In this role, you will work with our mission partners to identify areas where advanced quantitative ... As a Senior Cyber Risk Engineer, you will work directly with government, industry, and academic ...
In this role, you will work with our mission partners to identify areas where advanced quantitative ... As a Senior Cyber Risk Engineer, you will work directly with government, industry, and academic ...
Senior Cyber Risk Engineer
Arlington, VA · On-site
As a Senior Cyber Risk Engineer, you will work directly with government, industry, and academic ... Expertise in one or more quantitative disciplines such as statistics, mathematics, econometrics ...
Senior Cyber Risk Engineer
Arlington, VA · On-site
As a Senior Cyber Risk Engineer, you will work directly with government, industry, and academic ... Expertise in one or more quantitative disciplines such as statistics, mathematics, econometrics ...
As the Director, Technology & Cyber Risk Metrics & Reporting will be a seasoned leader with strong knowledge of quantitative methods applied to technology/cyber risk, who can think strategically, is ...
As the Director, Technology & Cyber Risk Metrics & Reporting will be a seasoned leader with strong knowledge of quantitative methods applied to technology/cyber risk, who can think strategically, is ...
Risk Manager
Washington, DC · On-site
Provide subject matter expertise in enterprise risk management, operational risk, cyber risk, and ... Conduct qualitative and quantitative risk analyses to support program decision-making. * Maintain ...
Risk Manager
Washington, DC · On-site
Provide subject matter expertise in enterprise risk management, operational risk, cyber risk, and ... Conduct qualitative and quantitative risk analyses to support program decision-making. * Maintain ...
Risk Manager
Washington, DC · On-site
Provide subject matter expertise in enterprise risk management, operational risk, cyber risk, and ... Conduct qualitative and quantitative risk analyses to support program decision-making. * Maintain ...
Quick apply
Risk Manager
Washington, DC · On-site
Provide subject matter expertise in enterprise risk management, operational risk, cyber risk, and ... Conduct qualitative and quantitative risk analyses to support program decision-making. * Maintain ...
Cyber Data Analyst / Coordinator
$146K - $234K/yr
... risk identification, and root cause evaluation. Identify trends and forecast potential ... Degree in qualitative, quantitative, and other data analysis field of study * IAT Level II ...
Cyber Data Analyst / Coordinator
$146K - $234K/yr
... risk identification, and root cause evaluation. Identify trends and forecast potential ... Degree in qualitative, quantitative, and other data analysis field of study * IAT Level II ...
Cyber Data Analyst / Coordinator
Fort George G Meade, MD · On-site
$146K - $234K/yr
... risk identification, and root cause evaluation. Identify trends and forecast potential ... Degree in qualitative, quantitative, and other data analysis field of study * IAT Level II ...
Cyber Data Analyst / Coordinator
Fort George G Meade, MD · On-site
$146K - $234K/yr
... risk identification, and root cause evaluation. Identify trends and forecast potential ... Degree in qualitative, quantitative, and other data analysis field of study * IAT Level II ...
Cyber Data Analyst / Coordinator
$146K - $234K/yr
... risk identification, and root cause evaluation. Identify trends and forecast potential ... Degree in qualitative, quantitative, and other data analysis field of study * IAT Level II ...
Cyber Data Analyst / Coordinator
$146K - $234K/yr
... risk identification, and root cause evaluation. Identify trends and forecast potential ... Degree in qualitative, quantitative, and other data analysis field of study * IAT Level II ...
Director, Field Sales - Mastercard Cybersecurity Solutions (PAC Northwest, Ohio Valley & NY NJ Ea...
Arlington, VA · On-site
$124K - $186K/yr
... risk assessments, strategic level threat intelligence with Cyber Insights leveraging Recorded Future, Cyber Front a breach attack simulation solution and Cyber Quant for maturity assessments and ...
Director, Field Sales - Mastercard Cybersecurity Solutions (PAC Northwest, Ohio Valley & NY NJ Ea...
