Associate Cybersecurity Operations Researcher

Associate Cybersecurity Operations Researcher

Company: Carnegie Mellon University

Job Location: Pittsburgh, 15213

Category: Network/System Administrator

Type: Full-Time

The CERT Security Operations team is dedicated to developing cutting-edge solutions that address critical and emerging cybersecurity challenges facing the United States Government and the international community. Our success depends on a diverse team of analysts, researchers, and engineers who are passionate about understanding emerging technologies and applying best practices to support U.S. Government defensive missions.

Our team provides technical guidance in capability and capacity development for Security Operations Centers (SOCs), National Cyber Centers, and Computer Security Incident Response Teams (CSIRTs). We partner with federal agencies, academic institutions, foreign governments, private industry, and non-profit organizations to strengthen cybersecurity operations globally.

We develop and implement strategic and operational procedures that advance the cybersecurity community's effectiveness. Our work includes regular collaboration with sponsors and partners to design, evaluate, and improve mission performance.

Our team contributes to technical initiatives by developing and prototyping innovative methods for evaluating and measuring operational and mission success. We design and deliver training and engagement programs across National Incident Response Teams, Product Security Teams, SOCs, and enterprise incident management programs.

We are seeking an Associate Cybersecurity Operations Researcher to join our CERT Security Operations team. This role supports mission-driven cybersecurity initiatives focused on strengthening national and international security operations capabilities. The ideal candidate demonstrates interest and experience in developing and executing strategic and operational cybersecurity procedures, as well as advancing the state of the art in cyber operations research and practice.

Key Responsibilities

• Conduct and support analytical studies involving risk, threat, and security data.
• Work independently and collaboratively with multidisciplinary teams of varying experience levels.
• Apply a strong understanding of enterprise cybersecurity and technology security challenges.
• Utilize knowledge of computer network defense tools and processes, including leading commercial vendor solutions and open-source platforms.
• Brief strategic and technical topics to senior leadership, technical and non-technical audiences, and foreign government officials.
• Analyze current operational challenges and evolving threats facing network security and intelligence organizations.
• Apply project planning and management methodologies to support program execution.
• Engage international stakeholders with cultural awareness and professionalism.
• Produce clear, well-structured technical documentation that translates complex processes for diverse audiences (writing sample may be requested).

Team deliverables include:

• Technical publications
• Industry and government conference presentations
• Course development and delivery
• Direct customer engagement
• Prototype tools and methodologies

Requirements

• You have BS in Computer Science or related discipline with three (3) years of experience; OR MS in the same fields with one (1) year of experience.
• You have the willingness and ability to travel domestically and internationally (up to 40% on an annual basis) in support of the SEI mission.
• You will be subject to a background investigation and must be able to obtain and maintain an active Department of War (DoW) security clearance.

Desired Experience

• Familiarity with critical infrastructure sectors.
• Experience working within or in collaboration with a national Incident Response or Security Operations organization.
• Demonstrated technical proficiency with modern computing hardware, software, and networking technologies.
• Experience conducting research and publishing academic or technical papers.
• Knowledge of cybersecurity metrics, measurement, and assessment methodologies.
• Participation in public forums such as standards bodies, open-source projects, or professional publications.
• Preferred certifications: CISSP, CEH, CISM, CompTIA Security+, or equivalent.