5079 - Junior Network Security Analyst

POSITION SUMMARY:
The CERT Network Situational Awareness (NetSA) group’s analysis team supports internal and external customers by developing cutting-edge analysis techniques for regular operational use in high-impact environments.  The analyst will develop new analysis techniques and prototype their software implementation, support customers by preparing analytic reports, prototype new analysis approaches, and participate in preparing research for publication.  The successful candidate will have some combination of academic training and real world network or network security experience.

Education/Training:
Bachelor of Science in Computer Science or scientific/technical field with 3 years experience, or equivalent; Masters Degree in Computer Science or scientific/technical field with 1 year experience, or equivalent.

Licenses:
None.

Experience:
Professional experience listed above is in network security research and/or operations—the successful applicant will likely have both.

Skills/Abilities:
•Theoretical knowledge of and practical experience with various Internet protocols (e.g., DNS, SMTP, BGP, TLS)
•Ability to function in the role of a consultant
•Capable of conducting analytical studies and investigations
•Experience on incident response team or as system or network administrator on large network(s) AND/OR Experience with academic network security research
•Experience delivering concrete, high quality results on projects while under time pressure
•Planning and organizational skills
•Strong problem solving skills
•Excellent oral and written communication skills.
•Ability to work both independently and with teams.
•Informal development experience in a high level programming language (e.g. Perl, Python).
•User or implementation level experience with a subset of the following technologies: network flow, network payload analysis (e.g. NetWitness, Wireshark), IDS (e.g., Snort, RealSecure), IPS, SIM/SEM (e.g, ArcSight, OSSIM), network mapping, vulnerability scanners (e.g., Nessus), firewalls, routers, host-based security (AV, HIPS, system logs), and other integration platforms (e.g. McAfee ePolicy Orchestrator, Sourcefire RNA)
•Experience with and knowledge of internals of multiple modern operating system (e.g., Linux, Solaris, Windows 2000+, BSD, OSX)
•Unix shell scripting experience
•Experience using SQL databases


Mobility:
Primarily sedentary in an office setting with some mobility. Flexibility to travel to various locations within the SEI and CMU community, sponsor sites, conferences, and offsite meetings potentially with routine frequency.

Environmental Conditions:
Normal office conditions; close contact with computer display for extended periods of time.

Mental:
The ability to:
•work meticulously with careful attention to detail;
•meet deadlines while working on multiple tasks – sometimes under pressure and with shifting priorities;
•deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort;
•develop and communicate innovative ideas;
•work independently given minimal instruction; and
•quickly learn new procedures, techniques, and approaches.

Other:
Candidates must be able to pass a background investigation, obtain a DOD TS/SCI security clearance, and be a US citizen.


ESSENTIAL FUNCTIONS:
(1) provide direct support to the operations of CERT/NetSA customers.

(2) perform studies on customer data-sets and infrastructure; document findings in reports, presentations, and technical exchanges.

(3) adapt analytical approaches and tools to the operational needs of the customer, including providing hands-on technical transition support.

(4) contribute to the broader security community; participate in meetings and presentations; give talks as appropriate


TO APPLY:
Careers@CarnegieMellon makes it easy for you to search for positions at
the SEI that match your interests, apply for positions electronically,
and create a Job Agent that will notify you by email when jobs that meet
your criteria become available.

Please visit the Careers@CarnegieMellon web site
( https://secured.kenexa.com/cmu/cc/Home.ss) to create a profile and
apply to this position (job number 5079).