The Pittsburgh Supercomputing Center (PSC) a joint research center of Carnegie Mellon University and the University of Pittsburgh, was established in 1986, and for over 30 years has provided university, government, and industrial researchers with access to several of the most powerful systems for advanced computational research, communications, and data storage available to scientists, engineers and scholars nationwide for unclassified research. PSC advances science across a wide spectrum of fields, including artificial intelligence / machine learning, medical imaging, weather modeling, cell biology, and genomics.

PSC is seeking an Information Security Analyst/Engineer. This role is immersed within Pittsburgh Supercomputing Center’s small, yet streamlined security team, reporting to PSC’s Principal Information Security Officer (PISO). As a member of the team, this position will: participate in discussions regarding the improvement of PSC’s security posture by leveraging evidence-based standards and threat intelligence sharing.

Core Responsibilities:

• Work closely with PSC’s networking group to develop, implement, and tune network-based security tools, processes.
• Develop, implement, document and tune systems, processes and-or policies that improve PSC’s security posture.
• Setup, configure, and review events and-or logs governing security metrics.
• Respond to any information security incidents that transpire.
• Communicate with staff and-or PSC users regarding potentially complex security-related technologies and-or processes (e.g., VPN use and best practices, authentication/authorization solutions, firewall changes, EDR, A/V, filesystem integrity monitoring, public key encryption, SSH, SSL/TLS, vulnerability assessment and remediation.)
• Other related duties as assigned.

Adaptability, excellence, and passion are vital qualities within Carnegie Mellon University. We are in search of a team member who can effectively interact with a varied population of internal and external partners at a high level of integrity. We are looking for someone who shares our values and who will support the mission of the university through their work.

• Bachelor's Degree in Computer Science, Information Security, Information Assurance, or related field, e.g., Electrical Engineering.
• Understanding of networking protocols, secure coding guidelines and cloud security.
• Understanding of cryptography (symmetric & asymmetric).
• Understanding of access control principles (e.g., DAC, MFA) and methods (password-based, public-key authentication, Kerberos, etc.)
• Understanding of frameworks and regulations including: NIST, HIPAA, NSPM-33, dbGaP, FedRAMP and Research Security is preferred.
• Experience with networking security protocols (SSL/TLS, HTTPS, DNSSEC, Response Policy Zones)
• Ability to communicate security concepts effectively in writing.
• A combination of education and relevant experience from which comparable knowledge is demonstrated may be considered.

About Carnegie Mellon University

Connections working at Carnegie Mellon University