Independent Security Researcher Jobs (NOW HIRING)

The CERT Security Operations team is dedicated to developing cutting-edge solutions that address critical and emerging cybersecurity challenges facing the United States Government and the international community. Our success depends on a diverse team of analysts, researchers, and engineers who are passionate about understanding emerging technologies and applying best practices to support U.S. Government defensive missions.

Our team provides technical guidance in capability and capacity development for Security Operations Centers (SOCs), National Cyber Centers, and Computer Security Incident Response Teams (CSIRTs). We partner with federal agencies, academic institutions, foreign governments, private industry, and non-profit organizations to strengthen cybersecurity operations globally.

We develop and implement strategic and operational procedures that advance the cybersecurity community's effectiveness. Our work includes regular collaboration with sponsors and partners to design, evaluate, and improve mission performance.

Our team contributes to technical initiatives by developing and prototyping innovative methods for evaluating and measuring operational and mission success. We design and deliver training and engagement programs across National Incident Response Teams, Product Security Teams, SOCs, and enterprise incident management programs.

We are seeking a Cybersecurity Operations Researcher to join our CERT Security Operations team. This role supports mission-driven cybersecurity initiatives focused on strengthening national and international security operations capabilities. The ideal candidate demonstrates interest and experience in developing and executing strategic and operational cybersecurity procedures, as well as advancing the state of the art in cyber operations research and practice.

Key Responsibilities

• Conduct and support analytical studies involving risk, threat, and security data.
• Work independently and collaboratively with multidisciplinary teams of varying experience levels.
• Apply a strong understanding of enterprise cybersecurity and technology security challenges.
• Utilize knowledge of computer network defense tools and processes, including leading commercial vendor solutions and open-source platforms.
• Brief strategic and technical topics to senior leadership, technical and non-technical audiences, and foreign government officials.
• Analyze current operational challenges and evolving threats facing network security and intelligence organizations.
• Apply project planning and management methodologies to support program execution.
• Engage international stakeholders with cultural awareness and professionalism.
• Produce clear, well-structured technical documentation that translates complex processes for diverse audiences (writing sample may be requested).

Team deliverables include:

• Technical publications
• Industry and government conference presentations
• Course development and delivery
• Direct customer engagement
• Prototype tools and methodologies

Requirements

• You have BS in Computer Science or related discipline with eight (8) years of experience; OR MS in the same fields with five (5) years of experience; OR a PhD in the same fields with two (2) years of experience.
• You have the willingness and ability to travel domestically and internationally (up to 40% on an annual basis) in support of the SEI mission.
• You will be subject to a background investigation and must be able to obtain andmaintainan active Department ofWar(DoW) security clearance.

Desired Experience

• Familiarity with critical infrastructure sectors.
• Experience working within or in collaboration with a national Incident Response or Security Operations organization.
• Demonstrated technical proficiency with modern computing hardware, software, and networking technologies.
• Experience conducting research and publishing academic or technical papers.
• Knowledge of cybersecurity metrics, measurement, and assessment methodologies.
• Participation in public forums such as standards bodies, open-source projects, or professional publications.
• Preferred certifications: CISSP, CEH, CISM, CompTIA Security+, or equivalent.

Why work here?

• Join a world-class organization that continues to have a significant impact.
• Work with cutting-edge technologies and dedicated experts to solve challenging problems for the government and the nation.
• Access tuition benefits at Carnegie Mellon University and other institutions for employees and their dependent children.
• Receive 8% monthly contribution for your retirement.
• Maintain a healthy work/life balance including paid parental and military leave.
• Take advantage of annual professional development opportunities.
• Qualify for relocation assistance.

Location

Job Function

Position Type

Full time/Part time

Pay Basis

• Please visit "Why Carnegie Mellon" to learn more about becoming part of an institution inspiring innovations that change the world.

• Click here to view a listing of employee benefits

• Carnegie Mellon University is an Equal Opportunity Employer/Disability/Veteran.

• Statement of Assurance