Associate Cybersecurity Operations Researcher

Software Engineering Institute | Carnegie Mellon University•Pittsburgh, PA

About The Position

The CERT Security Operations team is dedicated to developing cutting-edge solutions that address critical and emerging cybersecurity challenges facing the United States Government and the international community. Our success depends on a diverse team of analysts, researchers, and engineers who are passionate about understanding emerging technologies and applying best practices to support U.S. Government defensive missions. Our team provides technical guidance in capability and capacity development for Security Operations Centers (SOCs), National Cyber Centers, and Computer Security Incident Response Teams (CSIRTs). We partner with federal agencies, academic institutions, foreign governments, private industry, and non-profit organizations to strengthen cybersecurity operations globally. We develop and implement strategic and operational procedures that advance the cybersecurity community’s effectiveness. Our work includes regular collaboration with sponsors and partners to design, evaluate, and improve mission performance. Our team contributes to technical initiatives by developing and prototyping innovative methods for evaluating and measuring operational and mission success. We design and deliver training and engagement programs across National Incident Response Teams, Product Security Teams, SOCs, and enterprise incident management programs. We are seeking an Associate Cybersecurity Operations Researcher to join our CERT Security Operations team. This role supports mission-driven cybersecurity initiatives focused on strengthening national and international security operations capabilities. The ideal candidate demonstrates interest and experience in developing and executing strategic and operational cybersecurity procedures, as well as advancing the state of the art in cyber operations research and practice. Key Responsibilities Conduct and support analytical studies involving risk, threat, and security data. Work independently and collaboratively with multidisciplinary teams of varying experience levels. Apply a strong understanding of enterprise cybersecurity and technology security challenges. Utilize knowledge of computer network defense tools and processes, including leading commercial vendor solutions and open-source platforms. Brief strategic and technical topics to senior leadership, technical and non-technical audiences, and foreign government officials. Analyze current operational challenges and evolving threats facing network security and intelligence organizations. Apply project planning and management methodologies to support program execution. Engage international stakeholders with cultural awareness and professionalism. Produce clear, well-structured technical documentation that translates complex processes for diverse audiences (writing sample may be requested). Team deliverables include: Technical publications Industry and government conference presentations Course development and delivery Direct customer engagement Prototype tools and methodologies

Requirements

You have BS in Computer Science or related discipline with three (3) years of experience; OR MS in the same fields with one (1) year of experience.
You have the willingness and ability to travel domestically and internationally (up to 40% on an annual basis) in support of the SEI mission.
You will be subject to a background investigation and must be able to obtain and maintain an active Department of War (DoW) security clearance.

Nice To Haves

Familiarity with critical infrastructure sectors.
Experience working within or in collaboration with a national Incident Response or Security Operations organization.
Demonstrated technical proficiency with modern computing hardware, software, and networking technologies.
Experience conducting research and publishing academic or technical papers.
Knowledge of cybersecurity metrics, measurement, and assessment methodologies.
Participation in public forums such as standards bodies, open-source projects, or professional publications.
Preferred certifications: CISSP, CEH, CISM, CompTIA Security+, or equivalent.

Responsibilities

Conduct and support analytical studies involving risk, threat, and security data.
Work independently and collaboratively with multidisciplinary teams of varying experience levels.
Apply a strong understanding of enterprise cybersecurity and technology security challenges.
Utilize knowledge of computer network defense tools and processes, including leading commercial vendor solutions and open-source platforms.
Brief strategic and technical topics to senior leadership, technical and non-technical audiences, and foreign government officials.
Analyze current operational challenges and evolving threats facing network security and intelligence organizations.
Apply project planning and management methodologies to support program execution.
Engage international stakeholders with cultural awareness and professionalism.
Produce clear, well-structured technical documentation that translates complex processes for diverse audiences (writing sample may be requested).

Benefits

Access tuition benefits at Carnegie Mellon University and other institutions for employees and their dependent children.
Receive 8% monthly contribution for your retirement.
Maintain a healthy work/life balance including paid parental and military leave.
Take advantage of annual professional development opportunities.
Qualify for relocation assistance.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume