CERT-SEI

Careers

Pursue your passion and work alongside world-recognized leaders in the field of software engineering. Our staff works with the highest levels of U.S. government and industry to secure the nation's critical infrastructure, improve mission-critical systems, and advance the state of the art.

Interested in working with us? To browse employment opportunities and apply for a position at the SEI, see our list of open positions below. You can also visit the Carnegie Mellon site to learn about benefits for eligible employees, search for open positions that match your interests, and create a Job Agent that will notify you by e-mail when jobs that meet your criteria become available.

Resumes from recruiting firms will not be accepted.

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

SEI Job Listings

The position you are looking for is not available. Please take a look at our current open positions listed below.

Select Job Location

Sort by Date Posted Title Location

16 Sep
2014
Network Intelligence Analyst Intern - 101070
Pittsburgh, PA

Position Summary: Network Intelligence Analysts are the bridge between decision makers in the public and private sectors, and the information security engineers that operate and protect their networks.  During this internship, applicants can expect to learn the fundamentals of network intelligence analysis apply and refine analysis methodologies to technical data sets, and become familiar with cutting edge network defense tools and practices.  Interns will support CERT technical staff in the research and production of network intelligence reports and collect/aggregate best practices for sponsors. Interns will work with U.S. Government customers to produce threat studies tailored to critical infrastructure sectors. 

 

Minimum Qualifications and Requirements:

Education/Training: Ideal candidates will have experience or substantial knowledge in many of the following areas: Graduate student pursuing a degree in information security or similar with a strong interest in network and computer security.

Experience: Experience researching and writing technical reports or papers for both technical and nontechnical audiences. Experience drafting and formatting reports and correlating research using multiple formatted and unformatted data sources; knowledge of developing deliverables for senior leadership in government or industry; basic understanding of security vulnerabilities.

Skills/Abilities:  Preferred candidates will: Manipulate large amounts of data into valuable metrics, trends, and findings; identify patterns and associations between open/closed source data; experience analyzing technical data, including categorizing sets of network intrusion events or criminal campaigns; have the ability to adjust quickly to shifting priorities and make quick decisions with limited information; excellent writing abilities.

Mobility: Normally sedentary position with some mobility; i.e., able to travel to other campus locations; may require some bending, stretching, pushing as well as lifting.

Environmental Conditions: Usual office setting; close contact with CRT for long periods of time. 

Mental:  Ability to pay close attention to detail, meet deadlines and remain composed when dealing with difficult people.

Other:  U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.

 

Accountability:  This candidate will contribute to network analysis and computer security issues.

Direction:  Expected to work independently in most instances. Works with supervisors to manage changing workloads or priorities.

Decisions:  Makes decisions based on knowledge and understanding of the practices, policies, and procedures of the department and demonstrates general knowledge in areas outside the department. Answers questions or inquires directly or routes to the most appropriate person.

Supervisory Responsibilities:  This position does not supervise others. 

 

Job Functions or Responsibilities:

90%     Support CERT technical staff in the research and production of network intelligence reports and collect/aggregate best practices for sponsors.  By using experience drafting and formatting reports and correlating research using multiple formatted and unformatted data sources; knowledge of developing deliverables for senior leadership in government or industry; basic understanding of security vulnerabilities.

10%     Have the ability to adjust quickly to shifting priorities and make quick decisions with limited information.

100% TOTAL EFFORT

 

Organizational Chart:  CERT Director >CERT/CC Technical Director >Threat Analysis Technical Manager >Threat Analysis Team > Network Intelligence Analyst Intern

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

16 Sep
2014
Network Intelligence Analyst Intern - 101071
Arlington, VA

Position SummaryNetwork Intelligence Analysts are the bridge between decision makers in the government and private sector, and the information security engineers that operate and protect their networks.  During this internship, applicants can expect to learn the fundamentals of intelligence analysis, apply and refine intelligence analysis methodologies to technical data sets, and become familiar with cutting edge network defense tools and practices.  Interns will support CERT technical staff in the research and production of unclassified network intelligence reports and collect/aggregate best practices in intelligence collection management for government sponsors. Interns will also work with USG customers to produce threat studies tailored to critical infrastructure sectors. 

 

Minimum Qualifications and Requirements:

Education/Training: Liberal Arts major with strong interest in network and computer security.

Experience: Experience drafting and formatting reports and correlating research using multiple formatted and unformatted data sources; knowledge of developing deliverables for senior leadership in government or industry; basic understanding of security vulnerabilities.

Skills/Abilities:  Successful candidates will:  possess excellent analytical and technical problem-solving skills; have a strong interest in and possess basic knowledge of network and computer security issues; be able to make decisions independently and in a self-directed manner in support of the goals of the team and organization; be motivated to tackle challenging problems; have excellent organizational skills; be able to work meticulously with careful attention to detail; strong customer service skills; ability to work in a team environment with other team members with variety of skills; ability to work remotely at a customer site with minimal direct supervision; be able to communicate effectively within a team environment; be able to effectively prioritize work; be able to develop and explain technical decisions; recognize and deal appropriately with confidential and sensitive information; interact effectively with technical and non-technical audiences via both verbal and written communications (e.g., technical writing, user guide development, requirements analysis); be able to quickly learn new procedures, techniques, and approaches.

Preferred candidates will: Manipulate large amounts of data into valuable metrics, trends, and findings; identify patterns and associations between open/closed source data; experience analyzing technical data, including categorizing sets of network intrusion events or criminal campaigns; have the ability to adjust quickly to shifting priorities and make quick decisions with limited information.

Physical Mobility: Normally sedentary position with some mobility; i.e., able to travel to other campus locations; may require some bending, stretching, pushing as well as lifting.

Environmental Conditions: Usual office setting; close contact with CRT for long periods of time. 

Mental:  Ability to pay close attention to detail, meet deadlines and remain composed when dealing with difficult people.

Other:  U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information. 

 

Accountability:  This candidate will contribute to network analysis and computer security issues.

Direction:  Expected to work independently in most instances. Works with supervisors to manage changing workloads or priorities.

Decisions:  Makes decisions based on knowledge and understanding of the practices, policies, and procedures of the department and demonstrates general knowledge in areas outside the department. Answers questions or inquires directly or routes to the most appropriate person.

Supervisory Responsibilities:  This position does not supervise others. 

 

Job Functions or Responsibilities:

90%                Use analytical and technical problem-solving skills in drafting and formatting reports and correlating research using multiple formatted and unformatted data sources; knowledge of developing deliverables for senior leadership in government or industry; basic understanding of security vulnerabilities.

10%                Have the ability to adjust quickly to shifting priorities and make quick decisions with limited information.

100% TOTAL EFFORT

 

Organizational Chart:  CERT Director < CERT/CC Technical Director < Threat Analysis Technical Manager < Threat Analysis Team < Network Intelligence Analyst Intern

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

09 Sep
2014
Strategic Initiatives Program Manager - 101066
Pittsburgh, PA or Arlington, VA

Position Summary:  The Strategic Initiatives Program Manager reports to the Chief Strategy Officer (CSO).  The CSO is responsible for working with the Chief Executive Officer (CEO) and the Executive Leadership Team (ELT) to promote strategic thinking and create, communicate, execute, and sustain the SEI’s strategic direction.  The CSO works with the ELT to provide strategic options,  ensure that decisions at all levels align with SEI’s strategy; and develop, execute and institutionalize strategic initiatives that advance the SEI’s mission and strategic goals.

We are seeking a Strategic Initiatives Program Manager responsible for providing strategic insights, options and direction to aid in the development of multi-channel initiatives for existing and potential Institute relationships.  The incumbent works closely with CSO, Strategic Initiatives Team, SEI ELT and others to:

  • Initiate, develop, and implement the SEI strategic and business goals, objectives and plans to expand the sponsorship of the SEI within Industry and government sectors;  Create and sustain multi-year views (1 year, 3-5 years and 5+ years) including trends in mission, economics, technology, and environment. Create customer value roadmaps.
  • Lead the CSO government and industry research team to provide accurate, insightful and actionable voice of the customer primary and secondary research and analysis. Generate, refine and execute tactical and strategic initiatives to increase impact.
  • Build strategic customer / partner relationships and communication strategies. Work across the SEI to create and execute scalable options for effective multi-channel communications with stakeholders to advance SEI’s tactical and strategic direction.
  • Identify, collect and analyze performance metrics to support a variety of comparative analysis activities (e.g. value, impact, performance, technical).Develop insights that will increase SEI effectiveness and efficiency and influence future direction.
  • Lead strategic initiative projects to implement SEI strategic direction.
  • Work with the SEI Technical Divisions and Center to help them deepen their understanding of their customers including positioning, evaluating and developing value propositions, and identifying new relevant impactful customer segments. Present options to keep the SEI portfolio mix in alignment with the SEI’s strategic direction and at the forefront of software engineering and cyber security.


Minimum Qualifications and Requirements:

Education/Training:  Bachelor’s degree or equivalent combination of training and experience.

Experience:

  • Nine (9) years’ experience in industry/government systems customer relationship management.
  • Five (5) years’ experience in voice of the customer primary and secondary research and analysis in a high tech field.
  • Development and management of $10+M in revenues annually.
  • Ten (10) years’ experience working with domestic and global entities (e.g. industry, academia, government).
  • Five (5) years’ measurement and metrics experience.
  • Five (5) years supervisory experience.  

Skills/Abilities:  Strategic thinking.  Ability to research and analyze data to develop insights and trends.  Excellent written and verbal communication skills.  Industry and Federal government client relationship management and program development skills.  Ability to develop and measure value propositions as well as general measurement and metrics skills.  Broad working understanding of DoD and other Federal acquisition, development and operations lifecycles.  Proven portfolio, program and project management skills.

Physical Mobility:  Primary sedentary in an office setting with some mobility.  The ability and willingness to travel is required (20%-30%).  Flexible to travel to various locations with the SEI and CMU community, sponsor sites, conferences and offsite meetings domestically and internationally.  Also must adjust to a work schedule that requires weekend and evening hours.

Environmental Conditions:  Normal office setting.

Mental:  The ability to: explore and solve complex, ill-defined problems; work meticulously with attention to detail; meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities; self-starter willing to take on tasks and initiate constructive activity with little guidance; deal collaboratively, diplomatically, and successfully with customers, co-workers, and other professional colleagues, managers, and staff; grasp the big picture, direction, and goals of an effort; interface with world-class communities; develop and communicate innovative ideas; quickly learn new procedures, techniques, and approaches.

Other:  U.S. Citizenship is required. Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.

 

Preferred Qualifications and Requirements:

Education/Training:  Master’s degree or equivalent combination of training and experience.

Licenses:  PMP certification in portfolio, program or project management or equivalent certification.  Voice of the Customer / Market Research certification.

Skills/Abilities:  Familiarity with software and cyber domains.

 

Accountability:  Responsible for working with the CSO, ELT and others to provide input to and execution of strategic initiatives;  Develop framework where strategy options and scenarios can be evaluated by the ELT with respect to SEI strategic thinking resulting in strategic and tactical plans. Understand customer segment and corresponding profiles to build relationships of value for the Institute.

Direction:  Expected to act independently with little or no supervision to create, communicate and execute strategic options and initiatives.

Decisions:  Develop data-driven or fully-informed options; decide upon the scope and direction of the work as a leader of strategic initiatives in accordance with the CSO.

Supervisory Responsibilities:  This position may supervise others.


Job Functions or Responsibilities:

25%      Build strategic customer / partner relationships and communication strategies. Provide strategic insights options and direction to aid in the development of multi-channel initiatives for existing and potential Institute relationships;  Work with the Divisions and Center to deepen their understanding of their customers; develop and propose options that address the full spectrum of outreach from targeted programs to broad outreach (e.g. communities of practice). Create customer value roadmaps.  

30%      Lead the CSO government and industry research team to provide accurate, insightful and actionable voice of the customer primary and secondary research and analysis.  Generate, refine and execute tactical and strategic initiatives to increase impact.

20%      Initiate, develop, and implement the SEI strategic and business goals, objectives and plans to expand the sponsorship of the SEI within Industry and government sectors;  Create and sustain multi-year views (1 year, 3-5 years and 5+ years) including trends in mission, economics, technology, and environment.   Develop and implement action plans to achieve goals and objectives for sector portfolios.

20%      Identify, collect and analyze performance metrics to support a variety of benchmarking activities (e.g. value, impact, performance, technical).  Develop insights that will increase SEI effectiveness and efficiency and influence future direction.

5%       Lead, facilitate or participate on Integrated Project Teams as needed to achieve SEI strategic goals.  Perform other duties as assigned.

100% TOTAL EFFORT


Organizational Chart:  Chief Strategy Officer > Strategic Initiatives Program Manager


Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

05 Sep
2014
Architecture Researcher - 101060
Pittsburgh, PA

Position Summary: The Software Engineering Institute’s Architecture Practices initiative at Carnegie Mellon University seeks to create architecture-centric theories and practices to increase development efficiency and effectiveness on large-scale software and systems engineering projects.  The Architecture Researcher will join the Architecture Practices team to assist in expanding the established research program in order to create and extend architecture-centric theories and practices for the organization in order to produce systems to meet their business and mission goals. The Architecture Researcher will be responsible for:

  • Contributing to ongoing architecture research efforts, building on new research directions, and validating ideas in customer settings;
  • Defining and developing research strategies and projects, leading research teams, such as the customer efforts or transition project teams, and/or conducting planned research projects as necessary;
  • Directing support activities to enable technical work and the activities of work study or graduate students as appropriate;
  • Communicating the results of his/her research, through publication presentations in peer-reviewed venues;
  • Working with collaborators and customers to apply research outcomes to real world systems;
  • Determining and recommending architecture-centric technical solutions for practical system development programs; and
  • Participating in and leading technical activities in community settings (conferences, workshops, and working groups).

 

Minimum Qualifications and Requirements:

Education/Training: Ph.D. degree in Software Engineering, Computer Science, Information Systems, or a related field, or equivalent combination of training and experience.

Experience: Must have at least two (2) years of experience in architecture research and/or practice architecting systems, which shall include specific experience in:

  • Performing research in architectural modeling, analysis, and generation of safety critical embedded software systems;
  • Performing research in timing analysis and behavioral verification of safety critical systems;
  • Applying architecture-centric research technologies on customer systems in the aerospace domain
  • Publishing at least ten (10) papers in peer-reviewed computer-science venues.
  • Familiarity with avionics standards such as ARINC653, ARINC664, or SAE AS5506 AADL is a plus.