Arlington, VA · On-site
$124K - $186K/yr
... risk assessments, strategic level threat intelligence with Cyber Insights leveraging Recorded Future, Cyber Front a breach attack simulation solution and Cyber Quant for maturity assessments and ...
Cyber Program Manager
Mclean, VA · On-site
$117K - $117K/yr
Continuously advise on the enhancement of risk and project / program management practices. You ... A quantitative approach to problem solving and a collaborative implementer to holistic solutions; a ...
Cyber Program Manager
Mclean, VA · On-site
$117K - $117K/yr
Continuously advise on the enhancement of risk and project / program management practices. You ... A quantitative approach to problem solving and a collaborative implementer to holistic solutions; a ...
Cyber Program Manager
Mclean, VA · On-site
$117K - $117K/yr
Continuously advise on the enhancement of risk and project / program management practices. You ... A quantitative approach to problem solving and a collaborative implementer to holistic solutions; a ...
Cyber Program Manager
Mclean, VA · On-site
$117K - $117K/yr
Continuously advise on the enhancement of risk and project / program management practices. You ... A quantitative approach to problem solving and a collaborative implementer to holistic solutions; a ...
Mainframe Security Engineer
Mclean, VA · On-site
Manage and execute cybersecurity risk assessments using qualitative and quantitative methodologies ... Utilize ServiceNow and Cyber Risk System for risk management and risk remediation, processing ...
Mainframe Security Engineer
Mclean, VA · On-site
Manage and execute cybersecurity risk assessments using qualitative and quantitative methodologies ... Utilize ServiceNow and Cyber Risk System for risk management and risk remediation, processing ...
Mainframe Security Engineer
Mclean, VA · On-site
Manage and execute cybersecurity risk assessments using qualitative and quantitative methodologies ... Utilize ServiceNow and Cyber Risk System for risk management and risk remediation, processing ...
Mainframe Security Engineer
Mclean, VA · On-site
Manage and execute cybersecurity risk assessments using qualitative and quantitative methodologies ... Utilize ServiceNow and Cyber Risk System for risk management and risk remediation, processing ...
... Conducting quantitative analysis in non-functional system performance areas like Reliability ... Assessing each risk to the program and determine the probability of occurrence and quantified ...
... Conducting quantitative analysis in non-functional system performance areas like Reliability ... Assessing each risk to the program and determine the probability of occurrence and quantified ...
... Conducting quantitative analysis in non-functional system performance areas like Reliability ... Assessing each risk to the program and determine the probability of occurrence and quantified ...
... Conducting quantitative analysis in non-functional system performance areas like Reliability ... Assessing each risk to the program and determine the probability of occurrence and quantified ...
... disparate cyber risk data immediately understandable to non-technical senior leaders. • ... quantitative/analytical discipline. Professional Certifications • Required Baseline: Active ...
... disparate cyber risk data immediately understandable to non-technical senior leaders. • ... quantitative/analytical discipline. Professional Certifications • Required Baseline: Active ...
Cyber Data Analyst / Coordinator with Security Clearance
Fort George G Meade, MD · On-site
$146K - $234K/yr
... risk identification, and root cause evaluation. Identify trends and forecast potential ... Degree in qualitative, quantitative, and other data analysis field of study * IAT Level II ...
Cyber Data Analyst / Coordinator with Security Clearance
Fort George G Meade, MD · On-site
$146K - $234K/yr
... risk identification, and root cause evaluation. Identify trends and forecast potential ... Degree in qualitative, quantitative, and other data analysis field of study * IAT Level II ...
... Conducting quantitative analysis in non-functional system performance areas like Reliability ... Assessing each risk to the program and determine the probability of occurrence and quantified ...
... Conducting quantitative analysis in non-functional system performance areas like Reliability ... Assessing each risk to the program and determine the probability of occurrence and quantified ...
Cyber Analyst - Senior with Security Clearance
Arlington, VA · On-site
$115K - $148K/yr
The selected candidate will provide advanced cybersecurity operations, compliance, and risk ... Demonstrated mastery of qualitative and quantitative analytic methodologies * Strong analytical ...
