecycle (e.g., requirements, design, implementation, testing, etc.); alternative life cycles (e.g. waterfall, agile); major DoD, Intelligence Community, or Civilian Agency software acquisition policies and directives; enterprise architecture; software architecture development and evaluation, software architecture patterns (e.g. SOA) and concepts (e.g. Cloud computing); information Assurance/survivability; systems engineering on software intensive systems; COTS product integration; performance measurement including definition and application of goals, measurements and metric; system of systems engineering; requirements development and management; software integration and test and software/hardware integration; deployment of software intensive systems, especially including transition from legacy systems; cost estimation.

Skills/Abilities: Detailed knowledge of software engineering; detailed knowledge of at least one (1) core competency: requirements, architecture and design, program and acquisition management, performance improvement, assurance, or security and depth in at least one SEI body of work.  [Excellent] Strong written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.  Good program and project management skills including: interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight). Good team related skills with the desire to lead and participate in multidisciplinary teams.

Mobility: Will be required to travel on overnight assignments.

Environmental Conditions: Usual office setting with extended use of CRT.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Master's degree in Computer Science, Information Systems, systems engineering, software engineering, or acquisition management, or equivalent combination of training and experience.

Licenses: Certified DoD Acquisition Professional. Certified PMP.

 

Accountability:  The member will be directly accountable for understanding DoD acquisition needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction:  As a technical staff member, he/she will be expected to operate with minimum supervision using CMU and SEI defined practice, policies and procedures, in concert with the SEI mission.

Decisions:  Will be required to work with government program offices to identify strengths and weaknesses within the acquisition program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  Must be able to lead and supervise others.

 

Job Functions or Responsibilites:

85%  Participate as a leader or member of technical teams in support of government acquisition program offices or participate as a member of a technical team performing research. Identify and support the implementation strategies for the capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses, and blog entries).

10%  Other duties as assigned by the Client Technical Solutions Directorate Executive Director, Deputy Director, Associate Director or Chief Engineer.

5%  Serve in an advisory capacity to other SEI technical programs on acquisition or technical issues.

100% TOTAL EFFORT

 

Organizational Chart:  SEI Director’s Office < Director, Software Solutions Division < Technical Director, Client Technical Solutions Directorate < Engineer, Member of the Technical Staff

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

21 Jul
2016
Software Systems Engineer - 2003689
El Segundo, CA

This position is located in Los Angeles, CA.

Position Summary: The Client Technical Solutions (CTS) Directorate is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. CTS is focused on matching state-of-the-art software capabilities with critical US Department of Defense and other government agency acquisitions and organizations. This position will support the SEI’s mission by capturing government needs and identifying, shaping, and guiding programs to operationalize the most appropriate software engineering and acquisition techniques and practices. If you are an engineer passionate about improving the ability to deliver high quality, mission critical systems, and you are committed to bringing innovation to government and beyond, then this is the position for you.

The Member of the Engineering Technical Staff of the Software Solutions Division will be responsible for participating on teams that enable the organizations within the Department of Defense to enhance the predictable performance and mission assurance in the acquisition, evolution and operations of software-reliant systems. Key activities include understanding customer requirements and key challenge problems and addressing them with tailored solutions; applying, adapting, integrating, verifying and transitioning the SEI body of knowledge and other bodies of knowledge to maximize impact; creating, applying and codifying new approaches to support customer needs and advance the software engineering state of the practice; and maintaining situational awareness in technical and DoD domains. The candidate will coordinate closely with staff across the SEI to deliver software engineering technical expertise to customers throughout the life-cycle.

 

Minimum Qualifications and Requirements:

Education/Training: BS or equivalent degree in relevant discipline with eight (8) years applicable experience; MS or equivalent degree in relevant discipline with five (5) years applicable experience; PhD or equivalent degree in relevant discipline with two (2) years applicable experience, or equivalent combination of training and experience.

Experience: The candidate must have experience in software engineering, development or management, and/or systems engineering. Must be knowledgeable of the software engineering and system engineering disciplines as well as understanding the DoD, Intelligence Community, or Civilian Agency acquisition processes. The candidate should have experience building, leading, managing, and participating on cross-functional, high technology teams. The candidate should be able to operate effectively with all organizations within the software and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.  Experience in three (3) or more of the following: DoD or Civilian Agency software systems acquisition on major programs (~100K SLOC or more of custom developed code, and/or significant integration of COTS/GOTS products); solid technical breadth and understanding of all aspects of the end-to-end software lifecycle (e.g., requirements, design, implementation, testing, etc.); alternative life cycles (e.g. waterfall, agile); major DoD, Intelligence Community, or Civilian Agency software acquisition policies and directives; enterprise architecture; software architecture development and evaluation, software architecture patterns (e.g. SOA) and concepts (e.g. Cloud computing); information Assurance/survivability; systems engineering on software intensive systems; COTS product integration; performance measurement including definition and application of goals, measurements and metric; system of systems engineering; requirements development and management; software integration and test and software/hardware integration; deployment of software intensive systems, especially including transition from legacy systems; cost estimation.

Skills/Abilities: Detailed knowledge of software engineering; detailed knowledge of at least one (1) core competency: requirements, architecture and design, program and acquisition management, performance improvement, assurance, or security and depth in at least one SEI body of work.  [Excellent] Strong written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.  Good program and project management skills including: interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight). Good team related skills with the desire to lead and participate in multidisciplinary teams.

Mobility: Will be required to travel on overnight assignments.

Environmental Conditions: Usual office setting with extended use of CRT.

Other:   Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Master's degree in Computer Science, Information Systems, systems engineering, software engineering, or acquisition management, or equivalent combination of training and experience.

Licenses: Certified DoD Acquisition Professional. Certified PMP.

 

Accountability:  The member will be directly accountable for understanding DoD acquisition needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction:  As a technical staff member, he/she will be expected to operate with minimum supervision using CMU and SEI defined practice, policies and procedures, in concert with the SEI mission.

Decisions:  Will be required to work with government program offices to identify strengths and weaknesses within the acquisition program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  Must be able to lead and supervise others.

 

Job Functions or Responsibilites:

85%  Participate as a leader or member of technical teams in support of government acquisition program offices or participate as a member of a technical team performing research. Identify and support the implementation strategies for the capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses, and blog entries).

10%  Other duties as assigned by the Client Technical Solutions Directorate Executive Director, Deputy Director, Associate Director or Chief Engineer.

5%  Serve in an advisory capacity to other SEI technical programs on acquisition or technical issues.

100% TOTAL EFFORT

 

Organizational Chart:  SEI Director’s Office < Director, Software Solutions Division < Technical Director, Client Technical Solutions Directorate < Engineer, Member of the Technical Staff

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

19 Jul
2016
Senior Software Systems Engineer - 2003629
REMOTE - San Antonio, TX

Position Summary: The Client Technical Solutions (CTS) Directorate is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. CTS is focused on matching state-of-the-art software capabilities with critical US Department of Defense and other government agency acquisitions and organizations. This position will support the SEI’s mission by capturing government needs and identifying, shaping, and guiding programs to operationalize the most appropriate software engineering and acquisition techniques and practices. If you are an engineer passionate about improving the ability to deliver high quality, mission critical systems, and you are committed to bringing innovation to government and beyond, then this is the position for you.

The Senior Technical Staff Member of the Engineering Technical Staff of the Software Solutions Division will be responsible for leading and/or participating on teams that enable the organizations within the Department of Defense to enhance the predictable performance and mission assurance in the acquisition, evolution and operations of software-reliant systems. Key activities include understanding customer requirements and key challenge problems and addressing them with tailored solutions; applying, adapting, integrating, verifying and transitioning the SEI body of knowledge and other bodies of knowledge to maximize impact; creating, applying and codifying new approaches to support customer needs and advance the software engineering state of the practice; and maintaining situational awareness in technical and DoD domains. The candidate will coordinate closely with staff across the SEI to deliver software engineering technical expertise to customers throughout the life-cycle.

 

Minimum Qualifications and Requirements:

Education/Training: BS or equivalent degree in relevant discipline with ten (10) years applicable experience; MS or equivalent degree in relevant discipline with eight (8) years applicable experience; PhD or equivalent degree in relevant discipline with five (5) years applicable experience, or equivalent combination of training and experience.

Experience: The candidate must have experience in software engineering, development or management, and/or systems engineering. Must be knowledgeable of the software engineering and system engineering disciplines as well as understanding the DoD, Intelligence Community, or Civilian Agency acquisition processes. The candidate should have experience building, leading, managing, and participating on cross-functional, high technology teams. The candidate should be able to operate effectively with all organizations within the software and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.  Experience in five (5) or more of the following: DoD or Civilian Agency software systems acquisition on major programs (~100K SLOC or more of custom developed code, and/or significant integration of COTS/GOTS products); solid technical breadth and understanding of all aspects of the end-to-end software lifecycle (e.g., requirements, design, implementation, testing, etc.); alternative life cycles (e.g. waterfall, agile); major DoD, Intelligence Community, or Civilian Agency software acquisition policies and directives; enterprise architecture; software architecture development and evaluation, software architecture patterns (e.g. SOA) and concepts (e.g. Cloud computing); information Assurance/survivability; systems engineering on software intensive systems; COTS product integration; performance measurement including definition and application of goals, measurements and metric; system of systems engineering; requirements development and management; software integration and test and software/hardware integration; deployment of software intensive systems, especially including transition from legacy systems; cost estimation.

Skills/Abilities: Deep detailed knowledge of software engineering; detailed knowledge of at least two core competencies: requirements, architecture and design, program and acquisition management, performance improvement, assurance, or security and depth in at least one SEI body of work.  Excellent written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.  Proven program and project management skills including: interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight).  Proven team related skills with the ability to lead and participate in multidisciplinary teams.

Mobility: Will be required to travel on overnight assignments.

Environmental Conditions: Usual office setting with extended use of CRT.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Master's degree in Computer Science, Information Systems, systems engineering, software engineering, or acquisition management, or equivalent combination of training and experience.

Licenses: Certified DoD Acquisition Professional. Certified PMP.

 

Accountability:  The member will be directly accountable for understanding DoD acquisition needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction:  As a technical staff member, he/she will be expected to operate with minimum supervision using CMU and SEI defined practice, policies and procedures, in concert with the SEI mission.

Decisions:  Will be required to work with government program offices to identify strengths and weaknesses within the acquisition program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  Must be able to lead and supervise others.

 

Job Functions or Responsibilities:

85%  Participate as a leader or member of technical teams in support of government acquisition program offices or participate as a member of a technical team performing research. Identify and support the implementation strategies for the capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses, and blog entries).

10%  Other duties as assigned by the Client Technical Solutions Directorate Executive Director, Deputy Director, Associate Director or Chief Engineer.

5%  Serve in an advisory capacity to other SEI technical programs on acquisition or technical issues.