Skills/Abilities: Software development, including Java programming, extending the Eclipse platform (plug-in development). Strong written and verbal communication skills and the ability to present to small and large audiences.

Mobility: Normally sedentary position with some mobility; i.e., able to travel to other campus locations.

Environmental Conditions: Usual office setting, close contact with computer displays for long periods of time.

Mental: Ability to explore and solve complex, ill-defined problems; work meticulously with attention to detail; self-starter willing to take on tasks and develop new research ideas; deal collaboratively, diplomatically, and successfully with customers, co-workers; interact with world-class research community.

Other:  Applicants must be able to pass a background investigation.

 

Accountability: Ability to work on research with minimal supervision; meet deadlines while working on multiple tasks;.

Direction: Expected to act with limited supervision in accordance with SEI procedures, policies, such as those involving technical leadership, analysis, report production, and confidentiality. Requires close collaboration and teaming within and across initiatives and directorates.

Decisions: Suggests possible solutions to colleagues and users.

Supervisory Responsibilities:  This position does not supervise others.

 

Job Functions or Responsibilities:

50%        Research, prototyping, and demonstration of architecture-centric analysis and generation technologies.

30%        Application of architecture-centric technologies in customer settings.

20%        Publication of research results.

100% TOTAL EFFORT


Organizational Chart: SSD Director > AP Initiative Lead > Architecture Researcher

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

05 Sep
2014
Capability Development Analyst - 101023
Pittsburgh, PA or Arlington, VA

Position Summary:  The CERT Program is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Program engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.  The CERT Coordination Center (CERT/CC) supports government customers by developing and transitioning cutting-edge analysis techniques and tools, providing strategic advisement, and supporting tactical operations.

The Capability Development Team Analyst is a member of the CERT/CC technical staff and based in the SEI Office in Pittsburgh, Pennsylvania. The candidate selected to fulfil this role will provide technical subject matter expertise to CERT/CC support of Computer Security Incident Response Team (CSIRT) and associated capability and capacity development efforts. This support will include assisting with the development and pursuit of CERT/CC strategic drivers for engaging in these initiatives and vision for CSIRT community interaction, regularly interacting with sponsors and stakeholders of these efforts, and execution of efforts as directed by the Capability Development Team Lead to ensure that the work being performed drives toward sponsor goals and CERT/CC strategic drivers.

Minimum Qualifications and Requirements:

Education/Training:  Bachelor’s Degree in Computer Science or scientific/technical field with three (3) years of experience.  MS/MA in a scientific or technical field with one (1) years of experience, or equivalent.

Experience:  Professional experience should include one (1) or more years of experience supporting CSIRT capabilities to include incident response, incident analysis, and development and implementation of mitigation actions and proactive security measures. This should include experience:

  • in creating, assessing, and improving these types of teams, as well as a working knowledge of existing global capabilities, advanced technology solutions and initiatives
  • as an operational CSIRT security analyst, incident handler, or operations specialist
  • working with and engaging people in diverse cultural environments, and
  • fostering interaction and collaboration amongst peer organizations

Skills/Abilities:

  • Knowledge of current and effective CSIRT organizational and functional structures and the technical operations performed by these teams
  • Ability to work independently or within a team with members of varying skill sets and levels
  • Broad understanding of enterprise technology security issues
  • Broad working knowledge of commonly deployed computer network defense tools and processes to include leading vendor solutions
  • Ability to brief strategic and technical topics to technical and non-technical audiences
  • Knowledge of current operational challenges and technical threats faced by network security and intelligence organizations
  • Familiarity with project planning and management best practices

Physical Mobility: Primarily sedentary in an office setting with some mobility.  Flexibility to travel monthly to sites in the Washington metropolitan area and international locations.

Environmental Conditions: Normal office conditions; close contact with computer display for extended periods of time

Mental: The ability to:

  • work meticulously with careful attention to detail;
  • meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities;
  • deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort;
  • develop and communicate innovative ideas;
  • take leadership role in technical projects; and
  • quickly learn new procedures, techniques, and approaches.

Other: U.S. Citizenship is required.  Applicants will be subject to a security investigation and must meet eligibility requirements for access to classified information, and must be able to pass a background investigation.

 

Preferred Qualifications and Requirements:

Education/Training: MS/MA in a scientific, technical, or business field with 2 years of experience, or equivalent; PhD in a technical field.

Licenses: CISSP, CEH, CISM, CompTIA, or similar

Experience:           

  • Participation in broad public forums through activities such as standards, open source development, or publication
  • Experience publishing research and academic papers
  • Experience working with the government, or within a critical infrastructure sector
  • Active in regional or international trade-related organizations such as the Forum of Incident Response and Security Teams (FIRST), North American Network Operators' Group (NANOG), Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG), Anti-Phishing Working Group (APWG), etc.
  • Demonstrable experience effectively deliver training to technical and management level audiences on subject matter related to CSIRT development, incident response operations

 

Accountability:  This position is accountable for ensuring that the CSIRT Operations team delivers on the execution of the statement of work for customers sponsoring capability building efforts.  The individual is accountable for aligning CSIRT Operations projects with customer needs and re-prioritizing efforts as appropriate, in close coordination with the Capability Development Team Lead.

Direction:  The individual is expected to act independently using CMU, SEI, and CERT defined policies, practices, and procedures – within the scope of assigned work.

Decisions: The individual is expected to participate in the decision-making and problem-solving processes of defining, designing, implementing, and sustaining national-level CSIRT and related operations; suggesting and implementing policies and procedures to support these activities; and creating and sharing information regarding the state of the practice for broad dissemination.

Supervisory Responsibilities:  This position will not formally supervise any personnel. 

 

Job Functions or Responsibilities:

65%   Create framework and methodology documents, both general and specific to individual stakeholder groups, intended to facilitate the organizational and technical capacity development of large CSIRTs.

30%   Support planning, development, and execution of customer led and/or supported development activities, planning discussions, and awareness raising exercises. Through partnership, awareness, and action evaluate the need for, develop blueprints for, and assist with the implementation of national-level CSIRT capabilities

5%   Capture knowledge from the engagements undertaken, integrate it with lessons learned from other similar work, and help transfer that knowledge for the betterment of the global CSIRT community.

100% TOTAL EFFORT

 

Organizational Chart:  Program Director, CERT < Technical Director, CERT/CC < CSIRT Operations Technical Manager, CERT/CC < Capability Development Team Lead < Capability Development Analyst

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

05 Sep
2014
Capability Development Team Lead - 101025
Pittsburgh, PA or Arlington, VA

Position Summary:  The CERT Program is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Program engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.  The CERT Coordination Center (CERT/CC) supports government customers by developing and transitioning cutting-edge analysis techniques and tools, providing strategic advisement, and supporting tactical operations.

The Capability Development Team Lead is a member of the CERT/CC technical staff and based in the SEI Office in Pittsburgh, Pennsylvania. The candidate selected to fulfil this role will provide technical leadership to CERT/CC support of Computer Security Incident Response Team (CSIRT) and associated capability and capacity development efforts. This support will include assisting with the development and pursuit of CERT/CC strategic drivers for engaging in these initiatives and vision for CSIRT community interaction, regularly interacting with sponsors and stakeholders of these efforts, assisting with requirement definition and project planning, and leading execution of efforts in coordination with the Senior Capability Solutions Engineer to ensure that the work being performed drives toward sponsor goals and CERT/CC strategic drivers. Additionally, the candidate will work with the CSIRT Operations technical manager and peer team leads to ensure resources are properly aligned and prioritized with the needs of sponsors and against apropos project timelines.

 

Minimum Qualifications and Requirements:

Education/Training:  Bachelor’s Degree in Computer Science or scientific/technical field with eight (8) years of ; MS in a scientific or technical field with five (5) years of experience’ PhD in a scientific or technical field with two (2) years of experience; or equivalent combination of training and experience.

Experience:  Professional experience should include five (5) or more years of experience supporting or managing large organizational or national-level CSIRT capabilities to include incident response, incident analysis, and development and implementation of mitigation actions and proactive security measures. This should include experience:

  • in creating, assessing, and improving these types of teams, as well as a working knowledge of existing global capabilities, advanced technology solutions and initiatives
  • as an operational CSIRT security analyst, incident handler, or operations specialist
  • working with and engaging people in diverse cultural environments
  • fostering interaction and collaboration amongst peer organizations
  • leading and managing a small team
  • working with customers and technical staff for defining work and constructing appropriate project planning materials

Skills/Abilities:

  • Knowledge of current and effective CSIRT organizational and functional structures and the technical operations performed by these teams
  • Ability to work independently or within a team with members of varying skill sets and levels
  • Broad understanding of enterprise technology security issues
  • Broad working knowledge of commonly deployed computer network defense tools and processes to include leading vendor solutions
  • Ability to brief strategic and technical topics to senior management, technical and non-technical audiences
  • Knowledge of current operational challenges and technical threats faced by network security and intelligence organizations
  • Familiarity with project planning and management best practices
  • Ability to set goals for team members and managing tasking to reach those goals

Physical Mobility: Primarily sedentary in an office setting with some mobility.  Flexibility to travel monthly to sites in the Washington metropolitan area and international locations.

Environmental Conditions: Normal office conditions; close contact with computer display for extended periods of time

Mental: The ability to:

  • work meticulously with careful attention to detail;
  • meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities;
  • deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort;
  • develop and communicate innovative ideas;
  • take leadership role in technical projects; and
  • quickly learn new procedures, techniques, and approaches.

 

Other: U.S. Citizenship is required.  Applicants will be subject to a security investigation and must meet eligibility requirements for access to classified information, and must be able to pass a background investigation.

 

Preferred Qualifications and Requirements:

Education/Training: MS/MA in a scientific, technical, or business field with five (5) years of experience, or equivalent;  PhD in a technical field with two (2) years of experience.

Licenses:  CISSP, CEH, CISM, CompTIA, or similar.

 

Experience:        

  • Prior responsibility in managing a body of work consisting of numerous large scale projects and multiple customers/external sponsors
  • Experience publishing research and academic papers
  • Experience working with the government, or within a critical infrastructure sector
  • Active in regional or international trade-related organizations such as the Forum of Incident Response and Security Teams (FIRST), North American Network Operators' Group (NANOG), Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG), Anti-Phishing Working Group (APWG), etc.
  • Demonstrable experience effectively deliver training to technical and management level audiences on subject matter related to CSIRT development, incident response operations

 

Accountability:  This position is accountable for ensuring that the CSIRT Operations team delivers on the execution of the statement of work for customers sponsoring capability building efforts.  The individual is accountable for aligning CSIRT Operations projects with customer needs and re-prioritizing efforts as appropriate, in close coordination with the Senior Capability Solutions Engineer.

Direction: The individual is expected to act independently using CMU, SEI, and CERT defined policies, practices, and procedures – within the scope of assigned work.

Decisions: The individual is expected to participate in the decision-making and problem-solving processes of defining, designing, implementing, and sustaining national-level CSIRT and related operations; suggesting and implementing policies and procedures to support these activities; and creating and sharing information regarding the state of the practice for broad dissemination.

Supervisory Responsibilities: This position will formally supervise a team of 3 – 6 people, steering and leading team efforts to align with and deliver on project goals as coordinated with other CERT/CC, sponsor, and stakeholder personnel.

 

Job Functions or Responsibilities:

50%      Supervise a team, coordinating and prioritizing efforts based on project plans and assign tasking and set priorities based on changing needs. Contribute to team work products.

40%      Ensure successful completion of customer tasking by coordinating project management, resource allocation, and task execution with necessary management, Senior Capability Solutions Engineer, and other technical staff.

10%      Capture knowledge from the engagements undertaken, integrate it with lessons learned from other similar work, and help transfer that knowledge for the betterment of the global CSIRT community.

100% TOTAL EFFORT

 

Organizational ChartProgram Director, CERT < Technical Director, CERT/CC < CSIRT Operations Technical Manager, CERT/CC < Capability Development Team Lead

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

05 Sep
2014
Capability Team Analyst - 101024
Pittsburgh, PA or Arlington, VA

Position SummaryThe CERT Program is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Program engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.  The CERT Coordination Center (CERT/CC) supports government customers by developing and transitioning cutting-edge analysis techniques and tools, providing strategic advisement, and supporting tactical operations.

The Capability Development Team Analyst is a member of the CERT/CC technical staff and based in the SEI Office in Pittsburgh, Pennsylvania. The candidate selected to fulfil this role will provide technical subject matter expertise to CERT/CC support of Computer Security Incident Response Team (CSIRT) and associated capability and capacity development efforts. This support will include assisting with the development and pursuit of CERT/CC strategic drivers for engaging in these initiatives and vision for CSIRT community interaction, regularly interacting with sponsors and stakeholders of these efforts, and execution of efforts as directed by the Capability Development Team Lead to ensure that the work being performed drives toward sponsor goals and CERT/CC strategic drivers.

 

Minimum Qualifications and Requirements:

Education/Training:  Bachelor’s Degree in Computer Science or scientific/technical field with (8) eight years of experience; MS/MA in a scientific or technical field with five (5) years of experience; PhD in a scientific or technical field with two (2) years of experience; or equivalent combination of training and experience.

Experience: Professional experience should include five (5) or more years of experience supporting or managing large organizational or national-level CSIRT capabilities to include incident response, incident analysis, and development and implementation of mitigation actions and proactive security measures. This should include experience:

  • in creating, assessing, and improving these types of teams, as well as a working knowledge of existing global capabilities, advanced technology solutions and initiatives
  • as an operational CSIRT security analyst, incident handler, or operations specialist
  • working with and engaging people in diverse cultural environments, and
  • fostering interaction and collaboration amongst peer organizations

Skills/Abilities:

  • Knowledge of current and effective CSIRT organizational and functional structures and the technical operations performed by these teams
  • Ability to work independently or within a team with members of varying skill sets and levels
  • Broad understanding of enterprise technology security issues
  • Broad working knowledge of commonly deployed computer network defense tools and processes to include leading vendor solutions
  • Ability to brief strategic and technical topics to senior management, technical and non-technical audiences
  • Knowledge of current operational challenges and technical threats faced by network security and intelligence organizations
  • Familiarity with project planning and management best practices

Physical Mobility: Primarily sedentary in an office setting with some mobility.  Flexibility to travel monthly to sites in the Washington metropolitan area and international locations.