Cyber Analyst - Senior with Security Clearance
Arlington, VA · On-site
$115K - $148K/yr
The selected candidate will provide advanced cybersecurity operations, compliance, and risk ... Demonstrated mastery of qualitative and quantitative analytic methodologies * Strong analytical ...
As the Director, Metrics Strategy and Reporting, will be a seasoned leader with strong knowledge of quantitative methods applied to technology/cyber risk, who can think strategically, is ...
As the Director, Metrics Strategy and Reporting, will be a seasoned leader with strong knowledge of quantitative methods applied to technology/cyber risk, who can think strategically, is ...
Quantitative Cyber Risk information
What are some common challenges faced by professionals in Quantitative Cyber Risk roles and how can they be addressed?
What is quantitative cyber risk?
Can you make $500,000 a year in cyber security?
Is cybersecurity a dying field?
Is SOC an entry level job?
Can I make $200,000 a year in cyber security?
What is the difference between Quantitative Cyber Risk vs Cyber Risk Analyst?
| Aspect | Quantitative Cyber Risk | Cyber Risk Analyst |
|---|---|---|
| Required Credentials | Certifications like CRCM, CISSP, or CISA; strong quantitative background | Certifications such as CISA, CRISC; focus on risk assessment skills |
| Work Environment | Financial institutions, cybersecurity firms, large corporations | Financial services, consulting firms, government agencies |
| Industry Usage | Focuses on modeling and quantifying cyber risks using data analysis | Evaluates and reports on cyber risks, develops mitigation strategies |
While both roles involve cybersecurity, Quantitative Cyber Risk specialists focus on modeling and quantifying risks using data and mathematical methods. Cyber Risk Analysts assess, analyze, and communicate cyber threats and vulnerabilities. The former is more data-driven and modeling-oriented, whereas the latter emphasizes risk evaluation and strategic recommendations.
What are the key skills and qualifications needed to thrive as a Quantitative Cyber Risk professional, and why are they important?
Job description
Cybersecurity Risk Engineersat the SEI use advanced skills in statistics, mathematics, risk analysis, systems engineering, economics and other technical fields in an interdisciplinary manner to help our government and industry mission partners to identify, research, and solve cyber security challenges. In this role, you will work with our mission partners to identify areas where advanced quantitative & technical skills can help tackle problems, plan and develop prototype solutions, and create final products designed to better manage risk. You'll work with cyber security professionals and university collaborators to build new technologies that will influence national cyber security strategies for decades to come. You will build and evaluate models, create products, conduct applied research, present findings to stakeholders, and develop transition plans for solutions to our partners.
Our team works on a wide range of projects. Our current research focus includes experimental designs for measuring cyber risk, researching methodologies for improvement of risk-based decision making, and building and evaluating models to identify security vulnerabilities. Additionally, we work on developing and conducting organizational security assessments, evaluating risk management programs, threat modeling, economics of cybersecurity and measurement. If you are an experienced researcher with an interest in risk management and cybersecurity, we want to hear from you!
As a Senior Cyber Risk Engineer, you will work directly with government, industry, and academic partners to identify, analyze, and solve complex cybersecurity risk management challenges. You will apply expertise in statistics, mathematics, risk analysis, systems engineering, and data science to develop innovative approaches for measuring, modeling, and managing cyber risk. Your work will help shape cybersecurity strategies, influence risk-based decision making, and improve the resilience of mission-critical systems and services.
Knowledge, Skills, and Abilities:
Candidates should have experience or knowledge in several of the following:
- Understanding of risk management principles and their application to cybersecurity.
- Experience performing cyber risk analysis, risk quantification, or security measurement.
- Expertise in one or more quantitative disciplines such as statistics, mathematics, econometrics, operations research, systems engineering, data science, or machine learning.
- Experience developing and applying statistical models, predictive analytics, or simulation techniques.
- Experience with uncertainty quantification, probabilistic analysis, or decision science methodologies.
- Experience conducting threat modeling, vulnerability analysis, or security assessments.