100% TOTAL EFFORT

 

Organizational Chart:  SEI Director’s Office < Director, Software Solutions Division < Technical Director, Client Technical Solutions Directorate < Sector Lead, CTSD Sector Team

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

19 Jul
2016
Software Engineer - 2003631
Pittsburgh, PA

Position Summary: The Advanced Mobile Systems (AMS) initiative at the Software Engineering Institute (SEI), part of Carnegie Mellon University, is searching for a Software Engineer developing advanced prototypes applying virtual machine (VM) technology, wireless networking, Android, and other technologies for operation in tactical environments that require rapid analysis and decision making.  AMS conducts applied research, prototypes advanced software systems and concepts, and matures and transitions technologies to the U.S. Department of Defense and other government organizations. The ideal candidate will enjoy working with world-renowned researchers and engineers at the SEI and Carnegie Mellon University, which is consistently ranked among the finest universities in the areas of computer science and engineering.  The candidate should have a strong computer science and/or engineering background, and experience in developing sophisticated computer software systems.

 

Minimum Qualifications and Requirements:

Education/Training: Master’s Degree in Computer Science, Computer Engineering, Software Engineering or a related technical discipline or equivalent combination of training and experience.

Experience:  Five (5) years of substantial software development experience. 

Skills/Abilities: Knowledge of the connectivity, computation, mobility, energy expectations, and information security requirements for tactical military settings.  Knowledge of cloud-based VM packaging and management, migration of processing across VMs, and identity management/security for tactical settings.  Knowledge of tactics for data staging from the enterprise to tactical environments.  Ability to design, develop, test, analyze, document, and demonstrate advanced prototypes.  Ability and interest to investigate, learn, and apply emerging technologies and techniques. Ability to understand and resolve complex programming problems. Grounding in good software engineering practices.

Demonstrated expertise in five or more of the following:

  • General networking.
  • Wi-Fi and other types of wireless networks (such as Bluetooth).
  • 802.1x, EAP and RADIUS.
  • Distributed systems.
  • Virtual machine management (kvm, qemu and libvirt in particular).
  • Python.
  • Web technologies (application servers, webpages, HTTP, DNS, PKI).
  • Mobile application development, with Java and Android in particular (plus related configuration management and deployment technologies such as Maven and Gradle).
  • Service discovery technologies.
  • Architectural patterns and tactics.
  • Low-level system configuration and management, particularly Linux.

Physical Mobility: The ability and willingness to travel is required.

Environmental Conditions: usual office setting with extended use of CRT.

Mental: The ability to:

  • Work meticulously with careful attention to detail;
  • Meet deadlines while working on multiple tasks -- sometimes under pressure and with shifting priorities;
  • Work collaboratively, professionally, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort;
  • Independently and quickly identify and learn new procedures, techniques, and technologies for application to advanced prototypes                                                                           

Other: Candidates will be subject to a background check.

 

Preferred Qualifications and Requirements:

Experience:  Five or more years of substantial software development experience on systems intended for use in tactical environments.

 

Accountability: This position is accountable the Advanced Mobile Systems Initiative Lead for work content, quality, and schedule.

Direction: This position operates within broad guidelines from the Initiative Lead and is expected to exercise reasonable discretion on technical solutions.

Decisions: Technical decisions to support specific research or customer needs. Software design choices and tradeoff decisions among technical alternatives. 

Supervisory Responsibilities: May lead activities related to a customer task or lead peers to accomplish specific technical tasks or supervise students on a research project.

 

Job Functions or Responsibilities:

55%      Design, develop, test, analyze, document, demonstrate, and deliver high-quality software.

30%      Architect complex prototype systems.

10%      Participate on teams for customer software development specific efforts. 

5%       Participate in planning, review, and reporting activities.

100% Total Effort

 

Organizational Chart:  Software Solutions Division (SSD) < Critical System Capabilities (CSC) Technical Directorate < Advanced Mobile Systems Initiative Lead < Software Engineer.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

19 Jul
2016
Software Systems Engineer - 2003630
Pittsburgh, PA or Arlington, VA

Position Summary: The Client Technical Solutions (CTS) Directorate is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. CTS is focused on matching state-of-the-art software capabilities with critical US Department of Defense and other government agency acquisitions and organizations. This position will support the SEI’s mission by capturing government needs and identifying, shaping, and guiding programs to operationalize the most appropriate software engineering and acquisition techniques and practices. If you are an engineer passionate about improving the ability to deliver high quality, mission critical systems, and you are committed to bringing innovation to government and beyond, then this is the position for you.

The Member of the Engineering Technical Staff of the Software Solutions Division will be responsible for participating on teams that enable the organizations within the Department of Defense to enhance the predictable performance and mission assurance in the acquisition, evolution and operations of software-reliant systems. Key activities include understanding customer requirements and key challenge problems and addressing them with tailored solutions; applying, adapting, integrating, verifying and transitioning the SEI body of knowledge and other bodies of knowledge to maximize impact; creating, applying and codifying new approaches to support customer needs and advance the software engineering state of the practice; and maintaining situational awareness in technical and DoD domains. The candidate will coordinate closely with staff across the SEI to deliver software engineering technical expertise to customers throughout the life-cycle.

 

Minimum Qualifications and Requirements:

Education/Training: BS or equivalent degree in relevant discipline with eight (8) years applicable experience; MS or equivalent degree in relevant discipline with five (5) years applicable experience; PhD or equivalent degree in relevant discipline with two (2) years applicable experience, or equivalent combination of training and experience.

Experience: The candidate must have experience in software engineering, development or management, and/or systems engineering. Must be knowledgeable of the software engineering and system engineering disciplines as well as understanding the DoD, Intelligence Community, or Civilian Agency acquisition processes. The candidate should have experience building, leading, managing, and participating on cross-functional, high technology teams. The candidate should be able to operate effectively with all organizations within the software and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.  Experience in three (3) or more of the following: DoD or Civilian Agency software systems acquisition on major programs (~100K SLOC or more of custom developed code, and/or significant integration of COTS/GOTS products); solid technical breadth and understanding of all aspects of the end-to-end software lifecycle (e.g., requirements, design, implementation, testing, etc.); alternative life cycles (e.g. waterfall, agile); major DoD, Intelligence Community, or Civilian Agency software acquisition policies and directives; enterprise architecture; software architecture development and evaluation, software architecture patterns (e.g. SOA) and concepts (e.g. Cloud computing); information Assurance/survivability; systems engineering on software intensive systems; COTS product integration; performance measurement including definition and application of goals, measurements and metric; system of systems engineering; requirements development and management; software integration and test and software/hardware integration; deployment of software intensive systems, especially including transition from legacy systems; cost estimation.

Skills/Abilities: Detailed knowledge of software engineering; detailed knowledge of at least one (1) core competency: requirements, architecture and design, program and acquisition management, performance improvement, assurance, or security and depth in at least one SEI body of work.  [Excellent] Strong written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.  Good program and project management skills including: interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight). Good team related skills with the desire to lead and participate in multidisciplinary teams.

Mobility: Will be required to travel on overnight assignments.

Environmental Conditions: Usual office setting with extended use of CRT.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Master's degree in Computer Science, Information Systems, systems engineering, software engineering, or acquisition management, or equivalent combination of training and experience.

Licenses: Certified DoD Acquisition Professional. Certified PMP.

 

Accountability:  The member will be directly accountable for understanding DoD acquisition needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction:  As a technical staff member, he/she will be expected to operate with minimum supervision using CMU and SEI defined practice, policies and procedures, in concert with the SEI mission.

Decisions:  Will be required to work with government program offices to identify strengths and weaknesses within the acquisition program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  Must be able to lead and supervise others.

 

Job Functions or Responsibilities:

85%  Participate as a leader or member of technical teams in support of government acquisition program offices or participate as a member of a technical team performing research. Identify and support the implementation strategies for the capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses, and blog entries).

10%  Other duties as assigned by the Client Technical Solutions Directorate Executive Director, Deputy Director, Associate Director or Chief Engineer.

5%  Serve in an advisory capacity to other SEI technical programs on acquisition or technical issues.

100% TOTAL EFFORT

 

Organizational Chart:  SEI Director’s Office < Director, Software Solutions Division < Technical Director, Client Technical Solutions Directorate < Engineer, Member of the Technical Staff

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

11 Jul
2016
Senior Software Systems Engineer - 2003540
El Segundo, CA

This position is located in Los Angeles, CA

Position Summary: The Client Technical Solutions (CTS) Directorate is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. CTS is focused on matching state-of-the-art software capabilities with critical US Department of Defense and other government agency acquisitions and organizations. This position will support the SEI’s mission by capturing government needs and identifying, shaping, and guiding programs to operationalize the most appropriate software engineering and acquisition techniques and practices. If you are an engineer passionate about improving the ability to deliver high quality, mission critical systems, and you are committed to bringing innovation to government and beyond, then this is the position for you.

The Senior Technical Staff Member of the Engineering Technical Staff of the Software Solutions Division will be responsible for leading and/or participating on teams that enable the organizations within the Department of Defense to enhance the predictable performance and mission assurance in the acquisition, evolution and operations of software-reliant systems. Key activities include understanding customer requirements and key challenge problems and addressing them with tailored solutions; applying, adapting, integrating, verifying and transitioning the SEI body of knowledge and other bodies of knowledge to maximize impact; creating, applying and codifying new approaches to support customer needs and advance the software engineering state of the practice; and maintaining situational awareness in technical and DoD domains. The candidate will coordinate closely with staff across the SEI to deliver software engineering technical expertise to customers throughout the life-cycle.

 

Minimum Qualifications and Requirements:

Education/Training: BS or equivalent degree in relevant discipline with ten (10) years applicable experience; MS or equivalent degree in relevant discipline with eight (8) years applicable experience; PhD or equivalent degree in relevant discipline with five (5) years applicable experience, or equivalent combination of training and experience.

Experience: The candidate must have experience in software engineering, development or management, and/or systems engineering. Must be knowledgeable of the software engineering and system engineering disciplines as well as understanding the DoD, Intelligence Community, or Civilian Agency acquisition processes. The candidate should have experience building, leading, managing, and participating on cross-functional, high technology teams. The candidate should be able to operate effectively with all organizations within the software and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.  Experience in five (5) or more of the following: DoD or Civilian Agency software systems acquisition on major programs (~100K SLOC or more of custom developed code, and/or significant integration of COTS/GOTS products); solid technical breadth and understanding of all aspects of the end-to-end software lifecycle (e.g., requirements, design, implementation, testing, etc.); alternative life cycles (e.g. waterfall, agile); major DoD, Intelligence Community, or Civilian Agency software acquisition policies and directives; enterprise architecture; software architecture development and evaluation, software architecture patterns (e.g. SOA) and concepts (e.g. Cloud computing); information Assurance/survivability; systems engineering on software intensive systems; COTS product integration; performance measurement including definition and application of goals, measurements and metric; system of systems engineering; requirements development and management; software integration and test and software/hardware integration; deployment of software intensive systems, especially including transition from legacy systems; cost estimation.

Skills/Abilities: Deep detailed knowledge of software engineering; detailed knowledge of at least two core competencies: requirements, architecture and design, program and acquisition management, performance improvement, assurance, or security and depth in at least one SEI body of work.  Excellent written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.  Proven program and project management skills including: interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight).  Proven team related skills with the ability to lead and participate in multidisciplinary teams.

Mobility: Will be required to travel on overnight assignments.

Environmental Conditions: Usual office setting with extended use of CRT.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

 

Preferred Qualifications and Requirements:

Education/Training: Master's degree in Computer Science, Information Systems, systems engineering, software engineering, or acquisition management or equivalent combination of training and experience.

Licenses: Certified DoD Acquisition Professional. Certified PMP.