Environmental Conditions: Normal office conditions; close contact with computer display for extended periods of time

Mental: The ability to:

  • work meticulously with careful attention to detail;
  • meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities;
  • deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort;
  • develop and communicate innovative ideas;
  • take leadership role in technical projects; and
  • quickly learn new procedures, techniques, and approaches.

Other: U.S. Citizenship is required.  Applicants will be subject to a security investigation and must meet eligibility requirements for access to classified information, and must be able to pass a background investigation.

 

Preferred Qualifications and Requirements:

Education/Training: MS/MA in a scientific or technical field with five (5) years of experience; PhD in a scientific or technical field with two (2) years of experience; or equivalent combination of training and experience.

Licenses: CISSP, CEH, CISM, CompTIA, or similar.

Experience:          

  • Participation in broad public forums through activities such as standards, open source development, or publication
  • Experience publishing research and academic papers
  • Experience working with the government, or within a critical infrastructure sector
  • Active in regional or international trade-related organizations such as the Forum of Incident Response and Security Teams (FIRST), North American Network Operators' Group (NANOG), Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG), Anti-Phishing Working Group (APWG), etc.
  • Demonstrable experience effectively deliver training to technical and management level audiences on subject matter related to CSIRT development, incident response operations

 

Accountability:  This position is accountable for ensuring that the CSIRT Operations team delivers on the execution of the statement of work for customers sponsoring capability building efforts.  The individual is accountable for aligning CSIRT Operations projects with customer needs and re-prioritizing efforts as appropriate, in close coordination with the Capability Development Team Lead.

Direction: The individual is expected to act independently using CMU, SEI, and CERT defined policies, practices, and procedures – within the scope of assigned work.

Decisions : The individual is expected to participate in the decision-making and problem-solving processes of defining, designing, implementing, and sustaining national-level CSIRT and related operations; suggesting and implementing policies and procedures to support these activities; and creating and sharing information regarding the state of the practice for broad dissemination.

Supervisory Responsibilities:  This position will not formally supervise any personnel.

 

Job Functions or Responsibilities:

70%      Create framework and methodology documents, both general and specific to individual stakeholder groups, intended to facilitate the organizational and technical capacity development of large CSIRTs.

20%      Support planning, development, and execution of customer led and/or supported development activities, planning discussions, and awareness raising exercises. Through partnership, awareness, and action evaluate the need for, develop blueprints for, and assist with the implementation of national-level CSIRT capabilities

10%      Capture knowledge from the engagements undertaken, integrate it with lessons learned from other similar work, and help transfer that knowledge for the betterment of the global CSIRT community.

100% TOTAL EFFORT

 

Organizational Chart:  Program Director, CERT < Technical Director, CERT/CC < CSIRT Operations Technical Manager, CERT/CC < Capability Development Team Lead < Capability Development Analyst

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

05 Sep
2014
Java Developer - 101061
Pittsburgh, PA

Position Summary: The Architecture Practice Initiative group at the Software Engineering Institute, part of Carnegie Mellon University, is searching for a talented Java developer in order to extend their Eclipse-based modeling framework. The Architecture Practice team is a leader in model-based and architecture-centric methods and is an active member of several research and standardization committees. SEI researchers have created and developed languages and methods to improve the development of safety-critical systems. They are now developing user-friendly tools in order to leverage these research efforts and apply them in operational projects. The objective is to develop an architecture-centric development environment that uses SEI research outcomes and improve the development of safety-critical systems. The candidate must be a talented Java programmer, have a good experience of Graphical User Interface development using Java (AWT/SWT), have a reasonable knowledge of the Eclipse platform and be able to work within a small team. The ability to work with prominent researchers at CMU and within the government is critical.


Minimum Qualifications and Requirements:

Education/Training: Bachelor's degree in information systems or computer science, or equivalent combination of traning and experience.

Experience: Up to three (3) years of Java development (professional and/or academic) including graphical user interface development; up to three (3) years of use of Eclipse. Experience working in a team environment.

Skills/Abilities: Java programming. Graphical User Interface design with Java (AWT or SWT framework). Eclipse user. Collaborative development tools (GIT, Subversion). Proven ability to successfully work within a small team. Windows and Linux environment.

Mobility: Normally sedentary position with some mobility; i.e., able to travel to other campus locations.

Environmental Conditions: Usual office setting, close contact with CRT for long periods of time.

Mental: Ability to pay close attention to detail, meet inflexible deadlines, balance multiple tasks, remain calm during difficult situations, work under pressure, and work with frequent interruptions.

Other:  U.S. Citizenship is required and applicants must be able to pass a background investigation.

 

Preferred Qualifications and Requirements:

Education/Training: Additional course work in computer applications.

Experience: Extensive experience in Graphical User Interface development with the SWT framework. Experience of Eclipse plug-in development.

Skills/Abilities: Experience with the AADL modeling language. Knowledge about the Xtext Framework.


Accountability: Completes project tasks from routine to moderately complex; is accountable for meeting established deadlines and project milestones with a commitment to decisions that have been made.

Direction: Expected to perform under general supervision. Most normal duties and responsibilities are handled independently with the use of established research protocol and departmental and university procedures and policies. Difficult or unique situations are referred to the supervisor.

Decisions: Suggests possible solutions to colleagues and users.

Supervisory Responsibilities: This position does not supervise others.

 


Job Functions or Responsibilities:

80% Design and implement new functions for the development environment being developed.

10% Attends meetings and submits work progress reports to supervisor as required.

10% Performs related duties as assigned.

100% TOTAL EFFORT


Organizational Chart: SSD Director > AP Initiative Lead > Research Programmer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

05 Sep
2014
Senior Capability Solutions Engineer - 101022
Pittsburgh, PA or Arlington, VA

Position Summary:  The CERT Program is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Program engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.  The CERT Coordination Center (CERT/CC) supports government customers by developing and transitioning cutting-edge analysis techniques and tools, providing strategic advisement, and supporting tactical operations.

The Senior Capability Solutions Engineer is a member of the CERT/CC technical staff and based in the SEI Office in Pittsburgh, Pennsylvania. The candidate selected to fulfil this role will guide CERT/CC capability and capacity development of Computer Security Incident Response Teams (CSIRT). This support will include defining and effectuating a vision for CSIRT community interaction to include identifying initiatives to achieve this vision; acting as the primary point of contact to sponsors and stakeholders of these efforts; assisting with requirement definition and project planning; and overseeing and contributing to these projects.

Minimum Qualifications and Requirements:

Education/Training: BS in Computer Science, Mathematics, Information Systems, Information Systems Management or related field with ten (10) years’ experience; MS in Computer Science, Mathematics, Information Systems, Information Systems Management or related field with eight (8) years’ experience; PhD in Computer Science, Mathematics, Information Systems, Information Systems Management or related field with five (5) years’ experience; or equivalent combination of training and experience.

Experience: Professional experience should include five (5) or more years of experience supporting the development and sustainment of large organizational or national-level CSIRT capabilities. Experience in creating, assessing, and improving these types of teams, as well as a working knowledge of existing global capabilities and initiatives is desired.

Skills/Abilities:

  • Ability to function in the role of an advisor and project leader
  • Strong problem solving, organizational, and oral and written communication skills
  • Ability to work both independently and with teams with members of varying skill sets and levels
  • Proven ability to define requirements for, seek support of, and initiate the development and sustainment of large strategic CSIRT operations
  • Broad understanding of network, host, and application technology and security issues
  • Experience working and engaging people in varying cultural environments, and fostering community interaction and collaboration
  • Ability to brief strategic and technical topics to senior management, technical and non-technical audiences
  • Knowledge of current challenges and threats faced by network security and intelligence organizations
  • Knowledge of existing global CSIRT and related capabilities, services that they provide, constituents, and challenges faced by these teams
  • Experience in overseeing work of a team, and proven success in executing projects leveraging personnel from across teams
  • Ability to create strategic direction for a technical group
  • Experience in working with customers and technical staff for defining work and project planning materials
  • Ability to define and deliver technical subject matter in a way that allows it to be easily transitioned for operational implementation, such as course materials
  • Vision for organization of knowledge and documentation using varying technical toolsets
  • The ability to work with and engage people in diverse cultural environments

Physical Mobility: Primarily sedentary in an office setting with some mobility.  Flexibility to travel to sites in the Washington metropolitan area and varying international locations.

Environmental Conditions:  Normal office conditions; close contact with computer display for extended periods of time

Mental:  The ability to:

  • work meticulously with careful attention to detail;
  • meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities;
  • deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort;
  • develop and communicate innovative ideas;
  • take leadership role in technical projects; and
  • quickly learn new procedures, techniques, and approaches

Other:  U.S. Citizenship is required.  Applicants will be subject to a security investigation and must meet eligibility requirements for access to classified information, and must be able to pass a background investigation.

                                    

Preferred Qualifications and Requirements:

Education/Training:  PhD in Computer Science, Mathematics, Information Systems, Information Systems Management or related field with five (5) years’ experience; or equivalent combination of training and experience. Practical security training (e.g. SANS GIAC Level 2 courses, CCNP, CCIE Security)

Skills/Abilities:

  • Experience working with the government, or within a critical infrastructure sector
  • Experience developing briefing materials for senior leadership within government and for international audiences
  • History of contributions to the broader computer security industry, research, or operational communities
  • Experience deploying, supporting, or otherwise contributing to large-scale CSIRT or related operations
  • Experience in a variety of computer security topical areas
  • Prior responsibility in managing a body of work consisting of numerous large projects with multiple customers/external sponsors and stakeholders

 

Accountability: The individual is accountable for:

  • Capturing the requirements of and managing relationships with customers and stakeholders
  • Setting expectations for the effort and impact based on availability of resources
  • Coordinating organizational support of successful completion of tasking
  • Creation of papers defining technical and non-technical topic matter for customers and stakeholders

Direction: The individual is expected to act independently using CMU, SEI, and CERT defined policies, practices, and procedures – within the scope of assigned work.

Decisions: The individual is expected to participate in the decision-making and problem-solving processes of defining, designing, implementing, and sustaining national-level CSIRT and related operations; suggesting and implementing policies and procedures to support these activities; and creating and sharing information regarding the state of the practice for broad dissemination.

Supervisory Responsibilities:  This position does not formally supervise others. However, the individual may will act in a technical leadership (non-supervisory) role in regard to specific work products, projects, and activities.                                                                                                 

 

Job Functions or Responsibilities:

70%   Lead support to diverse customer and stakeholder base in the areas of strategy; process/policies; requirements definition; definition and design of teams and programs; operations implementation and sustainment; communication and collaboration; outreach; and training.

20%   Ensure successful completion of customer tasking by coordinating project management, resource allocation, and task execution with necessary management and technical staff.

10%   Capture knowledge from the engagements undertaken, integrate it with lessons learned from other similar work, and help transfer that knowledge through relevant artifacts.

100% TOTAL EFFORT

 

Organization Chart:  Program Director, CERT < Technical Director, CERT/CC < Deputy Technical Director, CERT/CC < Senior Capability Solutions Engineer

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

03 Sep
2014
Information Security Researcher - 101049
Pittsburgh, PA

Position SummaryThe CERT Division is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Division engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.

The individual in this position will work as a member of the Cybersecurity Assurance (CA) Team within the Networked Systems Survivability Program. The CA team develops solutions (in the form of frameworks, models, tools, policies, practices, technical guidance, and training) that allow organizations to assess analyze, and manage organizational, operational, and technical risks to mission-critical assets, processes, systems, and infrastructures. The individual will conduct applied research and perform assessments, diagnostics, and analysis techniques to better understand and mitigate risks to cyber environments and the organizational processes that depend on them. Activities will include close work with customers from a variety of organizations, including DoD, government agencies, and commercial organizations.

 

Minimum Qualifications and Requirements:

Education/Training:  PhD in computer science, software engineering, information systems, or a related scientific/technical field with five (5) years’ experience, or equivalent combination of training and experience.

Licenses:  CISSP, CISM or CISA.

Experience:  Experience with and applied knowledge in:  information technology and telecommunications systems; cyber security, survivability, and resilience concepts and issues; software and systems engineering; work with Federal Government.  Experience as a principal investigator or technical lead for research, development, or transition projects.  Published academic quality research or other broadly disseminated technical artifacts (books, software, etc.)

Skills/Abilities: Must exhibit the following skills and abilities:  understanding of information technology and telecommunications systems; working knowledge of network interoperability, cyber security, and survivability issues, including cyber security best practices and standards; development and delivery of information and infrastructure security risk and vulnerability evaluations; ability to conduct analytical studies and investigations; reasoning and problem-solving skills; ability to work independently with limited supervision; ability to interact effectively with customer and to represent the SEI and its capabilities; ability to work well as a member of a cooperative team; ability to work in a matrix organizational structure; ability to recognize and deal appropriately with confidential and sensitive information; ability to implement project plans, monitor project budgets, and identify and mitigate project risks; leadership and mentoring skills;  excellent written and oral communication skills; ability to contribute to technical research white papers and reports; ability to prepare papers and deliver presentations to technical and non-technical audiences; ability to contribute to customer technical exchanges and marketing presentations; participation in professional society activities, particularly IEEE and ACM; strong interest in cyber security and critical infrastructure protection analysis basis research, applied research, and development.

Physical/Mobility: Primarily sedentary in an office setting with some mobility.  Ability to travel frequently to various locations within the SEI and CMU community, customer sites, conferences, and offsite meetings.

Environmental Conditions: Close contact with computer for extended periods of time.

Mental: Strong interest in the human, managerial, and technical aspects of cyber security is critical for this position as are these abilities:  take or share leadership role in technical projects; work meticulously with careful attention to detail; meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities; deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to understand the big picture, direction, and goals of an effort; ability to develop and communicate innovative ideas; ability to demonstrate initiative and to quickly learn new procedures, techniques, approaches, etc.

Other: U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.

 

Preferred Qualifications and Requirements:

Licenses:  CISSP, CISM, GIAC, CISSP, OSCP or similar.

Experience:  Principal investigator for government funded research.

Skills/Abilities:  Ability to lead work teams as needed, consulting skills, ability to deliver coursework and training, ability to develop and foster external research collaborations.

