Associate Cybersecurity Engineer
Carnegie Mellon University
- Pittsburgh, PA
- Permanent
- Full-time
- Familiarity with cybersecurity standards (e.g., NIST CSF, NIST SP 800 series, ISO 27000 series, etc.).
- Knowledge of maturity model and capability measurement concepts.
- Subject matter expertise in the evaluation of cybersecurity controls and practices.
- Experience conducting security assessments including conducting on-site technical assessments, pre- and post-assessment analysis, preparation of technical reports and briefings to customers.
- Experience with the evaluation of network architectures and defenses.
- Knowledge of cloud technologies and architecture.
- Knowledge of critical infrastructure protection concepts and standards.
- Knowledge of information sharing practices and models.
- Experience in information technology operations.
- Ability to deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff.
- Ability to communicate with a range of audiences ranging from junior technical individual contributors to senior leadership
- Education and Experience: BS degree in a relevant discipline with 3 years of relevant cybersecurity experience, or a MS degree in a relevant discipline with 1 year of relevant cybersecurity experience.
- Communication: You are an outstanding communicator and can interact collaboratively and diplomatically with customers and colleagues at all levels of knowledge and experience.
- Travel: Frequent travel (15-35%) to various locations within the SEI and CMU community, customer sites, conferences, and offsite meetings.
- Security Clearance: You will be subject to a background investigation and you must have the ability to obtain and maintain a Department of Defense security clearance..
- Project Participation and Customer Engagement (85%): You will contribute to customer projects designed to advance the state of the art in cybersecurity. When applicable, you will represent the SEI by presenting our mission and our work to stakeholders.
- Community Engagement (10%): You will engage with our communities of interest; this includes presenting our mission and work via publication and presentation. You will build and maintain relationships with the relevant research and technology communities.
- Professional Development (5%): You will continue to grow your knowledge and skills in cybersecurity and stay current on emerging trends and topics relevant to the team’s portfolio.
- Certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or equivalent experience.