 

Accountability:  The member will be directly accountable for understanding DoD acquisition needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction:  As a technical staff member, he/she will be expected to operate with minimum supervision using CMU and SEI defined practice, policies and procedures, in concert with the SEI mission.

Decisions:  Will be required to work with government program offices to identify strengths and weaknesses within the acquisition program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  Must be able to lead and supervise others.

 

Job Functions or Responsibilities:

85%  Participate as a leader or member of technical teams in support of government acquisition program offices or participate as a member of a technical team performing research. Identify and support the implementation strategies for the capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses, and blog entries).

10%  Other duties as assigned by the Client Technical Solutions Directorate Executive Director, Deputy Director, Associate Director or Chief Engineer.

5%  Serve in an advisory capacity to other SEI technical programs on acquisition or technical issues.

100% TOTAL EFFORT

 

Organizational Chart:  SEI Director’s Office < Director, Software Solutions Division < Technical Director, Client Technical Solutions Directorate < Sector Lead, CTSD Sector Team

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

11 Jul
2016
Senior Software Systems Engineer - 2003538
Pittsburgh, PA or Arlington, VA

Position Summary: The Client Technical Solutions (CTS) Directorate is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. CTS is focused on matching state-of-the-art software capabilities with critical US Department of Defense and other government agency acquisitions and organizations. This position will support the SEI’s mission by capturing government needs and identifying, shaping, and guiding programs to operationalize the most appropriate software engineering and acquisition techniques and practices. If you are an engineer passionate about improving the ability to deliver high quality, mission critical systems, and you are committed to bringing innovation to government and beyond, then this is the position for you.

The Senior Technical Staff Member of the Engineering Technical Staff of the Software Solutions Division will be responsible for leading and/or participating on teams that enable the organizations within the Department of Defense to enhance the predictable performance and mission assurance in the acquisition, evolution and operations of software-reliant systems. Key activities include understanding customer requirements and key challenge problems and addressing them with tailored solutions; applying, adapting, integrating, verifying and transitioning the SEI body of knowledge and other bodies of knowledge to maximize impact; creating, applying and codifying new approaches to support customer needs and advance the software engineering state of the practice; and maintaining situational awareness in technical and DoD domains. The candidate will coordinate closely with staff across the SEI to deliver software engineering technical expertise to customers throughout the life-cycle.

 

Minimum Qualifications and Requirements:

Education/Training: BS or equivalent degree in relevant discipline with ten (10) years applicable experience; MS or equivalent degree in relevant discipline with eight (8) years applicable experience; PhD or equivalent degree in relevant discipline with five (5) years applicable experience, or equivalent combination of training and experience.

Experience: The candidate must have experience in software engineering, development or management, and/or systems engineering. Must be knowledgeable of the software engineering and system engineering disciplines as well as understanding the DoD, Intelligence Community, or Civilian Agency acquisition processes. The candidate should have experience building, leading, managing, and participating on cross-functional, high technology teams. The candidate should be able to operate effectively with all organizations within the software and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.  Experience in five (5) or more of the following: DoD or Civilian Agency software systems acquisition on major programs (~100K SLOC or more of custom developed code, and/or significant integration of COTS/GOTS products); solid technical breadth and understanding of all aspects of the end-to-end software lifecycle (e.g., requirements, design, implementation, testing, etc.); alternative life cycles (e.g. waterfall, agile); major DoD, Intelligence Community, or Civilian Agency software acquisition policies and directives; enterprise architecture; software architecture development and evaluation, software architecture patterns (e.g. SOA) and concepts (e.g. Cloud computing); information Assurance/survivability; systems engineering on software intensive systems; COTS product integration; performance measurement including definition and application of goals, measurements and metric; system of systems engineering; requirements development and management; software integration and test and software/hardware integration; deployment of software intensive systems, especially including transition from legacy systems; cost estimation.

Skills/Abilities: Deep detailed knowledge of software engineering; detailed knowledge of at least two core competencies: requirements, architecture and design, program and acquisition management, performance improvement, assurance, or security and depth in at least one SEI body of work.  Excellent written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.  Proven program and project management skills including: interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight).  Proven team related skills with the ability to lead and participate in multidisciplinary teams.

Mobility: Will be required to travel on overnight assignments.

Environmental Conditions: Usual office setting with extended use of CRT.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Master's degree in Computer Science, Information Systems, systems engineering, software engineering, or acquisition management.

Licenses: Certified DoD Acquisition Professional. Certified PMP.

 

Accountability:  The member will be directly accountable for understanding DoD acquisition needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction:  As a technical staff member, he/she will be expected to operate with minimum supervision using CMU and SEI defined practice, policies and procedures, in concert with the SEI mission.

Decisions:  Will be required to work with government program offices to identify strengths and weaknesses within the acquisition program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  Must be able to lead and supervise others.

 

Job Functions or Responsibilities:

85%  Participate as a leader or member of technical teams in support of government acquisition program offices or participate as a member of a technical team performing research. Identify and support the implementation strategies for the capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses, and blog entries).

10%  Other duties as assigned by the Client Technical Solutions Directorate Executive Director, Deputy Director, Associate Director or Chief Engineer.

5%  Serve in an advisory capacity to other SEI technical programs on acquisition or technical issues.

100% TOTAL EFFORT

 

Organizational Chart:  SEI Director’s Office < Director, Software Solutions Division < Technical Director, Client Technical Solutions Directorate < Sector Lead, CTSD Sector Team

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

11 Jul
2016
Software Engineer - 2003539
Pittsburgh, PA

Position Summary: The Advanced Mobile Systems (AMS) initiative at the Software Engineering Institute (SEI), part of Carnegie Mellon University, is searching for a Software Engineer to fill a position focused on developing advanced prototypes applying image processing, computer vision, virtual machine technology, wireless networking, and other technologies for operation in environments that require rapid analysis and decision making.  AMS conducts applied research, prototypes advanced software systems and concepts, and matures and transitions technologies to the U.S. Department of Defense and other government organizations. The ideal candidate will enjoy working with world-renowned researchers and engineers at the SEI and Carnegie Mellon University, which is consistently ranked among the finest universities in the areas of computer science and engineering.  The candidate should have a strong computer science and/or engineering background, and experience in developing sophisticated computer software systems.

 

Minimum Qualifications and Requirements:

Education/Training: Bachelor’s Degree in Computer Science, Computer Engineering, Software Engineering or a related technical discipline, with demonstrated excellence in coursework and development activities.

Experience:  Three (3) of substantial software development experience.  Strong academic experience acceptable.

Skills/Abilities: Expertise in one or more of the following: image processing, computer vision, machine learning, virtual machine technology, wireless networks.

  • Ability to design, develop, test, analyze, document, and demonstrate advanced prototypes.  Ability and interest to investigate, learn, and apply emerging technologies and techniques. Ability to understand and resolve complex programming problems. Grounding in good software engineering practices. 
  • 2+ years direct experience in one or more of the previously stated areas of interest, preferably with experience in meeting tight performance constraints.
  • Proficient in C/C++, Java, Python, or similar languages.
  • Experience with fusion of data from multiple sources a plus.

Physical Mobility: The ability and willingness to travel is required.

Environmental Conditions: usual office setting with extended use of CRT.

Mental: The ability to:

  • Work meticulously with careful attention to detail;
  • Meet deadlines while working on multiple tasks -- sometimes under pressure and with shifting priorities;
  • Work collaboratively, professionally, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort;
  • Independently and quickly identify and learn new procedures, techniques, and technologies for application to advanced prototypes                                                                                              

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Master’s Degree in Computer Science, Engineering or a related technical discipline.

Experience: One year of professional development experience with mapping applications, heads-up displays, virtual reality, application of machine learning, virtual machine technologies, wireless networks. Operational, intelligence, or cyber military experience a big plus.

 

Accountability: This position is accountable the Advanced Mobile Systems Initiative Lead for work content, quality, and schedule.

Direction: This position operates within broad guidelines from the Initiative Lead and is expected to exercise reasonable discretion on technical solutions.

Decisions: Technical decisions to support specific research or customer needs. Software design choices and tradeoff decisions among technical alternatives. 

Supervisory Responsibilities: May lead activities related to a customer task or lead peers to accomplish specific technical tasks or supervise students on a research project.

 

Job Functions or Responsibilities:

55%      Design, develop, test, analyze, document, demonstrate, and deliver high-quality software.

30%      Architect complex prototype systems.

10%      Participate on teams for customer software development specific efforts. 

5%       Participate in planning, review, and reporting activities.

100% Total Effort

 

Organizational Chart:  Software Solutions Division (SSD) < Critical System Capabilities (CSC) Technical Directorate < Advanced Mobile Systems Initiative Lead < Software Developer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

23 Jun
2016
Machine Learning Research Scientist - 2003423
Pittsburgh, PA

Position Summary: The Software Engineering Institute (SEI) is a federally funded research and development center located at Carnegie Mellon University. Our Advanced Mobile Systems (AMS) Initiative is seeking a Machine Learning Research Scientist. This is an excellent opportunity to work with leading researchers and faculty at a truly world-class institution. The Machine Learning Research Scientist will focus on advancing and applying machine learning technology to analyzing streaming data. The AMS team conducts applied research, matures and prototypes technology; and transitions technology to government organizations.

The ideal candidate will enjoy working with world-renowned researchers/engineers at the SEI, Carnegie Mellon University, and other universities and R&D centers.  S/he will apply promising technologies to applications requiring rapid processing of large volumes of streaming data.  The candidate should have a strong mathematics and/or computer science background and experience in machine learning technology and developing highly-distributed systems performing near-real-time analysis of data. 

 

Minimum Qualifications and Requirements:

Education/Training: M.S. degree in computer science or related discipline with eight (8) years of experience or equivalent combination or training and experience. PhD strongly preferred.

Experience: Two or more (2+) years in three or more of the following: system/software architecture and development, virtual machine technology, distributed processing, data analytics, machine learning and/or natural language processing.

Skills/Abilities: Ability to contribute to machine learning research and design and develop advanced prototypes. Excellent analytical, problem solving and organizational skills. Ability to work successfully in small team environments, and communicate with prominent researchers and engineers.  Interest in the application of advanced technologies to extremely complex and challenging problems

Mobility: Normally sedentary position with some mobility; i.e., able to travel to campus and potentially other locations.

Environmental Conditions: Usual office setting, close contact with CRT for long periods of time.

Mental: Ability to pay close attention to detail, meet deadlines, balance multiple tasks, work under pressure, and work with frequent interruptions.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: PhD in Computer Science or related discipline with five (5) years of experience or equivalent combination of training and experience. Advanced coursework in machine learning/natural language processing.  Advanced coursework in architecting highly-distributed systems.  Additional course work in computer applications, software engineering and networking.

Experience: Four or more (4+) years’ experience in system/software architecture and development, virtual machine technology, distributed processing, data analytics, machine learning and/or natural language processing.  Experience developing data analytics applications, and applications for intermittently connected, low bandwidth, and low power environments; sensor integration and fusion. 

Skills/Abilities: Experience working with the intelligence community.

 

Accountability: Completes project tasks from routine to complex; is accountable for meeting established deadlines and project milestones with a commitment to decisions that have been made.

Direction: Expected to perform with limited supervision. Most normal duties and responsibilities are handled independently with the use of established research and engineering protocols and departmental and university procedures and policies.