 

Accountability: The individual will implement and participate in the planning and execution of projects leading to technical results. The individual will also contribute to project, department, or program objectives and planning document development. The individual will keep in confidence sensitive information such as customer processes, risks, vulnerabilities, and internal work products, whether for eventual public or private distribution.

Direction: The individual is expected to act independently using CMU, SEI, and CERT defined policies, practices, and procedures – within the scope of assigned work.

Decisions: The individual must make sound technical decisions with little supervision.  The individual must accurately represent the program in interactions with customers, sponsors, and the public.  The individual is expected to perform analysis on-site at customer locations and immediately assess potential vulnerabilities requiring further investigation.

Supervisory Responsibilities: This position could involve the training and oversight of the work of other staff members, graduate students, resident affiliates, visiting scientists, and independent contractors. Depending on research project or customer work plan, position may involve task leadership.

 

Job Functions or Responsibilities:

30%      Participate in the delivery of existing CERT cyber security, resilience, and risk assessment and analysis approaches with customers and partners; participate in research, analysis, and documentation of cyber security issues, concerns, and risks at customer locations.

25%      Participate in research into innovative and cutting-edge tools, techniques, and methods to improve cyber security and resilience; transition research into applied knowledge for customers.

10%      Contribute to conferences and meetings; participate in business development calls and technical exchanges with clients; give talks and lectures as appropriate; participate on working groups for subjects of interest.

10%      Contribute to, publish technical notes and reports, and review the literature in cyber security, technical assessment, resilience, and software engineering.

10%       Provide assistance and input to other teams and projects within the SEI.

SECONDARY FUNCTIONS

5%       Contribute to conferences and meetings; participate in marketing calls and technical exchanges with clients; give talks and lectures as appropriate; participate on working groups for subjects of interest.

5%       Contribute to and review the literature in cyber security, resilience, and software engineering.

5%       Provide assistance and input to other teams and projects within the SEI.

100% TOTAL EFFORT

 

Organizational ChartDirector, CERT Division < Technical Director, Cyber Security Solutions Directorate < Deputy Director, Cyber Security Solutions Directorate < Technical Manager, Cyber Security Assurance Team < Information Security Researcher

 

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

03 Sep
2014
Junior Network Security Analyst - 101043
Pittsburgh, PA

Position Summary:  The CERT Situational Awareness group researches and develops cutting-edge network security analysis techniques for operational use in high-impact environments.  The analyst will participate in the development of new analysis techniques and prototype their software implementation, support customers by preparing analytic reports, and participate in preparing research for publication.  The successful candidate will have some combination of academic training and real world network or network security experience. The analyst will be expected to participate in conversations with customers, potential customers, vendors, and the Internet community as a whole.

 

Minimum Qualifications and Requirements:

Education/Training: Bachelor’s Degree in Computer Science or related scientific/technical field with three (3) years’ experience; Master’s Degree in Computer Science or related scientific/technical field with one (1) year experience; or equivalent combination of training and experience.

Experience: Professional experience listed above is in network security research and/or operations.

Skills/Abilities:

  • Capable of conducting and supporting analytical studies and investigations of network security data.
  • Experience with scripting and/or programming in a high level language, including participation in sound software engineering (e.g. version control, documentation).
  • Significant understanding of and practical experience with various Internet protocols (e.g., TCP/IP, HTTP, DNS, SMTP, BGP).
  • Significant knowledge of at least one modern operating system (e.g., Linux, BSD, Solaris, Windows).
  • Understanding of network security issues at all protocol layers.
  • Understanding of host/operating system security issues.
  • Familiarity with and significant understanding of network security devices such as Intrusion Detection Systems, Firewalls, Security Information Managers, Network Vulnerability Scanners.
  • Ability to function in the role of a consultant with some guidance from senior staff members.
  • Excellent planning and organizational skills.
  • Strong problem solving skills.
  • Excellent oral and written communication skills.
  • Ability to work well with minimal direction and with teams.

Physical Mobility: Primarily sedentary in an office setting with some mobility.  Flexibility to travel to various locations within the SEI and CMU community, including sponsor sites, conferences, and meetings.

Environmental Conditions:  Normal office conditions; close contact with computer display for extended periods of time.

Mental:  Ability to work meticulously with careful attention to detail; ability to meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities; ability to participate in conversations collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to develop and communicate innovative ideas; ability to take leadership role in technical projects; ability to quickly learn new procedures, techniques, approaches, etc.

Other:  U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.

 

Preferred Qualifications and Requirements:

Experience: Experience working:

  • In a team environment participating in collaborative projects with diverse skills and roles;
  • In the public forum of the broader information security community;
  • Directly with customers from government and/or industry (multiple critical infrastructure);
  • In exploratory data analysis;
  • In data visualization;
  • In data mining, clustering, machine learning;
  • In human-computer interface (HCI) design.

Skills/Abilities:

  • Experience with mathematical programming systems (e.g. R, Mathematica, Matlab).
  • Experience with Internet routing protocols.
  • Experience with statistics.

 

Accountability:  The individual is accountable for: Active participation in the overall Situational Awareness R&D effort; Participating in the production of original publications in network security analysis; Participating in public speaking engagements, including at remote locations.

Direction:  The individual is expected to act with minimal direction using CMU, SEI, CERT and NetSA defined policies, practices, and procedures – within the scope of assigned work.

Decisions:  The individual is expected to participate in the decision-making and problem-solving processes of basic requirements elicitation and validation participation in fundamental research in network security.

Supervisory Responsibilities:  This position does not formally supervise others.

 

Job Functions and Responsibilities:

60%      Participate in studies of data from operational networks, and advice network operators in written reports and presentations on security posture improvements based on those studies.

35%      Participate in the development of novel approaches to network security analysis, and create prototype tool implementations.

5%       Speak publicly and to customers on work performed.  

100% TOTAL EFFORT

 

Organizational Chart: Manager, Networked Systems Survivability Program < Situational Awareness Technical Manager < Analysis Team Lead < Jr. Network Security Analyst

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

03 Sep
2014
Learning and Development Specialist - 101051
Pittsburgh, PA

Position Summary: As a member of the Organizational Effectiveness Group (OEG), the Learning and Development Specialist assists with the design, development, and delivery of learning and development solutions on a variety of subjects that are custom-created for all members of the SEI workforce including members of the technical staff, operational and administrative staff, and managers. Conducts needs assessments, designs, develops, and measures the results of learning and development solutions that ensure continuous individual and team training and development needs are met. Topics include but are not limited to workplace and team effectiveness, management and leadership development, administrative development, communication, platform presentation skills, customer service, and business development. In addition, partners with content experts on individualized and whole-group employee onboarding activities and customized intact workgroup training activities.  Assists with the integration of a recently updated talent management system using the Halogen platform including enrollment management and content development.

Work requires understanding of the full-cycle of learning and organizational development functional areas, instructional design and delivery, web-based talent and performance management tools, Oracle-based data management systems, SharePoint, MS Office Suite, and basic change management principles. Also requires analytical skills, ability to partner with members at all organizational levels including senior leadership, attention to detail, organization skills, and the ability to handle confidential and sensitive information. Knowledge of basic e-learning instructional design tools a plus.

Minimum Qualifications and Requirements:

Education/Training: Bachelor’s Degree or equivalent combination of training and experience.  Master’s degree or advanced degree, certification, or equivalent combination of training and experience preferred.

Experience: Three to five (3-5) years of related experience.

Skills/Abilities: Strong interpersonal effectiveness, problem solving and analytical skills, organizational skills, customer service skills, and ability to input, synthesize, and analyze data to identify trends and make learning and development recommendations across the organization. Ability to gather and understand qualitative and quantitative metric data that informs objectives. Strong project management skills and ability to see a project through from beginning, middle, to end with limited supervision. Excellent written and verbal communication ability with focus on accuracy and clarity. Additional skills include the ability to maintain accurate and detailed records, understand and follow directions, organize information in documents and folders, and communicate effectively with team at all organizational levels. Role requires initiative, collaboration skills, flexibility, detail-orientation, time management ability, and the ability to independently solve problems.

Position reports to the Manager of the OEG with strong partnerships and collaborations between members of the OEG, organizational managers/leaders, HR, and key stakeholders throughout the organization.

Physical Mobility: Normally sedentary with some mobility (e.g., able to travel to other campus locations, may require some bending and lifting).

Environmental Conditions: Normal office environment although some positions may require work in other settings.  Generally work involved extended use of computer monitor.

Mental: Ability to pay close attention to detail, meet flexible deadlines, remain calm during difficult situations, work under pressure, and work with frequent interruptions.

Other:  Weekend and evening work may be required. U.S. Citizenship is required.  Applicants must be able to pass a background investigation.

 

Preferred Qualifications and Requirements:

Education/Training: Degree in Organizational Development, Leadership Development, Training/Instructional Design, Human Resources Management, Leadership and Business, or related field preferred.  Master's Degree or Advance Degree preferred.

 

Accountability:  Expected to complete high standard work within well-defined program budgets and to identify opportunities for efficiencies and cost-savings without compromising impact and output. Will have access to charge strings specific to projects and will be expected to complete projects within defined financial scope.

Direction:  Closely supervised at first and then expected to act independently over time. Expected to follow all SEI and CMU policies, procedures, and standard practices.  Directly supports and implement’s SEI’s standard practices in areas of: performance management, training and development, orientation/onboarding, and communication and coordination.

Decisions: Will be responsible for the implementation of specific learning and development offerings including materials development, delivery, and maintenance. 

Supervisory Responsibilities:  This position does not supervise others.

 

Job Functions or Responsibilities:

45%        Learning and development assessment, course design, delivery, and measurement

20%        Learning management system integration

20%        New employee onboarding program

15%        Additional OEG duties as assigned (customized events, lunch & learns, etc.)

100% TOTAL EFFORT

 

Organizational Chart:  Chief Operating Officer and Deputy Director < Manager, Organizational Effectiveness Group < Learning and Development Specialist

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

03 Sep
2014
Senior Cyber Security Engineer - 101048
Pittsburgh, PA or Arlington, VA

Position SummaryThe CERT Division is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Division engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems.

The individual in this position will work as a member of the Cyber Risk Management Team within the Cyber Security Solutions Directorate.  The CRM team develops solutions (in the form of frameworks, models, tools, policies, practices, technical guidance, and training) that allow organizations to identify, analyze, and manage organizational, operational, and technical risks to mission-critical assets, processes, systems, and infrastructures.  The individual will conduct applied research and perform assessments, diagnostics, and analysis techniques to better understand and mitigate risks to cyber environments and the organizational processes that depend on them.  Activities will include close work with customers from a variety of organizations, including DoD, government agencies, and commercial organizations.

 

Minimum Qualifications and Requirements:

Education/Training: BS in computer science, software engineering, information systems, or a related scientific/technical field with 10 (10) years’ experience; MS in computer science, software engineering, information systems, or a related scientific/technical field with eight (8) years’ experience; PhD in computer science, software engineering, information systems, or a related scientific/technical field with five (5) years’ experience; or equivalent combination of training and experience.

Experience: Professional experience as a system or network administrator, software engineer, information systems analyst, database administrator or similarly technical occupation. Experience with and applied knowledge in:

  • Information technology and telecommunications systems
  • Cyber security, survivability, and resilience concepts and issues
  • Software and systems engineering
  • Building and maintaining DoD customer relationships
  • Data Analytics and quantitative measures
  • Strategic Planning and requirements definition
  • Process Improvement
  • Program planning, budgeting, and management

 Skills/Abilities: Must exhibit the following skills and abilities:

  • Understanding of information technology and telecommunications systems
  • Working knowledge of network interoperability, cyber security, and survivability issues, including cyber security best practices and standards
  • Working knowledge of DHS critical infrastructure sectors and related security and resilience issues
  • Working knowledge of the DoD and Agency resilience needs and cyber security roadmaps
  • Development and delivery of information and infrastructure security risk and vulnerability evaluations
  • Ability to conduct analytical studies and investigations
  • Reasoning and problem-solving skills
  • Ability to work independently with limited supervision
  • Ability to interact effectively with diverse constituencies internally and externally
  • Ability to work well as a member of a cooperative team; ability to work in a matrix organizational structure
  • Ability to recognize and deal appropriately with confidential and sensitive information
  • Ability to implement project plans, monitor project budgets, and identify and mitigate project risks
  • Leadership and mentoring skills
  • Excellent written and oral communication skills; ability to contribute to technical research white papers and reports; ability to prepare papers and deliver presentations to technical and non-technical audiences; ability to contribute to customer technical exchanges and marketing presentations
  • Ability to work on customer sites with high-ranking members of the Federal Government and US Military to define customer requirements
  • Participation in professional society activities, particularly IEEE and ACM

Physical/Mobility: Primarily sedentary in an office setting with some mobility.  Ability to travel frequently to various locations within the SEI and CMU community, customer sites, conferences, and offsite meetings.

Environmental Conditions: Close contact with computer for extended periods of time.

Mental: Strong interest in the human, managerial, and technical aspects of cyber security is critical for this position as are these abilities:

  • Take or share leadership role in technical projects
  • Work meticulously with careful attention to detail
  • Meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities
  • deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff
  • Ability to understand the big picture, direction, and goals of an effort; ability to develop and communicate innovative ideas; ability to demonstrate initiative and to quickly learn new procedures, techniques, approaches, etc.

Other: Strong interest in cyber security and critical infrastructure protection analysis basis research, applied research, and development.  U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.

 

Preferred Qualifications and Requirements:

Education/Training: MS in computer science, software engineering, information systems, or a related scientific/technical field with eight (8) years’ experience; PhD in computer science, software engineering, information systems, or a related scientific/technical field with five (5) years’ experience; or equivalent combination of training and experience.

Licenses: CISSP, CISM, GIAC, or similar; certifications from the audit discipline (such as CISA) are also acceptable.

