Summary
Cyber Security Researchers focus in the cyber arena and specialize in the design, development, integration, and deployment of cutting-edge tools, techniques, and systems to support cyber operations.
Duties
As a Cyber Security Researcher for CIA, you will focus in the cyber arena and specialize in the design, development, integration, and deployment of cutting edge tools, techniques, and systems to support cyber operations and other intelligence activities. Leveraging advanced knowledge and tradecraft with regards to computer and network security, Cyber Security Researchers produce creative, innovative, and elegant solutions to some of the toughest challenges. You will utilize your technical skills, imagination, ingenuity, initiative, and expertise to help develop, support, and execute the Agency's intelligence mission.
Most positions are located in the Washington, DC metropolitan area, but opportunities to serve and travel overseas exist as your career and abilities develop.
Conditions of Employment
- You must be physically in the United States or one of its territories when you submit your resume via MyLINK.
- You must be registered for the Selective Service, if applicable.
- You must be a U.S. citizen and at least 18 years of age (dual-national US citizens are eligible).
- You must be willing to move to the Washington, DC area.
- You must successfully complete a thorough medical and psychological exam, a polygraph interview, and a comprehensive background investigation.
- For further requirements information, please visit: https://www.cia.gov/careers/how-we-hire/requirements/
Qualifications
Minimum Qualifications
- 3 years of experience with a system programming language (preferably C or C++)
- Knowledge of:
- Operating system concepts (UNIX/Linux, Windows, iOS, or Android) such as Security models, File systems, Process management and isolation, Inter-process communication, Networking, Cryptography
- Computer science fundamentals and software development best practices
- Basic Computer Network Exploitation (CNE) and Computer Network Attack (CNA) techniques and terminology
- Ability to design, develop, debug, and maintain a diverse portfolio of programs written in C/C++, using modern software development tools and methodologies
- Ability to work effectively in a team environment with competing and ever shifting priorities
- Ability to identify and manage risk
- Ability to demonstrated technical leadership
- Strong verbal and written communication skills, especially the ability to articulate technical requirements to a non-technical audience
- Passionate about security
- Ability to meet the minimum requirements for joining CIA, including U.S. citizenship and a background investigation
Desired Qualifications
- Master's or doctorate degree in one of the following fields:
- Computer engineering
- Computer science
- Software engineering
- Cybersecurity
- Information security
- Proficiency with a scripting language such as Python, Bash, Ruby, or Powershell; the ability to do the following with a scripting language:
- Automate tasks
- Parse and interpret log output from operating systems, network devices, and infrastructure services
- Experience with kernel level programming
- Familiarity with assembly for one or more architectures (ARM, MIPS, x86/x64)
- Familiarity with reverse engineering and/or exploitation
- Experience in vulnerability analysis of source code or assembly
- Knowledge of exploitation techniques
- Familiarity of exploitation mitigation techniques
- Experience with Ghidra, IDA Pro, Binary Ninja, or a similar suite of tools
- Knowledge of industry threat models such as MITRE's ATT&CK or Lockheed Martin's Cyber Kill Chain
- Knowledge of common reconnaissance, exploitation, and post-exploitation frameworks
- Knowledge of networking fundamentals at all OSI layers
- Experience in red teaming or pen-testing
- Any of the following certifications:
- Certified Ethical Hacker
- Certified Penetration Tester
- OSCE
- GXPN
- GWAPT
- eWPTX
- ECPTX
Education
- Bachelor's degree in one of the following fields or related studies:
- Computer engineering
- Computer science
- Electrical engineering
- Software engineering
- Or, five (5) years of hands on professional experience in one of the following fields (Offensive security, System level software development)
- At least a 3.0 GPA on a 4-point scale
Benefits
A career with the U.S. government provides employees with a comprehensive benefits package. As a federal employee, you and your family will have access to a range of benefits that are designed to make your federal career very rewarding. Opens in a new windowLearn more about federal benefits.
Review our benefits
Eligibility for benefits depends on the type of position you hold and whether your position is full-time, part-time or intermittent. Contact the hiring agency for more information on the specific benefits offered.
This post is for viewing purposes only. To get started, please visit https://www.cia.gov/careers/jobs/cyber-security-researcher/, where you can read more about this position and express your interest in up to four jobs. Upon expressing your interest, you will be taken to MyLINK, which allows you to submit your resume and job rankings and provide basic information about yourself.
Next steps
After you express interest for up to four positions on cia.gov/careers, a CIA recruiter may contact you for further discussion if your qualifications meet our needs. See the MyLINK FAQs on our website for more information.
|