Decisions: Works with researchers and developers to implement pragmatic solutions to complex problems.

Supervisory Responsibilities: Potential small team supervision.

 

Job Functions or Responsibilities:

30%     Works with CMU, SEI, other researchers, and the intelligence community to enhance the state of the art in technologies to assist in the analysis of large volume and streaming data.

30%     Works with CMU and SEI engineers to apply state of the art technologies to prototype systems that assist in the analysis of large volume and streaming data.

20%     Attends meetings, submits work progress reports, and performs related duties as required.

20%     Represents work plans and prototypes via publications, conferences, and meetings to the academic research, engineering, DoD, and first responder communities.

100% Total Effort

 

Organizational Chart: SSD Director > CSC Directorate Lead > AMS Initiative Lead > Machine Learning Research Scientist.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

16 Jun
2016
Cybersecurity Risk Management Technical Manager - 2003362
Pittsburgh, PA or Arlington, VA

Position Summary: The CERT Program is part of the Software Engineering Institute (SEI), a federally funded research and development center at Carnegie Mellon University with offices in Pittsburgh, Pennsylvania and Arlington, Virginia. The CERT Program engages in cutting-edge research, development, testing, and evaluation to improve the state of cybersecurity. As Cybersecurity Risk Management Technical Manager, you will lead a team of technical staff in developing and transitioning cybersecurity capabilities to both government and the private sector with a focus to benefit the US Department of Defense (DoD). 

You have both a breadth and diversity of experience with applied research, technology, information assurance, risk management, and technology lifecycle in DoD/Government domains. You are considered an expert source in risk management for your team, and you continue to acquire and expand your knowledge. You enjoy spending time with customers and practitioners to understand their problems and find innovative solutions.

You know how to lead teams (both co-located and geographically dispersed) of senior level engineers and complex projects – to supervise and review their work products, to guide their career paths, and to ease administrative burdens so that they can achieve jointly-developed technical goals. You know how to identify and propose new business development opportunities.  You know how to manage a diverse portfolio of work products and customers. You also bring advanced problem-solving and consulting skills in your role as a conduit and representative of the SEI with the community. You enjoy presenting to groups, publishing written works, and teaching/training others, and as a member of the Carnegie Mellon University community, you will have the opportunity to work with world-renowned faculty members and experts in cybersecurity.

As a member of our management team, you work with your Director and other Technical Managers to develop a Directorate-wide strategy, then you roll up your sleeves to develop and execute an implementation plan for your team to meet these goals, thereby assessing and improving the cybersecurity posture of the DoD, US Federal Government, Critical Infrastructure, and Industry.
 

Minimum Qualifications and Requirements:

Education/Training: BS in computer science, software engineering, information systems, or a related scientific/technical field with ten (10) years’ experience or equivalent combination of training and experience.

Experience:  Familiarity with process improvement models that contain the essential elements of effective management, development, and acquisition processes for one or more disciplines (e.g. the SEI’s CMMI) and experience transitioning these models into organizational practice; three or more years of leadership experience with responsibility for project and budget management.

Skills/Abilities:

  • Consulting skills and experience.
  • Demonstrated ability to develop and deliver training courses.
  • Project management experience.
  • Leadership and mentoring skills.
  • Strong knowledge of cybersecurity standards and related bodies of practice.
  • Experience with DoD customers.
  • Background in process improvement and capability measurement.
  • Ability to collaborate with other team members to accomplish organizational goals.
  • Critical-thinking skills.
  • Excellent written and verbal communications skills.

Physical/Mobility: Primarily sedentary in an office setting with some mobility.  Ability to travel frequently to various locations within the SEI and CMU community, customer sites, conferences, and offsite meetings.

Environmental Conditions: Close contact with computer for extended periods of time.

Mental: Strong interest in the human, managerial, and technical aspects of cyber security is critical for this position as are these abilities: take or share leadership role in technical projects; work meticulously with careful attention to detail; meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities; deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to understand the big picture, direction, and goals of an effort; ability to develop and communicate innovative ideas; ability to demonstrate initiative and to quickly learn new procedures, techniques, approaches, etc.

Accountability: The individual will implement and participate in the planning and execution of projects leading to technical products and results. The individual will also contribute to project, department, and program objectives and planning document development. The individual will keep in confidence sensitive information such as customer processes, risks, vulnerabilities, and internal work products, whether for eventual public or private distribution.

Direction: The individual is expected to act independently using CMU, SEI, and CERT defined policies, practices, and procedures – within the scope of assigned work.

Decisions: The individual must make sound technical decisions with little supervision. The individual must accurately represent the program in interactions with customers, sponsors, and the public. The individual is expected to perform analysis on-site at customer locations and immediately assess potential vulnerabilities requiring further investigation.

Supervisory Responsibilities: This position could involve the training and oversight of the work of other staff members, graduate students, resident affiliates, visiting scientists, and independent contractors. Depending on research project or customer work plan, position may involve task leadership.

Other: Must have a strong interest in cyber security and critical infrastructure protection, applied research, and development. Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.


Preferred Qualifications and Requirements:

Education/Training: MS in computer science, software engineering, information systems, or a related scientific/technical field with eight (8) years’ experience; PhD in computer science, software engineering, information systems, or a related scientific/technical field with five (5) years’ experience, or equivalent combination of training and experience.

Licenses: CISSP, CISM, GIAC, or similar; certifications from the audit discipline (such as CISA) are also acceptable.

Skills/Abilities: In addition to the minimum skills/abilities above, preferred skills/abilities include: demonstrated ability to develop and deliver coursework and training.


Job Functions or Responsibilities:

30%    Manages team to effectively implement and accomplish the SEI Program Plan, the CERT Division strategic plan, and the directorate strategic plan. Sets goals and objectives and manages operational and functional business activities. Develops, implements and tracks short and long term operational plans (financial, staffing, infrastructure, project).

30%   Provides guidance to and monitors the success of team/technical leads in meeting strategic and operational goals. Assesses performance of direct reports and makes salary recommendations for all staff within areas of responsibility. Provides oversight of team/technical leads and their supervisory responsibilities of technical staff. Conducts performance reviews. Responsible for recruitment, hiring, development and retention of all technical and support staff for the CRM team.

20%   Sets technical direction for team. Leads strategic planning process and contributes to the development of the CRR, CERT, and SEI strategic and program plans. Ensures annual update of plan; reviews feasibility of plan, identifies risks and defines risk mitigation strategy. Articulates vision for internal and external audiences.

10%   Identifies opportunities for new technical projects and manages start-up of new, high-priority technical areas of work. Works with Technical Director and business management personnel to develop and implement a funding and transition plan for new work areas.

10%   Directs organizational effectiveness and staff training and development plans. Identifies operational success measures and process improvements. Leads corrective actions.

TOTAL 100%


Organizational Chart: Director CERT Program < Technical Director, Cybersecurity Risk & Resilience Directorate < Technical Manager, Cybersecurity Risk Management

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

14 Jun
2016
DevOps Engineer - 2003355
Arlington, VA

Position Summary: The CERT Program is part of the Software Engineering Institute (SEI), a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. CERT engages in cutting-edge research and development in computer security.  The CERT Security Automation Directorate helps large network operators and security organizations in the USG distill actionable insights from networks through strategic analysis, tool building, and systems development.

As a member of the Deployment Team, the selected candidate will be responsible for developing, deploying, and evolving a network security test bed used for prototyping and systems analysis.  The selected candidate must be capable of administering commodity systems as well as operating specialized networking equipment and hardware.  As required, the candidate will support operational users and developers by using the test bed to verify engineering scenarios, create and test data-sets, and improve infrastructure automation.

 

Minimum Qualifications and Requirements:

Education/Training:  BS in computer science, software engineering, computer engineering, or a related quantitative field of study with eight (8) years of applicable experience. 

Experience:  Applicable experience in the design and implementation of complex testing and networking, including experience in:

  • Scripting (Python, Ruby, Perl).
  • System administration, monitoring, and automation in Unix/Linux.
  • Managing networks (switches, firewalls, routers, VPNs).

Skills/Abilities:

  • Deep familiarity with networking concepts, tools, etc.
  • Understanding of enterprise level communications.
  • Ability to execute test plans and report results, entry/exit documentation.
  • Excellent written and verbal communication skills.
  • Excellent reasoning and problem-solving skills.
  • Ability to work effectively without close supervision.
  • Ability to attend customer meetings and respond to customer requirements.

Mobility: Sedentary in an office setting with some mobility, i.e., able to travel to various locations within the SEI and CMU community as well as travel up to 20% to customer sites.

Environmental Conditions: Close contact with computer for extended periods of time.

Mental: Ability to work meticulously with careful attention to detail; ability to meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities; ability to deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort; ability to quickly learn new procedures, techniques, approaches, etc.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: MS in computer science, software engineering, computer engineering, or a related quantitative field of study with five (5) years of applicable experience. 

Experience:             

  • Experience working in production computing environment.
  • Experience designing, operating, and maintaining environments that include Unix/Linux, Windows, virtualization, and network systems and hardware.
  • Experience automating infrastructure tasks using scripting languages. (Python, Ruby, Perl).
  • Experience automating infrastructure configuration management. (Puppet, Ansible, Chef, CFEngine).
  • Experience with DevOps methodologies.
  • Experience with commercial high speed network monitoring equipment.
  • Experience using network test equipment and network load generators.

 

Accountability: The individual is accountable for the definition, creation, maintenance, and technical support of:

  • A prototyping environment consisting of Unix/Linux, windows, virtualization, storage, and network systems and hardware.
  • Automated configuration management, monitoring, and alerting for designated systems.
  • Other products and customer deliverables including material for technical presentations and reports to customers, training material, and technical documentation.

Direction: The individual is expected to act independently using CMU, SEI, and NSS defined policies, practices, and procedures – within the scope of assigned work.

Decisions: The individual is expected to participate in the decision-making and problem-solving processes of operating, maintaining and implementing a multi-protocol multi-carrier prototype network environment.

Supervisory Responsibilities: This position does not formally supervise others.  However, the individual may act in a technical leadership (non-supervisory) role in regard to specific work products and activities, or in regard to student interns, etc.

 

Job Functions or Responsibilities:

45%     Manage the hardware and software of a prototype network security test-bed to include all appropriate system administration tasks and processes; provision for new requirements and growth.

30%     Define and execute tests in the network security test-bed on behalf of internal and external users.

20%     Build appropriate scenarios, profiles, and data-sets in support of internal and external users using the network security test-bed.

Secondary Functions

5%       Contribute to the broader security community.

100% TOTAL EFFORT

 

Organizational Chart: Director, CERT Program < Technical Director < Technical Manager < DevOps Engineer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

10 Jun
2016
Senior Engineer - 2003268
REMOTE - Lexington Park, MD

Position Summary: The Senior Member of the Technical Staff/Senior Engineer will be located at the Lexington Park, Maryland operating location and will lead technical teams providing software engineering expertise to the NAVAIR PMA 281, Strike Planning and Execution Systems/Common Control System program.

The successful candidate will analyze DoD and commercial needs to formulate and prosecute a technical agenda that addresses these needs and will interact extensively with DoD and industry He or she will have the opportunity to have a seminal and lasting influence on an emerging body of technical research and practice.