Experience: In addition to the minimum experience above, preferred experience includes:

  • Experience in both physical and cyber aspects of security; familiarity with resilience concepts
  • Familiarity with process improvement models such as CMMI or SixSigma, TQM, ISO9000, CERT-RMM
  • Familiarity with standards for measurement (including ISO 15939)
  • Familiarity with NIST 800-series standards for information security
  • Familiarity with the DoD DIACAP standard for information assurance certification and accreditation
  • Familiarity with standards for security (ISO 27000), business continuity (BS 25999), and IT operations (ISO 20000)
  • Working in a team environment on collaborative projects in critical infrastructure sectors involving network, system or data security
  • Experience employing software engineering techniques in designing and developing distributed, secure software, and experience with / knowledge of any of the following
    • System administration
    • Networking
    • Firewalls, intrusion detection systems, and other security technologies
    • Application development/programming
    • Relational databases

Skills/Abilities: In addition to the minimum skills/abilities above, preferred skills/abilities include:

  • Ability to lead work teams as needed
  • Consulting skills
  • Demonstrated ability to deliver coursework and training

 

Accountability:  The individual will implement and participate in the planning and execution of projects leading to technical results. The individual will also contribute to project, department, or program objectives and planning document development.  The individual will keep in confidence sensitive information such as customer processes, risks, vulnerabilities, and internal work products, whether for eventual public or private distribution.

Direction:  The individual is expected to act independently using CMU, SEI, and NSS defined policies, practices, and procedures – within the scope of assigned work.

Decisions:  The individual must make sound technical decisions with little supervision. The individual must accurately represent the program in interactions with customers, sponsors, and the public. The individual is expected to perform analysis on-site at customer locations and immediately assess potential vulnerabilities requiring further investigation. 

Supervisory Responsibilities:  This position could involve the training and oversight of the work of other staff members, graduate students, resident affiliates, visiting scientists, and independent contractors.   Depending on research project or customer work plan, position may involve task leadership.

 

Job Functions or Responsibilities:

30%      Participate in the examination, analysis, and documentation of assessments, diagnostics, and analysis techniques for information and infrastructure security; examine data on cyber security and technology risks to identify problem areas and propose mitigation alternatives.

25%      Participate in the delivery of existing NSS cyber security, resilience, and risk assessment and analysis approaches with customers and partners;  participate in research, analysis, and documentation of cyber security issues, concerns, and risks at customer locations.

20%      Participate in research into innovative and cutting-edge tools, techniques, and methods to improve cyber security and resilience; transition research into applied knowledge for customers.

10%      Deliver courses in operational resilience management, cyber security management, and information security risk management.

SECONDARY FUNCTIONS

5%       Contribute to conferences and meetings; participate in marketing calls and technical exchanges with clients; give talks and lectures as appropriate; participate on working groups for subjects of interest.

5%       Contribute to and review the literature in cyber security, resilience, and software engineering.

5%       Provide assistance and input to other teams and projects within the SEI.

100% TOTAL EFFORT

 

Organizational Chart: Director, CERT Division < Technical Director, Cyber Security Solutions Directorate < Deputy Director, Cyber Security Solutions Directorate < Technical Manager, Cyber Risk Management Team < Senior Cyber Security Engineer

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

03 Sep
2014
Temporary Administrative Assistant/Course Administrator - 101050
Arlington, VA

Position SummaryThis is a temporary, full time position. This position will be in support of the Software Engineering Institute’s Washington, DC office and will report to the Washington Operations Manager.

This position provides support for the SEI courses and service for the development of customer relationships and technology transition to the software engineering community in the SEI Arlington, Virginia office.  Responsibilities include:  Support for training activities for Transition Services and the Carnegie Mellon CIO Institute, manage logistical aspects of course delivery including printing registration materials, assembling and maintaining inventory of course materials and supplies, set up and tear down of training facility, provide certificates to course instructors for signature.  Support the Registration Team Lead for coordinating attendance lists, participant substitutions, transfers and cancellations, and assisting in the communications with instructors and attendees.  Assist Pittsburgh Course Catering Administrator to ensure efficient food service is available for the course attendees. Manage all processes for internal catering for meetings and events held in the SEI Arlington office.  Coordinate with the requester and the vendor to ensure accuracy of order and timeline of delivery.  Prepare and maintain a list of upcoming meetings and events (average 5 -10 per week) and attendees (approximately 8-30 attendees) per event.  Prepare and submit purchase requests.  Review, reconcile and approve invoices for all catered meetings and events held in the SEI, Arlington office.

The candidate will be responsible for performing various administrative duties including but not limited to: welcoming and assisting (as necessary) all individuals who enter our facility; operate the main phone system; providing coordination support for all hosted events and providing lunch coverage for the front desks. Provide backup to other Washington Operations staff, duties may include: shipping and receiving, daily suite walkthroughs to ensure a well maintained facility and professional appearance and providing administrative assistance as requested to the Arlington office staff including technical staff and the Chief of Staff. Candidate must be available to work 8:00am to 5:00pm or 7:30am to 4:30pm, Monday through Friday, with an hour for lunch.


Minimum Qualifications and Requirements:

Education/Training: High School diploma or equivalent combination of training and experience.

Experience: A minimum of four (4) years of administrative, customer service and/or customer relationship management experience.

Skills/Abilities: Excellent organization, reasoning and problem solving skills with ability to manage decision making by demonstrating initiative, creativity, and attention to detail; ability to interact effectively with Pittsburgh course staff, internal customers and external customers; excellent verbal and written communication skills; computer literacy in Microsoft Office products in particular ability to use various word processing, spread sheet and data base applications (i.e. Word, PowerPoint, Excel, Access and/or Filemaker Pro); ability to understand and follow directions; ability to maintain accurate and detailed records. All while demonstrating professionalism and courtesy. Candidate must have the ability to prioritize tasks and handle multiple tasks simultaneously. Must be willing to take on new tasks, be self-motivated, and accept responsibility for accuracy and implementation of project tasks. Also able to work independently or in a team environment, and to set priorities as necessary.

Physical Mobility: Able to unpack and move heavy boxes, bending, stretching and pushing.  Set up and breakdown training rooms (move tables and chairs). Required to move to areas within and between the SEI buildings.

Environmental Conditions: Usual office setting; close contact with computer for prolonged periods of time.

Mental: Ability to prioritize tasks and handle multiple tasks simultaneously while showing attention to detail, meeting deadlines and maintaining composure when working under pressure. Be self-motivated, work independently, and accept responsibility for accuracy and implementation of new ideas.

Other: Standard hours are 7:30 a.m. to 4:30 p.m., but must be able to work flexible hours to support the course offerings.   U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.

 

Preferred Qualifications and Requirements: 

Education/Training: Associate’s degree and/or equivalent working experience in customer service, hospitality industry and in an academic environment.

           

Accountability:  Maintain close communications with the Washington Operations Manager and the Manager, Course Administration and Internal Operations for the Transition Services-Professional Development Center to ensure successful training activities and deliverables (logistics, materials, catering, inventory). Provide a higher value service by establishing and maintaining customer relationships through customer orientation.  Expected to prioritize and monitor courses and work closely with the Pittsburgh Transition Services staff using the documented course processes.  Frequently meet strict deadlines.  Provide in-depth information and advice regarding catering to staff planning internal meetings and events.  Follow up on all catering requests to ensure the orders are correct, on-time and charged to the appropriate cost string.  Establish and maintain a working relationship with the catering vendors to ensure excellent catering services for meetings, events and courses held in the SEI, Arlington Office.   Review, reconcile and approve invoices for catered meetings and events held in the SEI, Arlington Office.

Direction:  Expected to act independently with some latitude for independent judgment with periodic review by the Washington Operations Manager. Performs under moderate to minimal supervision while reporting progress and results to management. Normal day-to-day activities/responsibilities are completed without immediate supervision using established policies, procedures and guidelines. Difficult or unexpected situations are referred to the Washington Operations Manager for resolution or action.

Decisions:  Expected to suggest recommendations for improving work flow processes.  Expected to make decisions with regard to identifying and offering solutions to discrepancies and problems with course materials, course registrations, catering and room set up, etc.

Supervisory Responsibilities:  This position does not have supervisory responsibilities.

 

Job Functions or Responsibilities:

45%      Administrative support for Washington Operations:  Front desk coverage in the Arlington office during receptionists’ lunch hours.  Set and clean-up training rooms for meetings.   Provide support for high level meetings and events (JAC, BOV, State of the SEI, AJs etc.).  Provide back-up coverage for the Washington Operations Staff: welcoming and assisting (as necessary) all individuals who enter our facility; operate the main phone system; coordinate all hosted events, daily suite walkthroughs to ensure a well maintained facility and professional appearance, daily shipping and receiving and providing administrative assistance as requested to the Arlington office staff including technical staff and the Chief of Staff.

40%      Provide support for all training activities and deliverables (SEI, CMU-CIO Institute and PM College and onsite customer workshops). Schedule and prepare training rooms in the SEI, Arlington office, set up and tear down of training rooms, distribution of course materials, set-up laptops and projector, maintain supply inventory including course materials and textbooks, ensure catering order has been delivered and set up on time. 

Conduct student registration on the first day of each course.  Prepare and distribute name tags/tents, accept student payment, if necessary, and forward to Pittsburgh Registration Staff by noon of the first day of course.  Create certificates using a template and provide them to instructors for signature.  Update student completion records for SEI courses.  Assist the Pittsburgh Course Administrative staff and instructors to ensure timely receipt of all course evaluations.  Work closely with the Pittsburgh course administrative staff to assist the course attendees with questions.  Schedule and proctor exams for certification candidates and Intermediate CMMI DEV students.  Conduct orientation speech for all courses.  Acquire and maintain knowledge of SEI public offerings to establish customer relationships.  Maintain and organize product knowledge and technical resources. Maintain and update the procedures manual and process checklists.

Manage the internal catering process for meetings and events held in the SEI Arlington office.  Coordinate with the requester and the vendor to ensure accuracy of order and timeline of delivery.  Prepare and maintain a list of upcoming meetings and events (average 5 -10 per week) and attendees (approximately 5-30) per event.  Prepare and submit purchase requests.  Review, reconcile and approve invoices for all catered meetings and events held in the SEI, Arlington office. 

15%      Special projects as assigned by the Washington Operations Manager.

100% TOTAL EFFORT

 

Organizational Chart:  Chief of Staff < Washington Operations Manager < Temporary Administrative Assistant

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

14 Aug
2014
Vulnerability Analyst - 101004
Pittsburgh, PA

Position Summary:  This is an entry level position that is responsible for acting as the primary coordinator for all software vulnerabilities reported to the CERT Vulnerability Analysis team. CERT receives vulnerability reports through a variety of sources, mainly from the Vulnerability Reporting Form (VRF) on the cert.org website and direct correspondence from researchers, usually through the cert@cert.org email address. The individual will lead customer, vendor, and reporter coordination, and will write vulnerability reports to be published in the CERT website. These vulnerability notes will include detailed technical descriptions of a given vulnerability in addition to any mitigation recommendations. This individual will also be responsible for software vulnerability analysis including black box testing, source code examination, and attack reproduction. The individual in this position must be self-motivated and will have the opportunity to serve as a strong contributor in the analysis, coordination, and remediation of software vulnerabilities.  

 

Minimum Qualifications and Requirements:

Education/Training: Bachelor’s degree in Computer Science or related field, or equivalent in education and Minimum of three (3) years’ experience' or Master's degree in Computer Science or related field with one (1) year experience or combination of experience and training.

Experience: This is an entry level position that provides an opportunity for an individual with the educational background and interest to gain experience in the field of computer security.  The individual in this position should have the interest or classroom experience studying system or network administration, software development, database administration, or similarly technical areas. Candidates should have experience in a Windows and Unix/Linux environment and be able to demonstrate substantial knowledge of at least four of the following: various internet protocols (e.g., TCP/IP, DNS, BGP, SMTP, HTTP); computer system and Internet security issues; various security technologies (e.g., encryption, firewalls, and anti-virus products); software runtime analysis, debugging, and security testing techniques; security auditing practices; underlying software defects that routinely result in security vulnerabilities (e.g., input validation errors); understanding of intruder techniques and software exploitation methods; system, database, and/or network administration; operational details of multiple operating systems; cryptographic principles and common cryptographic protocols; one or more programming languages (e.g., C/C++, Perl, or Java); vulnerability management concepts and tools.

Skills/Abilities: Successful candidates will: have an interest in and have extensive knowledge of network and computer security issues; have the ability to analyze software to discover vulnerabilities; be able to develop and explain technical decisions; be able to separate fact from opinion and speculation; have excellent work prioritization, planning, and organizational skills; interact effectively with vulnerability reporters, system and network administrators, vendors, experts, Internet users, sponsors, policy makers, news reporters, managers and staff (i.e., stakeholders in the vulnerability disclosure process); be able to work with closely coordinated team during emergencies; excellent analytical, reasoning, and creative problem solving skills; excellent written, oral communication skills; recognize and deal appropriately with confidential and sensitive information; be able to work meticulously with careful attention to detail; be able to collaborate effectively and work closely within a coordinated team environment; be able to quickly learn new procedures, techniques, and approaches; maintain composure while dealing with difficult people; communicate and work effectively under normal and stressful situations; meet inflexible deadlines; possess strong leadership and mentoring abilities; be motivated to tackle challenging problems.

Physical Mobility: Sedentary.

Environmental Conditions: Close contact with computer displays for prolonged periods.

Mental: Ability to work under pressure; work concurrently on multiple programs in different stages, pay attention to detail; meet inflexible deadlines; deal with difficult individuals while maintaining composure.

Other: U.S. Citizenship is required.  Applicants will be subject to a security investigation and must meet eligibility requirements for access to classified information, and must be able to pass a background investigation.

 

Preferred Qualifications and Requirements:

Experience:  Ideal candidates will have substantial experience in two or more of the following areas: industrial/process control systems; web application development; computer and network architecture; reverse engineering; software development; computer and network architecture; network security and survivability issues, to include knowledge of and experience with information security concepts, information security best practices and bodies of knowledge, computer security incident response management.


Accountability: This position is accountable for:  Coordinating all software vulnerabilities reported to the CERT Vulnerability Analysis team; leading customer, vendor, and reporter coordination; producing vulnerability reports to be published.

Direction: Expected to perform under general supervision. Most normal duties and responsibilities are handled independently with the use of established research protocol and departmental and university procedures and policies. Difficult or unique situations are referred to the supervisor.

Decisions: Suggests possible solutions to colleagues and users.

Supervisory Responsibilities: This position does not supervise others.


JOB FUNCTIONS OR RESPONSIBILITIES:

40% Analyzes incoming vulnerability reports to determine technical validity and merit. Coordinates response strategy with affected vendors. Publishes corresponding vulnerability notes.

