Carnegie Mellon University Vulnerability Analyst (2015983) in PITTSBURGH, Pennsylvania
Vulnerability Analyst (2015983)What We Do:The SEI helps advance software engineering principles and practices and serves as a national resource in software engineering, computer security, and process improvement. The SEI works closely with defense and government organizations, industry, and academia to continually improve the quality and security of software-intensive systems.Position Summary:The Vulnerability Analysis Team, within the CERT Coordination Center (CERT/CC) at the SEI, is a group of internet security experts focused on advancing the state of the art in vulnerability assessment and discovery, coordinated vulnerability disclosure, and software security on a national and global scale. We participate in communities of network defenders, software developers and vendors, security researchers, and policy-makers. We publish security advisories, papers, blog posts, data, and tools.We seek self-motivated applicants who want to improve the security of software systems.You have a deep interest in cybersecurity, intellectual curiosity and a desire to make an impact beyond your organizationYou enjoy developing and communicating innovative ideas and thinking creatively to take on tough problemsYou can work under stress and adapt to shifting priorities and flexible taskingYou relate collaboratively and diplomatically with people inside and outside the organizationRequirements:Bachelor of Science in Computer Science, Information Technology, Information Science, or a similar degree with eight (8) years of applicable experience as a system or network administrator, software developer, or similar technical occupation; or Master of Science in relevant fields with five (5) years of applicable experience; or PhD in relevant fields with two (2) years of experience.Willingness to travel to various locations to support the SEI's overall mission. (5% travel)You will be subject to a background check and will need to obtain and maintain a Department of Defense security clearance.Knowledge, Skills, and Abilities:We seek applicants with knowledge, skills, and abilities including:Fundamental understanding of common computer, network, and internet technologies, including basic computer architecture and common network protocolsVulnerabilities and software security in generalVulnerability assessment and discoveryInternet security issues, including common security technologySoftware developmentBasic cryptographyBroad communications skills, including writing, speaking, explaining complex technical issues, working with parties in conflictLogic and reasoning, separate evidence from opinion, decision-making under uncertaintyAttention to detail, when neededCreative problem solvingRecognize and properly handle confidential and sensitive informationDetermination, motivationCollaboration and community, teamDesired Experience:We seek applicants with experience that includes:Software development, including web applications and DevOpsPenetration testing and vulnerability assessmentIncident response and managementVulnerability managementGovernment or contractor supportMore Information:Please visit andldquo;Why Carnegie Mellonandrdquo; to learn more about becoming part of an institution inspiring innovations that change the world. www.cmu.edu/jobs/benefits-at-a-glance/.Carnegie Mellon University is an Equal Opportunity Employer/Disability/Veteran.Statement of Assurance: https://www.cmu.edu/policies/administrative-and-governance/statement-of-assurance.htmlCarnegie Mellon University considers applicants for employment without regard to, and does not discriminate on the basis of, gender, race, protected veteran status, disability, or any other legally protected status.