Key candidate activities include: engineering/architecting a complex system-of-systems; soliciting and aligning requirements from stakeholders or other Subject Matter Experts; leading a team to write system requirements for communication systems and associated networks; information assurance; cross domain solutions; interfaces; mission planning systems; situational awareness systems; and program protection (domain expertise in one or more of these areas is a plus), leading a combined government and Prime Contractor team in the development of design concepts to implement system requirements, creating, analyzing, and briefing courses of action to leadership for decision, monitoring and, where applicable, guiding and advising on project efforts building the technical solution leading up to and through key acquisition milestones – System Requirement Review, Preliminary Design Review, and Critical Design Review, developing the plan and coordinating the test and evaluation of the overall system, Providing inputs to program Statements of Work, performing technical evaluation of contractor proposals, including Basis of Estimates.  The candidate will coordinate closely with on-site, Washington DC and Pittsburgh based SEI technical staff as well as remotely located subject matter experts in the Client Technical Solutions (CTS) Directorate and other SEI programs to deliver system & software engineering technical expertise to customers throughout the lifecycle.  The senior engineer will be able to lead and participate in multi-disciplinary teams.

 

Minimum Qualifications and Requirements:

Education/Training:  The candidate must have at least:  BS or equivalent degree in related discipline with ten (10) years applicable experience; MS or equivalent degree in relevant discipline with eight (8) years applicable experience; PhD or equivalent degree in relevant discipline with five (5) years applicable experience.  A Master’s degree in systems engineering, software engineering, Computer Science, Information Systems, acquisition management or equivalent combination of experience and training is strongly desired.

Experience:  The candidate must have experience in software and systems engineering.  Must be knowledgeable of the software engineering and system engineering disciplines as well as understanding the DoD acquisition lifecycle processes.   The candidate should have experience building, leading, managing and participating on cross-functional, high technology teams, should be able to operate effectively with all organizations within the software, engineering, and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.   The candidate should have experience with software/system acquisition in the Command and Control (C2) or Integrated Air and Missile Defense domains.  NAVAIR experience is considered a plus.

Skills/Abilities:

Detailed knowledge of software/systems engineering; detailed knowledge of at least one core competency: requirements, architecture and design, program and acquisition management, performance improvement, assurance, or security.

Broad systems engineering and system lifecycle experience with a focus in one or more of following domains:

  • Unmanned Systems
  • Autonomy
  • Service Oriented Architectures/Distributed Systems
  • Interoperability
  • Multi-Domain Mission Management
  • Networks
  • Cyber Security
  • Cross Domain Solutions
  • Interfaces
  • Communication Systems
  • Mission Planning
  • Situational Awareness Systems
  • International Traffic in Arms Regulations and Export Licensing

Experience defining, developing, analyzing, and acquiring large software intensive systems. Mastery of writing complete, unambiguous, and verifiable requirements. Experience in systems integration and analysis. Experience in risk analysis and mitigation strategies. Experience in agile software development methodologies, specifically scrum. Ability to recognize and summarize areas of potential software engineering research. Government acquisition experience. Strong leadership, interpersonal, and engagement skills in a multicultural environment. Strong written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.  

Proven program and project management skills including:

  • Interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients.
  • Programmatic skills (e.g., ability to develop project plans, track deliverables).
  • Project management skills (e.g., program control activities, budget oversight and staff planning).

Experience in organizational change management would be considered a plus. Completion of DoD acquisition accreditation levels (SPRDE, Program Management, and/or Test) and attendance at relevant DAU courses would be considered a plus. Ability to lead and participate in multidisciplinary teams

Mobility:  Will be required to travel on overnight assignments both domestic and international.

Environmental Conditions: Usual office setting with extended use of CRT.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Licenses: Certified DoD Acquisition Professional.  Certified PMP.

Other Skills/Abilities:  Experience in organizational change management.  Completion of DoD acquisition accreditation levels (SPRDE, Program Management, and/or Test) and attendance at DAU courses.

 

Accountability:  The member will be directly accountable for understanding DoD acquisition needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction:  As a technical staff member, he/she will be expected operate with minimum supervision using CMU and SEI defined practice, policies and procedures, in concert with the SEI mission.

Decisions: Will be required to work with government program offices to identify strengths and weaknesses within the acquisition program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  Must be able to lead and supervise project teams and other technical staff members.

 

Job Functions or Responsibilities:

85%     Participate as a leader or member of technical teams assisting/collaborating with government acquisition program offices or participate as a member of a technical team performing research.  Identify and support the implementation strategies for the capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses, and blog entries).

10%     Other duties as assigned by the CTS Technical Director or Deputy Director.

5%       Serve in an advisory capacity to other SEI technical programs on acquisition or technical issues.

100% TOTAL EFFORT

 

Organizational Chart:  SEI Director’s Office < SSD Director < Technical Director, Client Technical Solutions Directorate < Aviation Sector Lead < PMA 281 Operating Location Manager < Senior Engineer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

10 Jun
2016
Software Architect - 2003267
REMOTE - Lexington Park, MD

Position Summary:  This position will be located at the Lexington Park, Maryland operating location and will lead architecture-centric activities and teams providing software engineering expertise to NAVAIR PMA 281, Strike Planning and Execution Systems/Common Control System program.

The successful candidate will be a member of the Air Sector team in the Client Technical Solutions Directorate and will contribute to the development of software, system, and system of system architecture practices, their application in real-world settings, and general software engineering knowledge.  Individual responsibilities include: working in teams, on-site in the Lexington Park operating location and at the NAVAIR Patuxent River PMA 281, Strike Planning and Execution Systems facility, employing the use of architecture practices to identify and solve large-scale development problems; analyzing customer needs throughout the development lifecycle and recommending courses of action; contributing to the development and improvement of architecture practices and software engineering practice; using customer experiences to inform and advance an architectural research agenda; and contributing to the technical community through publications and presentations.

The successful candidate will analyze DoD and commercial needs to formulate and prosecute a technical agenda that addresses these needs and will interact extensively with DoD and commercial stakeholders. He or she will have the opportunity to have a seminal and lasting influence on an emerging body of technical research and practice.

The candidate will coordinate closely with on-site, Washington DC, and Pittsburgh based SEI technical staff as well as remotely located subject matter experts in the Client Technical Solutions (CTS) Directorate and other SEI programs to deliver system architecture & software engineering technical expertise to the NAVAIR customer throughout the lifecycle.  The software architect will be able to lead and participate in multi-disciplinary teams.

 

Minimum Qualifications and Requirements:

Education/Training: MS degree in software engineering, computer science, or information systems or an equivalent combination of training and experience.

Experience: The candidate must have at least:  BS or equivalent degree in relevant discipline with ten (10) years applicable experience; MS or equivalent degree in relevant discipline with eight (8) years applicable experience.

Skills/Abilities: The Candidate must have experience in architecting software-intensive systems that includes managing quality attribute concerns (e.g., performance, modifiability, and scalability). Experience in system architecture, and System of Systems (SoS) or Enterprise Architecture (EA) development and integration environments. Experience in Service Oriented Architectures (SOA)/Distributed Architecture Systems.  Ability to assist with activities across the development lifecycle (including requirements, architecture, design, integration, and testing activities) and to effectively leverage architecture concepts in these activities. Ability to analyze customer problems, determine needs, and recommend a course of action. Ability to quickly learn and adapt to new technologies, platforms, and environments. Knowledge of modern software development languages, platforms, development methods, architecture and design practices, and their application to practice. Ability to work effectively with team members, customers, and collaborators. Effective written and oral communication skills.

Broad systems of systems architecture and system lifecycle experience with a focus in one or more of following domains:

  • Unmanned Systems
  • Autonomy
  • Service Oriented Architectures/Distributed Systems
  • Interoperability
  • Multi-Domain Mission Management
  • Networks
  • Cyber Security
  • Cross Domain Solutions
  • Interfaces
  • Communication Systems
  • Mission Planning
  • Situational Awareness Systems
  • International Traffic in Arms Regulations and Export Licensing

Experience defining, developing, analyzing, and acquiring large software intensive systems. Mastery of writing complete, unambiguous, and verifiable requirements. Experience in systems integration and analysis.  Experience in risk analysis and mitigation strategies. Experience in agile software development methodologies, specifically scrum. Ability to recognize and summarize areas of potential software engineering research. Government acquisition experience. Strong leadership, interpersonal, and engagement skills in a multicultural environment. Strong written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.

Proven program and project management skills including:

  • Interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients
  • Programmatic skills (e.g., ability to develop project plans, track deliverables to schedule)
  • Project management skills (e.g., program control activities, budget oversight and staff planning)

Experience in organizational change management would be considered.

Physical Mobility: The ability and willingness to travel is required. On-site at the Lexington Park, MD operating location with some travel to SEI Pittsburgh and DC/Arlington offices, as required.  PMA 281 requested travel will be CONUS, as required.  Estimated travel is 15%.

Environmental Conditions: Usual office setting, including extended work at a computer screen.

Mental: Ability to meet deadlines and function productively as a team member.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Experience: Experience as listed above, plus: knowledge of SEI architecture work such as the Architecture Trade-off Analysis Method, Quality Attribute Workshop, and documentation with the Views and Beyond Approach; experience with the design and development of software-intensive systems, systems of systems, or mission-critical systems; and experience working with industry and DoD stakeholders.  Virtualization experience is strongly desired.

 

Accountability:  Estimation and tracking of time and schedule for all delegated technical tasks.

Direction:  Expected to act independently, with little day-to-day guidance. Expected to also work collaboratively in teams with minimal needed outside facilitation.

Decisions:  Determine architecture-centric solution techniques for practical system development problems.  Determine and recommend appropriate technology to use at a customer site in order to solve specific problems. Determine appropriate technical content for published report.

Supervisory:  Direct support activities to enable technical work.  May direct the activities of work study or graduate student.  Lead or co-lead customer efforts or transition project teams.

 

Job Functions or Responsibilities:

70%     Participate on teams for customer specific efforts in architecture-centric life cycle practices.

15%     Contribute to development of architecture practices.                                           

10%     Author publication-quality technical reports and deliver presentations as part of the defined technical work plan.

5%       As a member of the CTSD Aviation Sector, provide input to its goals, strategies, and technical direction.

100% TOTAL EFFORT

 

Organizational Chart:  SEI Director’s Office < SSD Director < Technical Director, Client Technical Solutions Directorate < Aviation Sector Lead < PMA 281 Operating Location Manager < Software Architect.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

 

 

08 Jun
2016
International Cybersecurity Analyst - 2003266
Pittsburgh, PA or Arlington, VA

Position Summary: The CERT Program is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Program engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the US Department of Defense, federal civilian agencies, private sector organizations and their networked information systems. CERT supports government customers by developing and transitioning cutting-edge analysis techniques and tools, providing strategic advisement, and supporting tactical operations.

The International Cybersecurity Analyst is a member of the CERT technical staff and based either in the SEI Office in Pittsburgh, Pennsylvania or in Arlington, Virginia. The candidate selected to fulfil this role will provide technical subject matter expertise in CERT support of International cybersecurity efforts and associated capability and capacity development efforts. This support will include assisting with the development and pursuit of CERT strategic drivers for engaging in these initiatives and vision for cybersecurity community interaction, regularly interacting with sponsors and stakeholders of these efforts, and execution of efforts as directed by the International CSIRT Initiatives Team Lead to ensure that the work being performed drives toward sponsor goals and CERT strategic drivers.