40% Performs vulnerability discovery and validation using in-house CERT fuzzing tools.

10% Attends required meetings and participates in various seminars and training classes to maintain or update skills needed.

5% Submits regular work progress reports to supervisor.

5%Performs related duties as assigned.

100% TOTAL EFFORT


ORGANIZATIONAL CHART:  CERT Director->CERT/CC Technical Director->Vulnerability Analysis Technical Manager->Vulnerability Analysis Team Lead->Vulnerability Analyst

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

13 Aug
2014
Senior Engineer - Client Technical Solutions - 101001
Pittsburgh, PA or Arlington, VA

This position has multiple openings and can be located in Pittsburgh, PA or Arlington, VA.

 

Position Summary:  The Senior Member of the Engineering Technical Staff of Software Solutions Division will be responsible for leading teams that enable the organizations within the Department of Defense Civil Agencies and Intel Community to enhance the predictable performance and mission assurance in the acquisition, evolution and operations of software-reliant systems. Key activities include understanding customer requirements and key challenge problems and addressing them with tailored solutions; applying, adapting, integrating, verifying and transitioning the SEI body of knowledge and other bodies of knowledge to maximize impact; creating, applying and codifying new approaches to support customer needs and advance the software engineering state of the practice; and maintaining situational awareness in technical and DoD domains. The candidate will coordinate closely with technical staff in CTSD, SSD  and other SEI programs to deliver software engineering technical expertise to customers throughout the lifecycle.


Minimum Qualifications and Requirements:
 
Education/Training: BS or equivalent degree in relevant discipline with ten (10) years applicable experience; MS or equivalent degree in relevant discipline with eight (8) years applicable experience; PhD or equivalent degree in relevant discipline with five (5) years applicable experience, or equivalent combination of training and experience.

Experience: The candidate must have experience in software engineering, development or management, and/or systems engineering. Must be knowledgeable of the software engineering and system engineering disciplines as well as understanding the DoD, Intelligence Community or Civilian Agency acquisition processes. The candidate should have experience building, leading, managing and participating on cross-functional, high technology teams, should be able to operate effectively with all organizations within the software and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.

Skills/Abilities: Detailed knowledge of software engineering; detailed knowledge of at least one core competency: requirements, architecture and design, program and acquisition management, performance improvement, assurance, or security and depth in at least one SEI body of work.  Experience in five or more of the following: DoD or Civilian Agency software systems acquisition on major programs (For the purposes of this announcement, our definition of major is at least 100K SLOC of custom developed code, and/or significant integration of COTS/GOTS products); solid technical breadth and understanding of all aspects of the end-to-end software lifecycle (e.g., requirements, design, implementation, testing, etc.); alternative life cycles (e.g. waterfall, agile); major DoD, Intelligence Community, or Civilian Agency software acquisition policies and directives; enterprise architecture ; software architecture development and evaluation, software architecture patterns (e.g. SOA) and concepts (e.g. Cloud computing); information Assurance/survivability; systems engineering on software intensive systems; COTS product integration; performance measurement including definition and application of goals, measurements and metric; system of systems engineering; requirements development and management; software integration and test and software/hardware integration; deployment of software intensive systems, especially including transition from legacy systems; cost estimation.

Strong written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.  Proven program and project management skills including: interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight).  Ability to lead and participate in multidisciplinary teams.

Mobility: Will be required to travel on overnight assignments

Environmental Conditions: Usual office setting with extended use of CRT.

Other: U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.


Preferred Qualifications and Requirements: 

Education/Training: Master's degree in Computer Science, Information Systems, systems engineering, software engineering, or acquisition management.

Licenses: Certified DoD Acquisition Professional. Certified PMP.


Accountability:  The member will be directly accountable for understanding DoD acquisition needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction:  As a technical staff member, he/she will be expected to operate with minimum supervision using CMU and SEI defined practice, policies and procedures, in concert with the SEI mission.

Decisions:  Will be required to work with government program offices to identify strengths and weaknesses within the acquisition program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  Must be able to lead and supervise others.


JOB FUNCTIONS OR RESPONSIBILITIES:

85%  Participate as a leader or member of technical teams in support of government acquisition program offices or participate as a member of a technical team performing research. Identify and support the implementation strategies for the capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses, and blog entries).

10%  Other duties as assigned by the Client Technical Solutions Directorate, Executive Director, Deputy Director, Associate Director or Chief Engineer.

5%  Serve in an advisory capacity to other SEI technical programs on acquisition or technical issues.
100% TOTAL EFFORT


Organiztional ChartSEI Director’s Office < Director, Software Solutions Division < Technical Director, Client Technical Solutions Directorate < Sector Lead, CTSD Sector Team

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

13 Aug
2014
Software Engineer - Client Technical Solutions Division- 101002
Pittsburgh, PA or Arlington, VA

This position has multiple openings and can be located in Pittsburgh, PA or Arlington, VA.

 

Position Summary:  The Technical Staff Member of the Engineering Technical Staff of the Software Solutions Division will be responsible for leading teams that enable the organizations within the Department of Defense to enhance the predictable performance and mission assurance in the acquisition, evolution and operations of software-reliant systems. Key activities include understanding customer requirements and key challenge problems and addressing them with tailored solutions; applying, adapting, integrating, verifying and transitioning the SEI body of knowledge and other bodies of knowledge to maximize impact; creating, applying and codifying new approaches to support customer needs and advance the software engineering state of the practice; and maintaining situational awareness in technical and DoD domains. The candidate will coordinate closely with technical staff in CTSD, SSD and other SEI programs to deliver software engineering technical expertise to customers throughout the lifecycle. The engineering technical staff member will be able to lead and participate in multi-disciplinary teams in support of the  vision and mission.


Minimum Qualifications and Requirements:
 
Education/Training: BS or equivalent degree in relevant discipline with eight (8) years applicable experience; MS or equivalent degree in relevant discipline with five (5) years applicable experience; PhD or equivalent degree in relevant discipline with two (2) years applicable experience.

Experience: The candidate must have experience in software engineering, development or managemen,t and/or systems engineering. Must be knowledgeable of the software engineering and system engineering disciplines as well as understanding the DoD, Intelligence Community, or Civilian Agency acquisition processes. The candidate should have experience building, leading, managing, and participating on cross-functional, high technology teams.  The candidate should be able to operate effectively with all organizations within the software and acquisition communities and be able to interact diplomatically with partners, customers and sponsors.  Experience in five or more of the following: DoD or Civilian Agency software systems acquisition on major programs (For the purposes of this announcement, our definition of major is at least 100K SLOC of custom developed code, and/or significant integration of COTS/GOTS products); solid technical breadth and understanding of all aspects of the end-to-end software lifecycle (e.g., requirements, design, implementation, testing, etc.); alternative life cycles (e.g. waterfall, agile); major DoD, Intelligence Community, or Civilian Agency software acquisition policies and directives; enterprise architecture; software architecture development and evaluation, software architecture patterns (e.g. SOA) and concepts (e.g. Cloud computing); information Assurance/survivability; systems engineering on software intensive systems; COTS product integration; performance measurement including definition and application of goals, measurements and metric; system of systems engineering; requirements development and management; software integration and test and software/hardware integration; deployment of software intensive systems, especially including transition from legacy systems; cost estimation.

Skills/Abilities: Detailed knowledge of software engineering; detailed knowledge of at least one core competency: requirements, architecture and design, program and acquisition management, performance improvement, assurance, or security and depth in at least one SEI body of work.  Strong written and verbal communications skills and the ability to present to high visibility stakeholders internal and external to the organization.  Proven program and project management skills including: interfacing with clients, developing proposals, and establishing relationships with new DoD and/or government clients and programmatic and project management skills (e.g., ability to develop project plans, track deliverables, manage risks, perform staff planning, provide budget oversight).  Ability to lead and participate in multidisciplinary teams.

Mobility: Will be required to travel on overnight assignments

Environmental Conditions: Usual office setting with extended use of CRT

Other:  U.S. Citizenship is required.  Applicants will be subject to a security investigation and must meet eligibility requirements for access to classified information, and must be able to pass a background investigation.


Preferred Qualifications and Requirements: 

Education/Training: Master's degree in Computer Science, Information Systems, systems engineering, software engineering, or acquisition management.

Licenses: Certified DoD Acquisition Professional. Certified PMP.


Accountability:  The member will be directly accountable for understanding DoD acquisition needs, applying new technologies, and establishing delivery capabilities to meet the needs of the sponsoring organization and the acquisition community.

Direction:  As a technical staff member, he/she will be expected to operate with minimum supervision using CMU and SEI defined practice, policies and procedures, in concert with the SEI mission.

Decisions:  Will be required to work with government program offices to identify strengths and weaknesses within the acquisition program and their contractor base and build solutions to address the weaknesses and recognize and encourage the strengths.

Supervisory Responsibilities:  Must be able to lead and supervise others.


JOB FUNCTIONS OR RESPONSIBILITIES:

85%  Participate as a leader or member of technical teams in support of government acquisition program offices or participate as a member of a technical team performing research. Identify and support the implementation strategies for the capture and application of learning and knowledge transfer from assignments (e.g. dissemination of research results, case studies, guides, reports, presentations, articles, workshops, courses, and blog entries).

10%  Other duties as assigned by the Client Technical Solutions Directorate Executive Director, Deputy Director, Associate Director or Chief Engineer.

5%  Serve in an advisory capacity to other SEI technical programs on acquisition or technical issues.


100% TOTAL EFFORT

 


Organiztional ChartSEI Director’s Office < Director, Software Solutions Division < Technical Director, Client Technical Solutions Directorate < Sector Lead, CTSD Sector Team

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

30 Jul
2014
Project Manager - 100977
Arlington, VA

This position is located in Arlington, VA

Position Summary:  The CERT Division is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Division engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems. 

A CERT/CC Project Manager is a member of the CERT/CC Project Office that guides the development and execution of technical projects throughout the lifecycle.  The successful candidate will work closely with PMO Manager to plan and establish organizational project management processes to achieve needs of different departments within the CERT/CC.  The candidate will: develop project management processes and create improvement plans to meet business and project needs, perform administrative and PM duties in the Microsoft Project Server and related Project Site SharePoint environments, and be responsible for the management and completion of projects.  Activities will include oversight of all aspects of projects, setting deadlines, assigning responsibilities, monitoring progress, and producing reports for management.

Responsibilities:

  • CERT/CC Project Office
    • Develop systematic management of projects in alignment with the organization’s strategic business goals
    • Define and implement organizational project management processes and mature existing processes
    • Perform maturity assessments and create improvement plans
    • Develop project management tracking systems
  • Project Management
    • Define and control scope
    • Develop WBS, produce and manage schedule
    • Work with Technical Leads to produce cost estimates, schedules and financial reporting artifacts
    • Assist in managing the activities of non-organic employees and subcontractors who serve on the project team to ensure completion and acceptance of deliverables
    • Coordinate and perform resource allocation and leveling among competing priorities across the organization.
    • Assemble project plans and, in conjunction with the technical lead, direct and monitor the work
    • Resolve or escalate risks related to cost, quality, and schedule
    • Responsible for reporting progress, status, and issues to CERT/CC and government program managers.
  • Project Tools Administrator
    • Support users unfamiliar with tools
    • Perform troubleshooting
    • Backup and restore
    • Manage MSP PWA and Project Site security
    • Perform Time and Task Management
    • Develop custom Business Intelligence reports (SQL)
    • Manage internal project information maintained in Atlassian Confluence, JIRA, and RMsis.

Minimum Qualifications and Requirements:

Education/Training:   MBA or MS in Computer Science, Software Engineering, Information Systems or related field or combination of training and experience.

Licenses:   Project Management Professional (PMP).

Experience:  Designing, developing, or implementing information technology projects for government clients; exceptional interpersonal and technical writing skills; developing organizational project management processes and tools infrastructure. Candidate should have five to seven (5-7) years of project management experience with customer-focused technology projects such as product or service development, research and development or technical transition.

Skills/Abilities:   Working knowledge of Microsoft Project Server; analytical and technical problem-solving skills; possess strong customer service skills; motivated to tackle challenging problems; excellent organizational skills; communicate effectively within a team environment.

Physical Mobility: Primarily sedentary, long periods of sitting; ability to travel to various locations within the SEI and Carnegie Mellon community, customer sites, conferences, and offsite meetings with some frequency.

Environmental Conditions:  Normal office conditions, close contact with computer for prolonged periods of time.

Mental: Ability to work under pressure and changing priorities; pay attention to detail; meet inflexible deadlines; deal with difficult individuals while maintaining composure.

Other:  U.S. Citizenship is required.  Applicants will be subject to a security investigation and must meet eligibility requirements for access to classified information, and must be able to pass a background investigation.  Apllicants must be willing to travel to a customer site in the Washington D.C. / Northern Virginia metro area. Candidate will be required to travel on overnight assignments.

 

Accountability: The Individual is accountable for:  accurately capturing project requirements and managing projects through the lifecycle; working closely with technical project leads and CERT/SEI financial managers to ensure projects are accurately represented, managed and controlled.

Direction:  Performs under minimal supervision, independent judgment is encouraged.  Most normal duties and responsibilities are handled independently with the use of established procedures and policies.  Difficult or unique situations are referred to the supervisor.

Decisions:  Accurately represents the program and individual projects in interactions with internal branches, customers and sponsors.  The individual is expected to participate in the decision-making and problem-solving processes surrounding building accurate project plans, understanding the SEI financial system and making CERT/CC decisions regarding effort allocations, sub-contract negotiations and purchasing.

Supervisory Responsibilities:  This position may include supervision of one of more Project Administrators.

 

Job Functions and Responsibilities:

30%     Initiating, planning, executing, monitoring/controlling, and coordinating major technical projects and their related activities.

30%     Administer and support users of MS Project and other project management tools.

30%     Develop, implement, and manage organizational project management initiatives.

5%       Contributing to and participating in business development, CERT management, and sponsor meetings.

5%       Develop knowledge and understanding of SEI capabilities; learning how SEI capabilities can be applied to customer problems.

