Associate Systems Security Engineer

Software Engineering Institute
Arlington, VA
Jul 17, 2017
Jul 21, 2017
Engineering, Security
Full Time
Position Summary: The CERT Program is part of the Software Engineering Institute (SEI), a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. CERT engages in cutting-edge research and development in computer security. The CERT Security Automation Directorate helps large network operators and security organizations in the USG distill actionable insights from networks through strategic analysis, tool building, and systems development. As a member of the Deployment Team, the selected candidate will be responsible for developing, deploying, and evolving a network security test bed used for prototyping and systems analysis. The selected candidate must be capable of administering commodity systems as well as operating specialized networking equipment and hardware. As required, the candidate will support operational users and developers by using the test bed to verify engineering scenarios, create and test data-sets, and improve infrastructure automation. Minimum Qualifications and Requirements: Education/Training: BS in computer science, software engineering, computer engineering, or a related quantitative field of study with three (3) years of applicable experience. Experience: Applicable experience in the design and implementation of complex testing and networking, including experience in: Networking experience including; Cisco, Routers, Juniper firewalls, VPN (AnyConnect/ASA), OSPF (routing protocol) Scripting (Python, Ruby, Perl). System administration, monitoring, and automation in Unix/Linux. Managing networks (switches, firewalls, routers, VPNs). Skills/Abilities: Deep familiarity with networking concepts, tools, etc. Understanding of enterprise level communications. Ability to execute test plans and report results, entry/exit documentation. Excellent written and verbal communication skills. Excellent reasoning and problem-solving skills. Ability to work effectively without close supervision. Ability to attend customer meetings and respond to customer requirements. Mobility: Sedentary in an office setting with some mobility, ie, able to travel to various locations within the SEI and CMU community as well as travel up to 20% to customer sites. Environmental Conditions: Close contact with computer for extended periods of time. Mental: Ability to work meticulously with careful attention to detail; ability to meet deadlines while working on multiple tasks - sometimes under pressure and with shifting priorities; ability to deal collaboratively, diplomatically, and successfully with customers, co-workers and other professional colleagues, managers, and staff; ability to grasp the big picture, direction, and goals of an effort; ability to quickly learn new procedures, techniques, approaches, etc. Other: Candidates will be subject to a background check and must be eligible to obtain and maintain a Department of Defense security clearance. Preferred Qualifications and Requirements: Education/Training: MS in computer science, software engineering, computer engineering, or a related quantitative field of study with one (1) year of applicable experience. Experience: Experience working in production computing environment. Experience designing, operating, and maintaining environments that include Unix/Linux, Windows, virtualization, and network systems and hardware. Experience automating infrastructure tasks using scripting languages. (Python, Ruby, Perl). Experience automating infrastructure configuration management. (Puppet, Ansible, Chef, CFEngine). Experience with DevOps methodologies. Experience with commercial high speed network monitoring equipment. Experience using network test equipment and network load generators. Accountability: The individual is accountable for the definition, creation, maintenance, and technical support of: A prototyping environment consisting of Unix/Linux, windows, virtualization, storage, and network systems and hardware. Automated configuration management, monitoring, and alerting for designated systems. Other products and customer deliverables including material for technical presentations and reports to customers, training material, and technical documentation. Direction: The individual is expected to act independently using CMU, SEI, and NSS defined policies, practices, and procedures - within the scope of assigned work. Decisions: The individual is expected to participate in the decision-making and problem-solving processes of operating, maintaining and implementing a multi-protocol multi-carrier prototype network environment. Supervisory Responsibilities: This position does not formally supervise others. However, the individual may act in a technical leadership (non-supervisory) role in regard to specific work products and activities, or in regard to student interns, etc. Job Functions or Responsibilities: 45% Manage the hardware and software of a prototype network security test-bed to include all appropriate system administration tasks and processes; provision for new requirements and growth. 30% Define and execute tests in the network security test-bed on behalf of internal and external users. 20% Build appropriate scenarios, profiles, and data-sets in support of internal and external users using the network security test-bed. Secondary Functions 5% Contribute to the broader security community. 100% TOTAL EFFORT Organizational Chart: Director, CERT Program Carnegie Mellon University is an EEO/Affirmative Action Employer - M/F/Disability/Veteran. #seijob