 

Minimum Qualifications and Requirements:

Education / Training: Bachelor’s Degree in Computer Science or scientific/technical field with three (3) years of experience or a MS/MA in a scientific or technical field with one (1) year of experience or equivalent combination of training and experience.

Experience: Professional experience should include three (3) or more years of experience supporting or managing large organizational or national-level CSIRT capabilities to include incident response, incident analysis, and development and implementation of mitigation actions and proactive security measures. This should include experience:

  • in creating, assessing, and improving these types of teams, as well as a working knowledge of existing global capabilities, advanced technology solutions and initiatives;
  • as an operational cybersecurity analyst, incident handler, or operations specialist;
  • working with and engaging people in diverse cultural environments, and;
  • fostering interaction and collaboration amongst peer organizations.

Skills / Abilities:

  • knowledge of current and effective CSIRT organizational and functional structures and the technical operations performed by these teams.
  • ability to work independently or within a team with members of varying skill sets and levels.
  • broad understanding of enterprise technology security issues.
  • broad working knowledge of commonly deployed computer network defense tools and processes to include leading vendor solutions.
  • ability to brief strategic and technical topics to senior management, technical and non-technical audiences.
  • knowledge of current operational challenges and technical threats faced by network security and intelligence organizations.
  • familiarity with project planning and management best practices.
  • ability to write / create clear, understandable documentation that translates complicated technical processes to a target audience (a writing sample is required).

Physical Mobility: Possibly sedentary, long periods of sitting, flexibility to travel to other campus locations or customer sites, frequent travel between Pittsburgh and Virginia offices, international travel as required.

Environmental Conditions: Normal office conditions, close contact with computer display for prolonged periods of time.

Mental: Ability to:

  • Work meticulously with careful attention to detail.
  • Meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities.
  • Deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort.
  • Develop and communicate innovative ideas.
  • Take leadership role in technical projects.
  • Quickly learn new procedures, techniques, and approaches.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education / Training: MS/MA in a scientific or technical field with one (1) year of experience.

Licenses: CISSP, CEH, CISM, CompTIA, or similar.

Experience:

  • Participation in broad public forums through activities such as standards, open source development, or publication.
  • Experience publishing research and academic papers.
  • Experience working with the government, or within a critical infrastructure sector.
  • Active in regional or international trade-related organizations such as the Forum of Incident Response and Security Teams (FIRST), North American Network Operators' Group (NANOG), Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG), Anti-Phishing Working Group (APWG), etc.
  • Demonstrable experience effectively deliver training to technical and management level audiences on subject matter related to computer incident response team (CSIRT) development, incident response operations.
  • Background in international capacity and community building.

 

Accountability: This position is accountable for ensuring that the International CSIRT Initiatives team delivers on the execution of the statement of work for customers sponsoring capability building efforts.  The individual is accountable for aligning cybersecurity operations projects with customer needs and re-prioritizing efforts as appropriate, in close coordination with the International CSIRT Initiatives Team Lead.

Direction: The individual is expected to act independently using CMU, SEI, and CERT defined policies, practices, and procedures – within the scope of assigned work.

Decisions: The individual is expected to participate in the decision-making and problem-solving processes of defining, designing, implementing, and sustaining national-level cybersecurity and related operations; suggesting and implementing policies and procedures to support these activities; and creating and sharing information regarding the state of the practice for broad dissemination.

Supervisory Responsibilities: This position will not formally supervise any personnel.

 

Job Functions or Responsibilities:

70%     Create framework and methodology documents, both general and specific to individual stakeholder groups, intended to facilitate the organizational and technical capacity development of international partners.

20%     Support planning, development, and execution of customer led and/or supported development activities, planning discussions, and awareness raising exercises. Through partnership, awareness, and action evaluate the need for, develop blueprints for, and assist with the implementation of national-level CYBERSECURITY capabilities.

10%     Capture knowledge from the engagements undertaken, integrate it with lessons learned from other similar work, and help transfer that knowledge for the betterment of the global CYBERSECURITY community.

100% TOTAL EFFORT

 

Organizational Chart: CERT Program Director < Monitoring and Response Technical Director < Security Operations Technical Manager < International CSIRT Initiatives Team Lead < International Cybersecurity Analyst.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

24 May
2016
Senior Researcher - 2002044
Pittsburgh, PA or Arlington, VA

Position Summary: This individual provides quantitative expertise to outside customers and other technology groups in the SEI to address a wide variety of software engineering, acquisition, and sustainment problems. Specific examples include reviewing project cost estimates, establishing and assessing software measurement programs, designing project management dashboards, and assessing the quality of the data currently being used by customer organizations.  Additionally, this position leads and participates in research and development projects within the Software Engineering Measurement and Analysis initiative and on teams in other units of the SEI.  The position also requires making public presentations on our R&D activities and products and services we offer as well as serving as the principle point of contact for customer engagements.  The position also works with the SEI Business Development team as requested to support visits with potential customers and to write work proposals.  As a senior member of the technical staff, the individual will also be responsible for review and evaluation of the work performed on their projects to ensure value is delivered and the work is of high quality.

 

Minimum Qualifications and Requirements:

Education/Training:  B.S. degree or higher in quantitative analysis such as social sciences or B.S. degree in computer science, software engineering or related discipline.

Experience:  Ten (10) years of applicable experience in software engineering measurement, project management, or DOD acquisition.  Also experience on software project teams or as a consultant.

Skills/Abilities:

  • Quantitative analytical expertise including statistical modeling and empirical research methods
  • Ability to use advanced statistical techniques including multivariate analysis and machine learning methods
  • Ability to construct an empirical research plan and experimental design
  • Excellent/outstanding written and verbal communications skills.
  • Ability to actively listen to grasp the big picture, identify key issues and convey the goals of an organization and the current effort
  • Ability to work with and lead teams of professionals
  • Instructional delivery skills
  • Planning skills
  • Consulting skills including meeting facilitation skills
  • High capability for attention to detail

Skills with the following tools:

Microsoft Office (Word, Excel, PowerPoint)

At least one statistical package (SAS/Jump, SPSS, Systat, R)

Mobility: Typical travel is 20-25% per month and occasionally greater

Environmental Conditions:  Extensive use of LCD terminal and keyboard

Mental: Ability to work under pressure to meet deadlines, attend to details, be creative, deal collaboratively with customers, SEI team members, managers and other SEI groups.  Able to express criticism in a constructive manner and willing to accept criticism without becoming defensive. Willing to speak up and offer ideas and feedback when requested.

Other:  Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: M.S. or PhD in one of the above disciplines.

Licenses:  Certification as Project Management Professional, Six Sigma Black Belt, ASQ Quality Professional or similar certification.

Experience: Five years or more in a management role related to software development, sustainment or acquisition in a DOD context. Two or more years in an internal or external consulting role.

Skills/Abilities: Experience conducting experiments, validation studies on software practices or other innovations.  Knowledge of design of experiments and/or control charts.  Data mining.

 

Accountability: When serving as the technical lead for a project, this position is responsible for meeting the project’s commitments: deliverables, schedule and budget. The individual must be able to develop and present work plans and status reports to the customer as required. The individual is accountable for the quality of the products delivered and customer satisfaction with the deliverables and working relationship.

Direction: Conducts complex technical work with limited direction from SEMA Manager and other team or initiative leaders.

Decisions: May determine content of customer communications. Will replan efforts and schedules as circumstances change. Will have direct impact on objectives and approach to own technical work.

Supervisory Responsibilities:  May function as a team leader on technical work. Under these circumstances, the individual is responsible for scheduling the work of the team and will supervise others as necessary.  Will work with other managers as necessary to deconflict work priorities of team members and will provide feedback on the performance of the team to the team and the SEMA manager and SEAP Technical Director as requested.

 

Job Functions or Responsibilities:

35%     Develop measurement technology and research papers as needed for SEI initiatives.

40%     Consults with customers on design and implementation of measurement to support customer functions and decisions.

20%     Develops transition materials such as courseware and case studies on customer engagements and provides delivery of SEI training.

5%       Supports business development.

100% TOTAL EFFORT
 

Organizational Chart: SSD Director < Technical Director for SEAP < Manager of SEMA

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

 

18 May
2016
Managing Director, CERT Division
Pittsburgh, PA

Boyden Global Executive Search

Founded in 1946, Boyden is the oldest and one of the largest privately owned search firms in the world, with more than 65 offices in over 40 countries. In the world of executive search, Boyden is distinguished by the expertise of our consultants, the resources of our global firm, our commitment to our clients, and our culture of professionalism and integrity. For further information about Boyden, visit www.boyden.com.

 

Background

Our client, the Carnegie Mellon University Software Engineering Institute (SEI), is seeking a highly experienced, dynamic and visionary leader to fill the position of Managing Director, CERT Division. The position is located in Pittsburgh, PA and is open due to a planned retirement in September.

For over three decades, the Software Engineering Institute has been helping government and industry organizations to acquire, develop, operate, and sustain software systems that are innovative, affordable, enduring, and trustworthy. SEI serves the nation as a not-for- profit, Federally Funded Research and Development Center (FFRDC), specifically established by the U.S. Department of Defense (DoD) to focus on software and cybersecurity. SEI is based at Carnegie Mellon University, a global research university annually rated among the best for its programs in computer science and engineering.

As an FFRDC, the SEI fills voids where in-house and private sector research and development centers are unable to meet DoD core technology needs. For government and industry, the SEI is an objective, unbiased, honest broker that maintains a critical mass of top-caliber software and cyber professionals; provides a central repository for information about software engineering and cybersecurity; develops and maintains core competence in areas critical to the DoD; and  serves as an intellectual crossroads and catalyst for change.

SEI is composed of three business units:

  • Software Solutions Division
  • Emerging Technology Center
  • CERT Division

The CERT Division (CERT) is a national asset in the field of cybersecurity that is recognized as a trusted, authoritative organization dedicated to improving the security and resilience of computer systems and networks. CERT regularly partners with government, industry, law enforcement, and academia to develop advanced methods and technologies to counter large-scale, sophisticated cyber threats. CERT is a leader in:

  • Network Analysis
  • Analyzing cyber vulnerabilities in the critical infrastructure
  • Performing research to address insider threats

CERT has approximately 260 employees and represents $88.4 million of funding out of SEI’s total FY $137.2 million. FY 2016 projections are $97.2 million for CERT and $144.5 million for all of SEI. Because CERT is located within the SEI, the majority of its work contributes to government and national security efforts. CERT collaborates with high level government organizations such as the Department of Defense; Department of Homeland Security (DHS); law enforcement, including the FBI; the Intelligence Community; and many industry organizations. CERT also collaborates with non-Federal organizations to resolve software vulnerabilities.

For more information on SEI, please visit the SEI web site at www.sei.cmu.edu and for CERT, www.cert.org

 

Position

The Managing Director of the CERT Division reports to the Director & CEO of the SEI and is a member of the SEI’s Executive Leadership Team (ELT). CERT is the largest division bringing in nearly $100 million in funding to the SEI. This position is directly responsible for approximately 250 to 300 employees.

In addition to her/his duties and responsibilities as Managing Director, the selected individual is also expected to participate on research and science advisory boards, such as external advisory boards for other labs, science advisory boards, and/or programs conducted by the National Academies of Science and Engineering.