100%      TOTAL EFFORT

 

Organizational Chart:  CERT Division Director < CERT/CC Technical Director < CERT/CC Deputy Technical Director < CERT/CC Project Office Director < CERT/CC Project Manager

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

30 Jul
2014
Senior Cyber Security Engineer - 100973
Pittsburgh, PA

Position Summary:  The CMU/SEI Cyber Security Solutions (CS2) directorate is a leading edge analytical resource focusing on critical U.S. Government (USG) needs.  For the past 8 years, the CS2 Forensic Operations and Investigations group has provided analytical and operational support to high-profile investigations including numerous activities of national or international significance. Through this work the CS2/FOI can see the current limitations of digital analysis and incident response in the field first hand. Combining applied research with the unique talents, operational experience, research capabilities, and the vast knowledge base of Carnegie Mellon University, DIID is unmatched in its ability to develop new tools and methods to address cyber security limitations and critical gap areas.

The individual in this position will work as a member of the CERT Program’s Cyber Security Solutions (CS2) directorate as a member of the Forensic Operations and Investigations (FOI) group. The candidate will be expected to perform a variety of roles. Primary to this position is the management of an existing portfolio of operational clientele as well as the expansion of the FOI portfolio of work within the Defense and Intelligence communities. To achieve this, the candidate will be expected to understand the unique needs of these communities in order to develop a strategic program of research, development and analysis to support current and future gaps in key areas of need. This position will be directly responsible for developing new and maintaining existing customer relationships through ongoing interaction with customers.

Minimum Qualifications and Requirements:

Education/Training:  Bachelors of Science in Computer Science, Intelligence or Intelligence Analysis, Network Security, or related field with more than ten (10) years’ experience, Masters of Science in same fields with more than eight (8) years’ experience, Doctorate in same fields with more than five (5) years’ experience or equivalent.

Experience:  Professional experience listed above to include the following areas: Cyber and Intelligence analysis, preferably within company security teams, network operations centers, counter terrorism centers, or within the government in counter cyber threat environments; intelligence community knowledge and experience; awareness of sourcing, intelligence analysis methodologies, intelligence needs, cyber capabilities, and intelligence tools; leader of teams of analysts, operators, and technologist, preferably in the areas of security or intelligence; experience with and oversight of intelligence analysis and reporting operations; experience using and awareness of data analytics.

Skills/Abilities: Knowledge of and experience in: Familiarity with mission needs and challenges in “cyber”; awareness of intelligence capabilities in support of US Government (Department of Defense and the Intelligence Community) cyber missions, including gaps and capability needs; experience and knowledge of cyber threats and cyber threat analytics; intimate knowledge of key government stakeholders in cyber and knowledge of relevant industry organizations and activities related to cyber; information assurance/survivability; data analytics; effective leadership skills to create informal but effective teams in partnerships across the U.S.; team leadership; leadership of skill-diverse, multidisciplinary teams; strong written and verbal communications skills and the ability to present to small and large audiences; intelligence community and service cyber commands domain knowledge a plus.

Physical Mobility: Primarily sedentary in an office setting with some mobility. Flexible to travel to various locations within the SEI and CMU community, sponsor sites, conferences, and offsite meetings on occasion. Travel outside of Pittsburgh limited to one-two weeks a month.

Environmental Conditions: Normal office conditions; close contact with computer screen for extended periods of time.

Mental: The ability to The ability to: Oversee and direct the design and development of detailed analysis methodologies and processes based on requirements elicitation from internal and external stakeholders; lead the interaction and clearly communicate with cyber intelligence and security staff across government and industry, software developers, IT infrastructure owners and architects, analyst, and non-technical experts; work meticulously with attention to detail; lead multiple projects and project teams at once; delegation; lead and manage under uncertainty; gradual structure projects and programs based on dynamic requirements and incremental input and evaluation; flexibility; drive teams to effectively meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities; deal collaboratively, diplomatically, and successfully with customers, co-workers, and other professional colleagues, managers, and staff; grasp and shape the big picture, direction, and goals of an effort while focusing on the meaning of details and how they are to be achieved; interface with world-class researchers across government, industry, and academia; develop and communicate innovative ideas; quickly learn and develop new procedures, techniques, and approaches.

Other:  U.S. Citizenship is required.  Applicants will be subject to a security investigation and must meet eligibility requirements for access to classified information, and must be able to pass a background investigation.

 

Accountability:  This position will be responsible for leading technical teams, developing approaches and solutions to digital intelligence problems for and with government, industry, and academic partners.

Direction: This position is expected to act with limited supervision in accordance with SEI procedures and policies, such as those involving technical leadership, analysis, report production, and confidentiality. This position requires close collaboration and teaming with the CS2/FOI Technical Management teams and program staff.

Decisions:  This position will be in a decision-making capacity for technical aspects of FOI projects and programs. Close coordination with the FOI technical manager will be required.

Supervisory Responsibilities:  This position will likely hold supervisory responsibilities for small (2) to medium (10) sized teams.

 

Job Functions or Responsibilities:

55%     Serve as a technical leader for CS2/FOI projects and programs, including the development of capabilities. Lead technology demonstration and intelligence activities across the Forensic Operations and Investigations (FOI) portfolio. Oversee and direct the aggregation and analysis of industry and contextual data to understand, capture, and report on events related to global, national, and local threat intelligence and network intelligence. Collaborate with, direct, and mentor other SEI staff, including analysts, technologist, researchers, and others.

25%     Explore, design, identify, document, guide the development of, and evaluate solutions to critical government and industry cyber intelligence issues.  Interface and collaborate with government and industry experts, the research community, and academics to identify needs, capabilities, objectives, and possible solutions to key digital intelligence challenges.

15%     Work with and advise the CS2/FOI management, and other senior leaders at the SEI on strategy, business development, direction, planning, and execution.

SECONDARY FUNCTIONS

5%    Participate in the broader SEI software research community through collaboration, papers, and presentations.

100% TOTAL EFFORT

 

Organizational Chart:  CERT Director > CS2 Technical Director > CS2 Deputy Director > Forensic Operations and Intelligence Technical Manager > Senior Engineer – Defense and Intelligence

27 Jun
2014
Project Manager - 100880
Pittsburgh, PA

This position is located in Pittsburgh, PA

Position Summary:  The CERT Division is part of the SEI, a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. The CERT Division engages in cutting-edge research and development and develops and transitions disciplined approaches to improve the survivability and resiliency of the DoD, federal civilian agencies, private sector organizations and their networked information systems. 

A CERT/CC Project Manager is a member of the CERT/CC Project Office that guides the development and execution of technical projects throughout the lifecycle.  The successful candidate will work closely with PMO Manager to plan and establish organizational project management processes to achieve needs of different departments within the CERT/CC.  The candidate will: develop project management processes and create improvement plans to meet business and project needs, perform administrative and PM duties in the Microsoft Project Server and related Project Site SharePoint environments, and be responsible for the management and completion of projects.  Activities will include oversight of all aspects of projects, setting deadlines, assigning responsibilities, monitoring progress, and producing reports for management.

Responsibilities:

  • CERT/CC Project Office
    • Develop systematic management of projects in alignment with the organization’s strategic business goals
    • Define and implement organizational project management processes and mature existing processes
    • Perform maturity assessments and create improvement plans
    • Develop project management tracking systems
  • Project Management
    • Define and control scope
    • Develop WBS, produce and manage schedule
    • Work with Technical Leads to produce cost estimates, schedules and financial reporting artifacts
    • Assist in managing the activities of non-organic employees and subcontractors who serve on the project team to ensure completion and acceptance of deliverables
    • Coordinate and perform resource allocation and leveling among competing priorities across the organization.
    • Assemble project plans and, in conjunction with the technical lead, direct and monitor the work
    • Resolve or escalate risks related to cost, quality, and schedule
    • Responsible for reporting progress, status, and issues to CERT/CC and government program managers.
  • Project Tools Administrator
    • Support users unfamiliar with tools
    • Perform troubleshooting
    • Backup and restore
    • Manage MSP PWA and Project Site security
    • Perform Time and Task Management
    • Develop custom Business Intelligence reports (SQL)
    • Manage internal project information maintained in Atlassian Confluence, JIRA, and RMsis.

Minimum Qualifications and Requirements:

Education/Training:   MBA or MS in Computer Science, Software Engineering, Information Systems or related field or combination of training and experience.

Licenses:   Project Management Professional (PMP).

Experience:  Designing, developing, or implementing information technology projects for government clients; exceptional interpersonal and technical writing skills; developing organizational project management processes and tools infrastructure. Candidate should have five to seven (5-7) years of project management experience with customer-focused technology projects such as product or service development, research and development or technical transition.

Skills/Abilities:   Working knowledge of Microsoft Project Server; analytical and technical problem-solving skills; possess strong customer service skills; motivated to tackle challenging problems; excellent organizational skills; communicate effectively within a team environment.

Physical Mobility: Primarily sedentary, long periods of sitting; ability to travel to various locations within the SEI and Carnegie Mellon community, customer sites, conferences, and offsite meetings with some frequency.

Environmental Conditions:  Normal office conditions, close contact with computer for prolonged periods of time.

Mental: Ability to work under pressure and changing priorities; pay attention to detail; meet inflexible deadlines; deal with difficult individuals while maintaining composure.

Other:  U.S. Citizenship is required.  Applicants will be subject to a security investigation and must meet eligibility requirements for access to classified information, and must be able to pass a background investigation.  Apllicants must be willing to travel to a customer site in the Washington D.C. / Northern Virginia metro area. Candidate will be required to travel on overnight assignments.

 

Accountability: The Individual is accountable for:  accurately capturing project requirements and managing projects through the lifecycle; working closely with technical project leads and CERT/SEI financial managers to ensure projects are accurately represented, managed and controlled.

Direction:  Performs under minimal supervision, independent judgment is encouraged.  Most normal duties and responsibilities are handled independently with the use of established procedures and policies.  Difficult or unique situations are referred to the supervisor.

Decisions:  Accurately represents the program and individual projects in interactions with internal branches, customers and sponsors.  The individual is expected to participate in the decision-making and problem-solving processes surrounding building accurate project plans, understanding the SEI financial system and making CERT/CC decisions regarding effort allocations, sub-contract negotiations and purchasing.

Supervisory Responsibilities:  This position may include supervision of one of more Project Administrators.

 

Job Functions and Responsibilities:

30%     Initiating, planning, executing, monitoring/controlling, and coordinating major technical projects and their related activities.

30%     Administer and support users of MS Project and other project management tools.

30%     Develop, implement, and manage organizational project management initiatives.

5%       Contributing to and participating in business development, CERT management, and sponsor meetings.

5%       Develop knowledge and understanding of SEI capabilities; learning how SEI capabilities can be applied to customer problems.

100%      TOTAL EFFORT

 

Organizational Chart:  CERT Division Director < CERT/CC Technical Director < CERT/CC Deputy Technical Director < CERT/CC Project Office Director < CERT/CC Project Manager

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

12 May
2014
Senior Software Developer - 100766
Pittsburgh, PA

The SEI Emerging Technology Center helps the government stay on the edge of technology. The world is innovating software and information technologies rapidly, and the Center identifies, demonstrates, and applies emerging software technologies to meet critical mission needs. We focus on promoting government awareness and knowledge of emerging technologies and their application, and shaping and leveraging academic and industrial research.

Position Summary: The SEI Emerging Technology Center is a focused on matching state-of-the-art software research with critical U.S. Government (USG) needs. This position will support the Center’s mission by developing, applying, demonstrating, evaluating, and transitioning software capabilities that operationalize research concepts of significant value to the USG. Software developers in the Center work on leading edge technologies and apply them to important and challenging problems. It is a dynamic and flexible development environment with constant opportunities to develop new skills, to learn new programming methods and techniques, to work on emerging architectures and systems, and to make a difference.

Duties include: Take hands-on lead role on team of Software Developers; develop and code software solutions that provide needed capabilities to the USG building on state-of-the-art research in analytics, data architectures, software assurance, security, and human information interaction; conduct rapid software prototyping to demonstrate and evaluate technologies in relevant environments; conduct performance, security, and other aspects of evaluating software systems; test software capabilities using novel testing and analysis techniques; document software with an emphasis on architectures, user stories, and interface definitions; practice agile software development methods and actively participate on teams of software developers, researchers, designers, and technical leads; support software development infrastructure and assist in building and configuring computing systems and resources; interface with the research community and the USG to understand challenges, needs, and possible solutions; contribute to improving the overall technical capabilities of the Center by mentoring and teaching others, participating in design (software and otherwise) sessions, and sharing insights and wisdom across the SEI Emerging Technology Center team.


Minimum Qualifications and Requirements:

Education/Training: Bachelors of Science in Computer Science, Information Systems, or related field with ten (10) years’ experience in hands on software development, or equivalent; Masters of Science in Computer Science, Information Systems, or related field with eight (8) years’ experience in hands on software development, or equivalent; Ph.D. with five (5) years’ experience is a plus; or equivalent combination of training and experience.

Experience: Professional experience listed above to include the following areas: eight (8) years of production or intensive research software development experience in modern languages such as C/C++ or Java; knowledge of other commonly used language such as Perl, Python, Ruby, JavaScript, etc.; working knowledge of some modern computing paradigms and environments such as NoSQL systems (Hadoop, CouchDB, MapReduce), cloud computing and virtualization, parallel programming, HPC development, network programming, mobile development, and interface development; familiarity with end-to-end software development activities in Linux/Windows/Unix/Web environments; familiarity with software development tools including IDEs (Eclipse, IntelliJ, emacs etc.), version control systems (git, svn, p4 etc.) and bug tracking systems (e.g., bugzilla); working knowledge and experience in participating in agile software development practices and team design sessions; experience as team lead or supervisor; demonstrated problem solving ability with the ability to explore and evaluate many possible solutions to problems; proven contribution to open source development projects is a plus.

Skills/Abilities: Knowledge of: Software development in Python, C/C++, Java, and other modern languages; modern computing, data, and storage solutions including advanced web development (HTML5, Adobe Flex, PHP), data processing architectures (MapReduce, Hadoop, BigTable) including cloud computing and virtualization concepts; virtualization, hypervisors, cloud controllers, and other cloud provisioning concepts; algorithm design and analysis including analysis of algorithm complexity; familiarity with of core Internet protocols (e.g., TCP/IP, BGP, UDP, ICMP, DNS, SMTP, HTTP, etc.); software / systems development lifecycle, QA testing, revision control, and change management practices.