- Knowledge of cybersecurity risk management frameworks and methodologies.
- Experience evaluating organizational cybersecurity programs and risk management practices.
- Ability to design and conduct applied research in cybersecurity, risk management, or related fields.
- Experience developing analytical tools, models, or decision-support capabilities.
- Ability to collaborate effectively within multidisciplinary teams of researchers, engineers, and cybersecurity professionals.
- Strong analytical, problem-solving, and critical-thinking skills.
- Ability to communicate complex technical concepts and analytical findings to both technical and non-technical audiences.
- Ability to work collaboratively, diplomatically, and effectively with customers, colleagues, researchers, and senior stakeholders.
Requirements:
- Education and Experience: BS degree in Computer Science, Statistics, Engineering, Mathematics, Economics, Data Science, or a related highly quantitative discipline with ten (10) years of applicable experience; or a MS degree in a relevant discipline with eight (8) years of applicable experience; or a PhD in a relevant discipline with five (5) years of applicable experience.
- Technical Excellence: You have a track record of applying advanced analytical methods to solve complex cybersecurity challenges and delivering impactful technical outcomes. You possess expertise in one or more areas including cybersecurity risk management, risk quantification, statistics, econometrics, systems engineering, machine learning, modeling and simulation, or data science. You are focused on developing practical solutions that improve risk-based decision making for mission partners.
- Leadership: You have the ability to lead multidisciplinary teams in analyzing and solving real-world cybersecurity and risk management problems. You can guide research efforts, develop analytical frameworks, and influence technical direction while collaborating with researchers, engineers, government stakeholders, and external partners. Your leadership extends beyond formal reporting relationships through technical influence and collaboration.
- Working in a Creative, Dynamic Environment: You have experience contributing to multiple simultaneous projects and thrive in a fast-paced research environment. You are willing to experiment with innovative analytical techniques, explore emerging technologies, and develop new methodologies that advance cybersecurity risk management and measurement.
- Mentorship: You enjoy mentoring and motivating team members. You contribute to the development of technical talent through knowledge sharing, collaboration, and professional guidance.
- Communication: You have outstanding communication skills and can interact collaboratively and diplomatically with customers, mission partners, researchers, and colleagues at all levels. You understand both strategic objectives and technical details and can communicate complex analytical findings to audiences with varying levels of technical expertise.
- Travel: Periodic travel to customer sites, conferences, workshops, and stakeholder meetings is required to support the SEI's mission and research activities.
- Security Clearance: You will be subject to a background investigation and must have the ability to obtain and maintain a Department of War security clearance.
- Applicants for this position must be currently legally authorized to work for CMU in the United States. CMU will not sponsor or take over sponsorship of an employment visa for this opportunity.
Desired Experience:
- Experience in cyber risk quantification and measurement.
- Experience in econometrics, applied statistics, or quantitative risk analysis.
- Experience in uncertainty quantification and probabilistic modeling.
- Experience in machine learning, data science, or advanced analytics.
- Experience in modeling and simulation.
- Experience conducting threat modeling and vulnerability analysis.
- Experience evaluating organizational cybersecurity and risk management programs.
- Experience supporting test and evaluation activities for large-scale government research programs.
- Demonstrated ability to learn new concepts and grow into emerging technical areas.
- Strong technical writing, editing, and presentation skills.
- Experience working with government agencies, defense organizations, federally funded research centers, or academic institutions is a plus.
Location
Arlington, VA, Pittsburgh, PAJob Function
Software/Applications Development/EngineeringPosition Type
Staff - RegularFull time/Part time
Full timePay Basis
SalaryMore Information:Please visit "Why Carnegie Mellon" to learn more about becoming part of an institution inspiring innovations that change the world.
Click here to view a listing of employee benefits
Carnegie Mellon University is an Equal Opportunity Employer/Disability/Veteran.
Statement of Assurance
About CMU
Sourced by ZipRecruiter
Industry
Offices of mental health practitioners
Company size
201 - 500 Employees
Headquarters location
Harrisburg, PA, US