 

Key Responsibilities

The Managing Director’s primary responsibilities are to develop and implement the strategic plan and maintain oversight of the entire division including day-to-day management – direction of the research, development, and delivery of the products and technologies; and develop and manage work plans with SEI customers and collaborators.

Additional key responsibilities of the Managing Director include:

  • Developing, implementing and overseeing the strategy, direction, and management of SEI’s activities in the area of cybersecurity
  • Providing leadership, both horizontally and vertically across the SEI
  • Developing near- and long-term strategies and financial goals; within first 100 days develop a 2-year CERT strategic plan that aligns with the SEI Directors Office initiatives
  • Managing the DoD STE allocation of CERT
  • Leading the business development efforts relative to DoD, other Federal and Commercial clients to ensure aggressive long term growth in revenues and margins
  • Leading the strategic planning for and providing leadership and guidance to the business development efforts throughout the division; establish revenue  goals, KPIs, and oversight in the identification and closure of opportunities for expanding existing relationships and for new business including:
    •  Acquiring additional DoD business in the area of cybersecurity
    • Developing the intelligence business which will supplement CERT funding, but is not limited by STE ceiling
  • Nurturing existing client relationships and funded programs of work
  • Developing new clients in the non-DoD sector (other Federal clients and Commercial organizations)
  • Establish strategic alliances and joint ventures that will accrete to SEI’s growth across all business units
  • Building strategic Senior Leadership relationships with other organizations within the DoD
  • Working with the SEI Director’s Office and Chief Strategy Officer’s Office to establish and achieve an annual set of strategic goals in the areas of Technical, Research, Workforce, Customer, Revenue, and Mission
  • Building CERT’s management bench strength across the entire division and oversee formal performance management and succession planning
  • Being a team player and collaborator within CERT and across the SEI

 

Selection Criteria

The ideal candidate must have a minimum of fifteen (15) years of progressively increasing technical responsibilities managing research projects in a University, the Department of Defense, or in a software intensive systems environment at the classified level. He/she must have demonstrated experience in leading business development activities that result in substantial growth of revenues over time.

The ideal candidate must have experience in building and managing high technology teams and have the knowledge of DoD/IC computer science, cybersecurity, IT Architecture, or software technology. An M.S. degree in a technical field is required and an advanced business degree is desirable. Candidates must have a DoD Top Secret security clearance or the ability to obtain one.

The candidate must be able to demonstrate successful experience in managing a portfolio of large, complex, research projects that proved strategic in nature and the content of which have focused on information technology, software reliant systems, cybersecurity, and technology while also reflecting growth in revenue and assurance of compliance with policies/regulations. He/she should have experience with budget management responsibilities including monitoring financial information and performance against goals. Management experience within a university, government, military, and/or Fortune 500 technology-based organization is preferred. Candidates must be able to travel domestically and internationally up to 50% of the time.

Additionally, the candidate must possess/be:

  • A strategic thinker and capable of thinking outside-the-box
  • Experienced in financial management and personnel mentoring and oversight
  • Track record of accomplishments in leading the research and transition agenda for a technology-based organization
  • Experience in developing plans and managing projects (budget and schedules) in an integrated team environment
  • Demonstrated understanding of the current and future government cybersecurity needs
  • Understanding of how to commercialize DoD cyber technology and sell and market to the commercial community
  • Ability  to  collaborate  internally  and  partner  effectively  with  all  levels  of  the organization
  • Demonstrated  ability  in  leading  and  managing  senior  level  researchers  and engineers
  • Strong influencing, consensus building and engagement skills
  • Ability to collaborate and negotiate agreements with senior managers and officials both internally and externally
  • Reputation for highest level of integrity
  • Forward thinking and a creative change agent
  • Resourceful, committed, and accountable
  • High comfort level with ambiguity
  • Success at building consensus within a matrixed organization
  • Strong organizational, leadership, team building, and mentoring skills
  • Transparent and respectful of the views of others
  • Have great listening skills
  • Decisive decision maker
  • Excellent oral, written, and presentation skills
  • Confident but have one’s ego in control and have a healthy sense of humor

 

Compensation and Benefits

This is an outstanding career opportunity for an individual interested in a genuine professional challenge. With this position comes a very competitive compensation and benefits program.

 

HOW TO APPLY

The Officer-in-Charge of this engagement is Tim McNamara, Managing Partner. Linda Kearschner, Principal, is leading the recruiting effort for the project. Interested parties should submit, in electronic format, a resume with salary history and a cover letter outlining reasons for interest in this opportunity to lkearschner@boyden.com, or may call our toll free number at 1.877.2.BOYDEN (226-9336) or 1.202.536.5168 for additional information.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

18 May
2016
Security Operations Technical Manager - 2003124
Pittsburgh, PA

Position Summary: The CERT Program is a world-class program within the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Program engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the US Department of Defense, US Intelligence Community, federal civilian agencies, private sector organizations and their networked information systems. CERT supports government customers by developing and transitioning cutting-edge analysis techniques and tools, providing strategic advisement, and supporting tactical operations.

CERT is seeking a dynamic Security Operations Technical Manager (TM) who will lead, shape and manage the growth of a cutting edge security operations program. This candidate will be able to reason about complex problems, be an innovator, and a leader.

This candidate must be able to develop and execute a technical agenda and strategic roadmap to continually improve the state of the art and practice of Security Operations and Incident Management/Response. The TM will need to be able to communicate this technical vision and be capable of building consensus within the team and to maintain a successful culture built on high-quality and impactful customer work.

This approximately 20-person Security Operations team works from the SEI’s Pittsburgh and Arlington offices, and is embedded at USG facilities in the Washington DC-Baltimore area.  The position of technical manager is responsible for all aspects of developing and executing the body of work to include setting the technical direction; managing financials; business development; and personnel issues.

This role reports to the Director of Monitoring and Response, a directorate in the CERT Division.

 

Minimum Qualifications and Requirements:

Education/Training:  BS in a Computer Science or related scientific/technical field with ten (10) years’ experience, or equivalent combination of training and experience.

Experience:  Experience listed above should include:

  • Work in cyber security or intelligence operations;
  • Prior responsibility managing a team comprising a total of at least 10 individuals with commensurate personnel and financial authority.
  • These individuals should have had cyber operations roles.

Skills/Abilities: Working knowledge of:

  • Current security challenges and threats faced by a subset of the following audiences: USG intelligence, defense, law enforcement, civilian departments, and critical infrastructure.
  • USG mission’s areas/owners in cyber security.
  • Community best practices in cyber operations and associated tools/techniques.
  • Understanding of existing standards and models for security operations, incident response, intrusion analysis and cyber threat intelligence.
  • Internet protocols, operations, and governance.
  • International policies, frameworks, treaties and conventions.

Ability to:

  • Set and implement a strategic direction for a technical area and group.
  • Codify operational experience into best practices.
  • Conduct technical project management.
  • Brief strategic and technical topics to senior management and non-technical audiences;
  • Sustain a team with business development activity.
  • Foster professional growth and develop technical/professional leadership capabilities in technical staff.

Physical Mobility: Primarily sedentary in an office setting with some mobility.  Requires travel to various domestic locations within the SEI and CMU community to include the SEI Arlington/Pittsburgh office; sponsor sites; conferences; and offsite meetings with routine frequency (up to one 2 day trip every week).

Environmental Conditions: Normal office conditions; close contact with computer display for extended periods of time.

Mental:  The ability to: work meticulously with careful attention to detail; meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities; deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort; develop and communicate innovative ideas; and excellent oral and written communication skills.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: MS in a related technical field with ten (10) years of experience, or equivalent combination of training and experience.

Experience:  Experience listed above should include:

  • Working for or supporting the USG.
  • Supporting multiple sponsors/customers.
  • Supporting customers in an operational security environment such as incident response, intelligence, or a security operations center.
  • Supporting elements of the critical infrastructure sectors or international NCSIRTs.
  • Leading community building activities in the critical infrastructure, NCSIRT, or USG space.
  • Establishing and defining processes for operational security organizations, and codifying best practices from community and operational experience.
  • Leading workforce/capacity building projects.
  • Prior responsibility in managing a team of 15-20 individuals with commensurate personnel and financial authority.
  • Participation in public and closed community security forums through activities such as publication, presentation, collaborative security operations, and collaborative research.
  • Experience leading work internationally.

Skills/Abilities:

  • Practical experience leading, defining, or applying TTPs for cyber operations; 
  • Working knowledge of secure systems and network architecture practices.

 

Accountability:  This position is accountable for the specification and execution of all any Incident Analysis technical area work plans and a subset of the SEI operational plan.

Direction:  The individual in this position is expected to act autonomously using CMU, SEI, and CERT, defined policies, practices, and procedures.  Additionally, this position will define those set for their technical area and influence those set for CERT.

Decisions:  The individual in this position is expected to make strategic choices about the direction of the technical area that will be distilled into a technical agenda funded by a defined set of existing or new customers and implemented by a team hired to support the specifics tasking.

Supervisory Responsibilities:  This position has ultimate supervisory responsibility over all staff in the technical area to include hiring, performance reviews, salary adjustments, task assignment, and setting the tone and culture of the group.

 

Job Functions or Responsibilities:

30%     Manages group to effectively implement the SEI and task order work plans.  Sets goals and objectives and manages operational and functional business activities.   Develops, implements and tracks short and long term operational plans (financial, staffing, infrastructure, project).

30%     Provides guidance to and monitors the success of team leads in meeting strategic and operational goals. Assesses performance of direct reports and makes salary recommendations for all staff within areas of responsibility.  Provides oversight of team leads and their supervisory responsibilities of technical staff and conducting performance reviews. Responsible for recruitment, hiring, development and retention of all technical and support staff.

20%     Sets technical agenda of the technical area.  Leads planning process and contribute to the development the CERT strategic plan.  Ensures regular update of technical area’s plan; reviews feasibility of plan, identifies risks and defines risk mitigation strategy.  Articulates vision for internal and external audiences.

10%     Identifies opportunities for new technical projects and manages start-up of new, high-priority technical programs of work. Works with Technical Director of Response and Monitoring to develop and implement a funding and transition plan for new work areas.

10%     Directs organizational effectiveness and staff learning and development plans. Identifies operational success measures and process improvements.  Leads corrective action.

100% Total Effort

 

Organizational Chart: Division Director, CERT < Monitoring and Response Technical Director < Security Operations Technical Manager.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

21 Apr
2016
Data Integration Analyst - 2002942
Pittsburgh, PA or Arlington, VA

Position Summary:  The CERT Threat Analysis (TA) group is part of the CERT Program in the Software Engineering Institute.  This technical area:

  • Analyzes, reverse engineers, and finds relationships between malicious code.
  • Identifies and studies actors, threats, and vulnerabilities to form cyber intelligence.
  • Builds organic capability in USG operational organizations, and participates in the broader security community.

Within the group, the Data Integration Analyst manages the technical aspects of operationalizing the tools and techniques of the directorate.  This operational capability accelerates the discovery and transition of actionable data to the analysis community.  The team is responsible for the collection, storage, and aggregation of data sources.  They additionally work in concert with analysis to streamline automated analysis.

 

Minimum Qualifications and Requirements:

Education/Training:  BS in a scientific or technical field with three (3) years experience; MS in a scientific or technical field with one (1) year experience.