Physical Mobility: Primarily sedentary in an office setting with some mobility. Flexible to travel to various locations within the SEI and CMU community, sponsor sites, conferences, and offsite meetings on occasion. Travel outside of Pittsburgh limited to no more than 5 working days a month.

Environmental Conditions: Normal office conditions; close contact with computer screen for extended periods of time.

Mental: The ability to: explore and solve complex, ill-defined problems; work meticulously with attention to detail; meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities; self-starter willing to take on tasks and initiate constructive activity with little guidance; deal collaboratively, diplomatically, and successfully with customers, co-workers, and other professional colleagues, managers, and staff; grasp the big picture, direction, and goals of an effort; interface with world-class research community; develop and communicate innovative ideas; quickly learn new procedures, techniques, and approaches.

Other: U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.

 

Preferred Qualifications and Requirements:

Education/Training: Ph.D. in Computer Science, Mathematics, Information Systems, or related disciplie with five (5) years’ experience.


Accountability: This position will be responsible for exploring, defining, developing, demonstrating, and, in some cases, transitioning software capabilities. This includes working with a team of developers, researchers, designers, and other technical personnel to create solutions.

Direction: This position is expected to act with minimal supervision in accordance with SEI procedures and policies, such as those involving product development, team interaction, and confidentiality.

Decisions: This position will explore, develop, and demonstrate software capabilities and make implementation choices for a wide-range of software-intensive problems.

Supervisory Responsibilities: This position does not supervise others, but may provide technical leadership to projects and act in the capacity of a mentor to solutions architects, software developers, and designers.


JOB FUNCTIONS OR RESPONSIBILITIES:

30%   Design, develop, test, document, and demonstrate software.

20%   Lead, direct, and oversee the activities of a team of developers working on diverse set problems and projects; development and management the development infrastructure and support the development team.

20%  Interface with the research community to understand the state of research ideas and the practicality of applying those ideas to real USG problems and challenges. Interface with USG customers to understand their needs and capabilities and identify possible solutions.

20%   Actively participate in agile team software development activities and team brainstorming, innovations, and design sessions.

10%   Participate in the broader SEI software research community through collaboration, papers, and presentations.

100% TOTAL EFFORT


ORGANIZATIONAL CHART:  SEI Emerging Technology Center Director < SEI Emerging Technology Center Technical Director < Senior Software Developer

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

12 May
2014
Software Developer - 100765
Pittsburgh, PA

The SEI Emerging Technology Center helps the government stay on the edge of technology. The world is innovating software and information technologies rapidly, and the Center identifies, demonstrates, and applies emerging software technologies to meet critical mission needs. We focus on promoting government awareness and knowledge of emerging technologies and their application, and shaping and leveraging academic and industrial research.

Position Summary: The SEI Emerging Technology Center is focused on matching state-of-the-art software research with critical U.S. Government (USG) needs. This position will support the Center’s mission by developing, applying, demonstrating, evaluating, and transitioning software capabilities that operationalize research concepts of significant value to the USG. Software developers in the Center work on leading edge technologies and apply them to important and challenging problems. It is a dynamic and flexible development environment with constant opportunities to develop new skills, to learn new programming methods and techniques, to work on emerging architectures and systems, and to make a difference.
Duties include: Develop and code software solutions that provide needed capabilities to the USG building on state-of-the-art research in analytics, data architectures, software assurance, security, and human information interaction; conduct rapid software prototyping to demonstrate and evaluate technologies in relevant environments; conduct performance, security, and other aspects of evaluating software systems; test software capabilities using novel testing and analysis techniques; document software with an emphasis on architectures, user stories, and interface definitions; practice agile software development methods and actively participate on teams of software developers, researchers, designers, and technical leads; support software development infrastructure and assist in building and configuring computing systems and resources; interface with the research community and the USG to understand challenges, needs, and possible solutions; contribute to improving the overall technical capabilities of the Center by mentoring and teaching others, participating in design (software and otherwise) sessions, and sharing insights and wisdom across the SEI Emerging Technology Center team.


Minimum Qualifications and Requirements:

Education/Training: Bachelors of Science in Computer Science, Information Systems, or related field with eight (8) years’ experience in hands on software development, or equivalent; Masters of Science in Computer Science, Information Systems, or related field with five (5) years’ experience in hands on software development, or equivalent; Ph.D. with two (2) years’ experience is a plus.

Experience: Professional experience listed above to include the following areas: five (5) years of production or intensive research software development experience in modern languages such as C/C++ or Java; knowledge of other commonly used language such as Perl, Python, Ruby, JavaScript, etc.; working knowledge of some modern computing paradigms and environments such as NoSQL systems (Hadoop, CouchDB, MapReduce), cloud computing and virtualization, parallel programming, HPC development, network programming, mobile development, and interface development; familiarity with end-to-end software development activities in Linux/Windows/Unix/Web environments; familiarity with software development tools including IDEs (Eclipse, IntelliJ, emacs etc.), version control systems (git, svn, p4, etc.) and bug tracking systems (e.g., bugzilla); working knowledge and experience in participating in agile software development practices and team design sessions; demonstrated problem solving ability with the ability to explore and evaluate many possible solutions to problems; proven contribution to open source development projects is a plus.

Skills/Abilities: Knowledge of: software development in Python, C/C++, Java, and other modern languages; modern computing, data, and storage solutions including advanced web development (HTML5, Adobe Flex, PHP), data processing architectures (MapReduce, Hadoop, BigTable) including cloud computing and virtualization concepts; algorithm design and analysis including analysis of algorithm complexity; familiarity with of core Internet protocols (e.g., TCP/IP, BGP, UDP, ICMP, DNS, SMTP, HTTP, etc); software / systems development lifecycle, QA testing, revision control, and change management practices.

Physical Mobility: Primarily sedentary in an office setting with some mobility. Flexible to travel to various locations within the SEI and CMU community, sponsor sites, conferences, and offsite meetings on occasion. Travel outside of Pittsburgh limited to no more than 5 working days a month.

Environmental Conditions: Normal office conditions; close contact with computer screen for extended periods of time.

Mental: The ability to: explore and solve complex, ill-defined problems; work meticulously with attention to detail; meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities; self-starter willing to take on tasks and initiate constructive activity with little guidance; deal collaboratively, diplomatically, and successfully with customers, co-workers, and other professional colleagues, managers, and staff; grasp the big picture, direction, and goals of an effort; interface with world-class research community; develop and communicate innovative ideas; quickly learn new procedures, techniques, and approaches.

Other: U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.


Accountability: This position will be responsible for exploring, defining, developing, demonstrating, and, in some cases, transitioning software capabilities. This includes working with a team of developers, researchers, designers, and other technical personnel to create solutions.

Direction: This position is expected to act with minimal supervision in accordance with SEI procedures and policies, such as those involving product development, team interaction, and confidentiality.

Decisions: This position will explore, develop, and demonstrate software capabilities and make implementation choices for a wide-range of software-intensive problems.

Supervisory Responsibilities: This position does not supervise others, but may provide technical leadership to projects and act in the capacity of a mentor to solutions architects, software developers, and designers.


JOB FUNCTIONS OR RESPONSIBILITIES:

60%   Design, develop, test, document, and demonstrate software.

15%   Interface with the research community to understand the state of research ideas and the practicality of applying those ideas to real USG problems and challenges. Interface with USG customers to understand their needs and capabilities and identify possible solutions.

15%   Actively participate in agile team software development activities and team brainstorming, innovations, and design sessions.

10%   Participate in the broader SEI software research community through collaboration, papers, and presentations.

100% TOTAL EFFORT


ORGANIZATIONAL CHART:  SEI Emerging Technology Center Director < SEI Emerging Technology Center Technical Director < Software Developer

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

05 May
2014
Chief Scientist - Emerging Technology Center - 100753
Pittsburgh, PA or Arlington, VA

The Software Engineering Institute’s Emerging Technology Center (SEI ETC) at Carnegie Mellon University helps the government stay on the leading edge of technology. The SEI ETC identifies, demonstrates, and applies emerging software technologies for critical U.S. Government needs. We promote government awareness and knowledge of emerging technologies and their applications, shape and leverage academic and industrial research, and build and demonstrate novel software capabilities.

We are seeking a Chief Scientist to be located in either Pittsburgh, Pennsylvania or Arlington, Virginia. Our ideal candidate is a creative and energetic applied research scientist passionate about data analytics, scalable and distributed computing, human information interaction, data storage and processing, or other software technologies. If you are committed to bringing innovation to government and beyond and are interested in working with an amazing team of developers, analysts, architects, engineers, and research scientists, then this is the position for you (and if you like to get your hands dirty, that is even better).

Position Summary:   The successful candidate will develop, guide, and oversee a rich applied research portfolio in line with the SEI’s overarching research agenda. The SEI ETC is a hands-on group that brings emerging technology to bear on difficult problems through building and demonstrating technology. The Chief Scientist will be responsible for setting direction, shaping and growing the SEI ETC research portfolio, supporting the SEI ETC team in developing proposals and research directions, and overseeing all SEI ETC research activities. Current areas of interest include data analytics, heterogeneous and high performance computing, and cyber intelligence. The Chief Scientist will represent the SEI ETC on internal research-oriented councils and will have a leadership role in the Center and across the SEI. As the Chief Scientist, you will have constant opportunities to learn and explore new technologies, interact extensively with mission stakeholders in the Department of Defense (DoD) and the Intelligence Community, and actively collaborate with the faculty and research community at Carnegie Mellon University and elsewhere.

 

Minimum Qualifications and Requirements:

Education/Training: M.S. in computer science, applied mathematics, computer engineering, or related field with eight (8) years of experience in applied computational research; Ph.D. with at least five (5) years of experience is a plus; or equivalent combination of training and experience.

Experience: Demonstrated track record in basic or applied research with extensive experience in building prototype or production software capabilities; Participation and leadership of interdisciplinary research and development teams; Successful experience with research proposals and developing research programs; Mission awareness or subject matter expertise on real world problems; Experience and hands-on knowledge of relevant technologies including distributed and scalable computing, adaptive systems, data analytics, high-performance computing, cyber intelligence, human information interaction, and other areas; Use of and contributions to Open Source Software projects; Confidence in presenting technical ideas and information to diverse audiences including industry and government seniors; Connections and collaborations with the academic, research, and innovation communities; Human-centered design experience is a plus; Start-up experience is a plus.

Skills/Abilities: Ability to set a technical direction and develop a research portfolio based on DoD and Intelligence Community mission needs and the SEI’s overall research agenda; Ability to formulate and execute research to address these needs; Ability to collaborate with research team members; Ability to lead research teams; Demonstrated ability to work effectively with external collaborators, customers, and sponsors; Excellent written, verbal, and presentation skills in research, customer, and operational settings; Ability to quickly understand new technologies and to refine technical strategies accordingly; demonstrated ability to lead and grow a team.  Passion for creating cool stuff that will change the world; Team player interested in building and mentoring others; Naturally curious; Able to learn quickly; Technology generalist with ability to acquire technical depth quickly; Firm believer that we can change the world through the smart application of software technologies.

Physical Mobility: Primarily sedentary in an office setting with some mobility. The ability and willingness to travel is required.

Environmental Conditions: Office setting with extended use of computing equipment.

Mental: The ability to: explore and solve complex, ill-defined problems; meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities; self-starter willing to take on tasks and initiate constructive activity with little guidance; deal collaboratively, diplomatically, and successfully with customers, co-workers, and other professional colleagues, managers, and staff; lead and develop others; grasp the big picture, direction, and goals of an effort; interface with world-class research community; develop and communicate innovative ideas; quickly learn new procedures, techniques, and approaches.

Other: U.S. Citizenship is required.  Applicants selected will be subject to a security investigation and must meet eligibility requirements for access to classified information.

 

Preferred Qualifications and Requirements:

Experience:  Ph.D. with eight (8) years of applied computation research experience, including leadership of interdisciplinary research and development teams.

Skills/Abilities: Teaching, facilitating, mentoring, leading, proposal writing, and consulting.

 

Accountability: This position will be responsible for developing, guiding, and overseeing a rich and diverse applied research portfolio for the SEI ETC in alignment with the SEI overall research agenda. This includes working closely with the entirety of the SEI ETC team, other senior technical staff and researcher’s leaders from across the SEI, the SEI Technical Council, and government and industry research sponsors. The SEI ETC Chief Scientist will be responsible for the overall quality and impact of the ETC’s research activities.

Direction: This position is an SEI ETC leadership position and operates with only broadest of guidelines and direction from the SEI ETC Director.

Decisions: This position will develop, pursue, drive, and oversee the research direction for the SEI ETC in accordance with the SEI ETC Director.

Supervisory Responsibilities: Over time and as the SEI ETC grows and evolves, the SEI ETC Chief Scientist may supervise a group of research scientists or other technical staff as appropriate. The SEI ETC Chief Scientist may also serve as the Project/Technical Lead on one or more projects as appropriate.

 

Job Functions or Responsibilities:

40%   Overseeing or leading research teams and projects; conducting research.

25%   Defining, pursuing, and developing research directions, proposals, and projects.

20%   Writing research papers; developing and delivering technical presentations.

15%   Participating in SEI ETC and SEI leadership and management activities.

100% TOTAL EFFORT

 

Organizational Chart:  Emerging Technology Center Director  >  Chief Scientist - Emerging Technology Center

 

Carnegie Mellon University is an EEO/Affirmative Action Employer – M/F/Disability/Veteran

 

We're Hiring

TECHEXPO Top Secret Hiring Event
9/16/14
10:00 a.m.-3:00 p.m.
Tysons Corner Ritz Carlton
McLean, VA
Sponsored by TECHEXPO

CMU Technical Opportunities Conference
9/17/14
10:00 a.m.-5:00 p.m.
Carnegie Mellon University
Wiegand Gymnasium

TECHEXPO Top Secret Hiring Event
9/18/14
10:00 a.m.-3:00 p.m.
BWI Marriott
Linthicum Heights, MD
Sponsored by TECHEXPO

Accessibility Needs for Applicants, Students and Visitors

Carnegie Mellon University makes every effort to provide physical and programmatic access individuals with disabilities. If you require an accommodation to participate in any part of the employment process, please contact Disability Resources by emailing access@andrew.cmu.edu or calling 412-268-3930.

Carnegie Mellon University considers applicants for employment without regard to, and does not discriminate on the basis of, gender, race, protected veteran status, disability, or any other legally protected status.

SEI Blog