Experience: Experience listed above should include some work in operational security or incident response; software development or analysis. Experience in an operational environment and systems deployment.

Skills/Abilities:

  • File system deployment and operations.
  • Relational database systems.
  • Virtualization and Container technologies.
  • System automation with a scripting language ie: BASH, Python, Perl, Ruby.
  • DevOps tools and methodologies.
  • Integrated change management.
  • Integrated configuration management.
  • System monitoring.
  • Internet protocols, operations, and governance.

Mobility: Primarily sedentary in an office setting with some mobility.  Requires travel to various domestic locations within the SEI and CMU community to include the SEI DC office; sponsor sites; conferences; and offsite meetings with routine frequency (2-3 trips a month).

Environmental Conditions:  Normal office conditions; close contact with computer display for extended periods of time.

Mental:  The ability to:

  • envision operational application of fundamental and applied research ideas;
  • elicit technical requirements and direct capability development based on collaboration with executive, non-technical, or domain-expert stakeholders;
  • communicate complex designs or plans to executive staff, sponsors, project managers and technical staff in clear concise language tailored to the audience;
  • meet deadlines while working on multiple tasks often with shifting priorities; and
  • deal collaboratively and successfully with customers, co-workers and other professional colleagues, managers, and staff.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Skills/Abilities: 

  • Big Data platforms (Hadoop, HBASE)
  • Virtualization and Container technologies
  • Parallel and distributed computing environments
  • Current challenges and threats faced by USG intelligence, defense, law enforcement, and civilian organizations
  • Knowledge of USG organizational policies and missions areas/owners in cyber security

 

Accountability: The individual is accountable for the definition, creation, operations of data inject and archival and analysis systems.  

Direction: The individual in this position is expected to act autonomously using CMU and SEI defined policies, practices, and procedures.  Additionally, this position will define those set for TA and influence those set for CERT.

Decisions: The individual must make sound technical decisions with little supervision. The individual must accurately represent the program in interactions with customers and sponsors.

Supervisory Responsibilities: This position could involve the training and oversight of the work of other staff members, graduate students, and independent contractors.

 

Job Functions or Responsibilities:

30%     Manages the data integration platform to including hardware and software assets.

35%     Provides mentoring to and monitors the success of team members in meeting operational goals.

35%     Evaluates and selects technology to support the analytic mission of the directorate.

100% TOTAL EFFORT

 

Organizational Chart:  CERT Program Director < Threat Analysis (TA) Technical Director < Malware Analysis Technical Manager < Data Integration Analyst.

                     

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

24 Mar
2016
Malware Reverse Engineer - 2002795
Pittsburgh, PA or Arlington, VA

Position Summary:  The CERT Threat Analysis group aims to improve malware analysis capability while addressing active and emerging threats.  The successful candidate will reverse engineer malicious code in support of high-impact customers, design and develop new analysis methods and tools, work to identify and address emerging and complex threats, and effectively participate in the broader security community.

Responsibilities: Perform in-depth reverse engineering of malicious code, document and transition results in reports, presentations, and technical exchanges; Design, prototype, and transition new analysis methods and tools; Identify and document high-impact, emerging, and complex active security threats; design and pursue solutions; and transition results in tools, reports, presentations, and technical exchanges Participate in the broader security community through collaboration, papers, and presentations.

 

Minimum Qualifications and Requirements:

Education/Training: Bachelor of Science in Computer Science, Software Engineering, Information Systems, or related field with three (3) years of experience, or equivalent; Master’s Degree in Computer Science, Software Engineering, Information Systems, or related field with one (1) year of experience.

Experience:                               

  • Reverse engineering software binaries.
  • Using disassemblers (ie. IDA Pro).
  • Using debuggers (ie. OllyDbg, Immunity, gdb, WinDbg).
  • Using hex editors and tools (ie. BinDiff).
  • C/C++ development.
  • x86 assembly language.
  • Windows Portable Executable (PE) file format Technical Writing Solid understanding of programming languages and operating system concepts.

Skills/Abilities:                  

  • technical writing.
  • analytical and problem solving skills.
  • develop and explain technical decisions.
  • prioritize work.
  • recognize and deal appropriately with confidential and sensitive information.
  • communicate effectively under normal and stressful situations.
  • handle shifting priorities.
  • mentoring/training skills.
  • interact effectively with technical and non-technical audiences both written and verbally.
  • work within a closely coordinated team.
  • work calmly and well under pressure.
  • maintain composure while dealing with difficult people.

Mobility: Primarily sedentary, long periods of sitting; ability to travel to various locations within the SEI and Carnegie Mellon community, customer sites, conferences, and offsite meetings with some frequency.

Environmental Conditions:  Normal office conditions, close contact with computer for prolonged periods of time.

Mental: Ability to work under pressure and changing priorities; pay attention to detail; meet inflexible deadlines; deal with difficult individuals while maintaining composure.     

Other: Candidate will be required to travel on overnight assignments. Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Experience:         

  • YARA.
  • IDAPro plug-in or IDAPython development.
  • Other assembly languages (ie. ARM, x86_64).
  • Python or Java development.
  • Assembly development.
  • Linker and/or Loader development or analysis Executable and Linker Format (ELF) file format Windows, Linux or Mac OS X.
  • APIs and security models.
  • Internet Protocols.
  • Cryptographic algorithms.
  • Kernel-level debugging (ie. WinDbg).
  • Device driver development.
  • Mobile device development.
  • Mobile device reverse engineering.
  • Software vulnerability analysis.
  • VirtualBox or VMWare admin or development Network packet captures (ie. Wireshark, pcap formats).

 

Accountability: Develop and implement project technical results.  Contribute to program objectives and plans development.  Keep in confidence sensitive information such as security, vulnerability, and site information.

Direction: The individual is expected to act independently in accordance with Carnegie Mellon, Software Engineering Institute, CERT Program, and CERT Threat Analysis procedures and policies, such as those involving product development, team interaction, and confidentiality.

Decisions: Must accurately represent the program in interactions with customers, sponsors, and the public.  Participate in conferences and workshops where security-related issues are discussed as required.

Supervisory Responsibilities: This position has no supervisory responsibilities.

 

Job Functions or Responsibilities:       

50%   Perform in-depth reverse engineering of malicious code, document and transition results in reports, presentations, and technical exchanges;

20%   Design, prototype, and transition new analysis methods and tools;

20%   Identify and document high-impact, emerging, and complex active security threats; design and pursue solutions; and transition results in tools, reports, presentations, and technical exchanges.

10%   Participate in the broader security community through collaboration, papers, and presentations.

100%      TOTAL EFFORT

 

Organizational Chart: CERT Program Director < CERT Threat Analysis Technical Director < CERT Malware Analysis Technical Manager < Malware Reverse Engineer.

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

16 Mar
2016
Senior Software Assurance Engineer - 2002744
REMOTE - Bedford, MA

Position Summary: The CERT program of the Software Engineering Institute is looking to fill a leadership position improving the cyber security of acquisitions in the Air Force. This high visibility, high impact position will be responsible for helping senior leaders of Air Force programs improve the cyber resiliency of software intensive systems throughout the acquisition lifecycle, from requirements to development to deployment and sustainment.

This Senior Member of the Cyber Security Foundations directorate will be responsible for leading cross functional teams that enable the organizations within the Air Force to enhance the predictable performance and mission assurance in the acquisition, evolution and operations of software-reliant systems. Key activities include understanding customer requirements and key challenge problems and addressing them with tailored solutions; applying, adapting, integrating, verifying and transitioning applicable research and practices to maximize impact; creating, applying and codifying new approaches to support customer needs and advance the software security state of the practice; and maintaining situational awareness in technical and DoD domains. The candidate will coordinate closely with technical staff in CERT and other SEI programs to deliver cyber security technical expertise to customers throughout the life-cycle.

 

Minimum Qualifications and Requirements:

Education/Training: BS or equivalent degree in relevant discipline with ten (10) years applicable experience; MS or equivalent degree in relevant discipline with eight (8) years applicable experience; PhD or equivalent degree in relevant discipline with five (5) years applicable experience, or equivalent combination of training and experience.

Experience: The candidate must have experience in software engineering, development or management, and/or systems engineering. Must be knowledgeable of the software engineering and system engineering disciplines as well as understanding the DoD acquisition processes and relevant cyber security processes, such as the Risk Management Framework (RMF). The candidate should have experience building, leading, managing and participating on cross-functional, high technology teams, should be able to operate effectively with all organizations within the software and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.

Skills/Abilities: Detailed knowledge of cyber security and mission assurance in the acquisition process; detailed knowledge of at least one core competency: requirements, architecture and design, program and acquisition management, performance improvement, or assurance.  Experience in five or more of the following: DoD software systems acquisition on major programs (For the purposes of this announcement, our definition of major is at least 100K SLOC of custom developed code, and/or significant integration of COTS/GOTS products); solid technical breadth and understanding of all aspects of the end-to-end software lifecycle (e.g., requirements, design, implementation, testing, etc.); alternative life cycles (e.g. waterfall, agile); major DoD software acquisition policies and directives; enterprise architecture ; software architecture development and evaluation, software architecture patterns (e.g. SOA) and concepts (e.g. Cloud computing); information Assurance/survivability; systems engineering on software intensive systems; COTS product integration; performance measurement including definition and application of goals, measurements and metric; system of systems engineering; requirements development and management; software integration and test and software/hardware integration; deployment of software intensive systems, especially including transition from legacy systems; cost estimation.

Strong written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.  Proven program and project management skills including: interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight).  Ability to lead and participate in multidisciplinary teams.

Mobility: Will be required to travel on overnight assignments.

Environmental Conditions: Usual office setting, close contact with computer for prolonged periods of time.

Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance.

 

Preferred Qualifications and Requirements:

Education/Training: Master's degree in Computer Science, Information Systems, Systems Engineering, Software Engineering, or Acquisition Management.

Licenses: Certified DoD Acquisition Professional. Certified PMP.

 

Accountability:  The member will be directly accountable for understanding DoD acquisition and cyber security needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction:  As a technical staff member, he/she will be expected to operate with minimum supervision using CMU and SEI defined practice, policies and procedures, in concert with the SEI mission.

Decisions:  Will be required to work with government program offices to identify strengths and weaknesses within the acquisition program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  Must be able to lead and supervise others.

 

Job Functions or Responsibility:

65%  Participate as a leader or member of technical teams in support of government acquisition program offices or participate as a member of a technical team performing research. Identify and support the implementation strategies for the capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses, and blog entries).

20%  Work with managers, business developers, current customers, and prospective customers to identify and define value-delivering opportunities and capture work.

10%  Other duties as assigned by management.

5%  Serve in an advisory capacity to other SEI technical programs on acquisition or technical issues.

100% TOTAL EFFORT

 

Organizational Chart:  SEI Director’s Office < Director, CERT < Technical Director, Cyber Security Foundations < Technical Manager

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran.

Search for Postions

 Interested in working with us?

Search positions

Accessibility Needs for Applicants, Students and Visitors

Carnegie Mellon University makes every effort to provide physical and programmatic access individuals with disabilities. If you require an accommodation to participate in any part of the employment process, please contact Disability Resources by emailing access@andrew.cmu.edu or calling 412-268-3930.

Carnegie Mellon University considers applicants for employment without regard to, and does not discriminate on the basis of, gender, race, protected veteran status, disability, or any other legally protected status.