The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The primary purpose of this highly technical Accountant position is to assist in the analysis and reconciliation of accounting transactions at CIS. This position will assist in managing multiple levels and subclasses in a detailed financial system and be responsible for ensuring proper information and practices are being utilized in the Accounting function. 

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The primary purpose of this Network Threat Detection Analyst position is to be a subject matter expert in network detection and threat analysis while working as a member of the CIS Security Operations Center (SOC) to help respond to cyber incidents impacting State, Local, Tribal and Territorial (SLTT) governments in conjunction with CISA’s Cybersecurity Division (CSD) teams. This position is employed by the Center for Internet Security, and will be located with the Cybersecurity and Infrastructure Security Agency (CISA) in Arlington, VA. Reporting to the LNO Manager, the Threat Detection Analyst will partner with CISA’s network detection team and will work to promote the CIS mission to expand and normalize information-sharing initiatives within CISA’s CSD.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The primary purpose of this position is to be a subject matter expert in Digital Forensics Incident Response (DFIR) using endpoint detection response (EDR) technology to respond to cyber incidents impacting State, Local, Tribal and Territorial (SLTT) governments in conjunction with CISA’s Cybersecurity Division (CSD) teams. This position is employed by the Center for Internet Security, and will be located with the Cybersecurity and Infrastructure Security Agency (CISA) in Arlington, VA. The Threat Hunt analyst will partner with CISA’s HUNT team and will work to promote the CIS focus to expand and normalize information-sharing initiatives within CISA’s CSD.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   This position is with the Multi-State Information and Analysis Center (MS-ISAC). We are in search of a dynamic self-starter who is passionate about making a difference in the realm of Cyber Security for State, Local, Tribal and Territorial governments (SLTT). The ISAC’s are DHS designated focal points for protection, prevention, response and recovery for the SLTT community. As a member of our team, you will work with some of the finest experts in cybersecurity to assist our members in securing their governmental systems.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats. This position is with the Multi-State Information and Analysis Center (MS-ISAC). We are in search of a dynamic self-starter who is passionate about making a difference in the realm of Cyber Security for State, Local, Tribal and Territorial governments (SLTT). The ISAC’s are DHS designated focal points for protection, prevention, response and recovery for the SLTT community. As a member of our team, you will work with some of the finest experts in cybersecurity to assist our members in securing their governmental systems.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   We are looking for a broadly-based technical advisor and coordinator who can work across multiple project/program implementation efforts. The Technical Solutions Specialist will be responsible for helping translate business needs into technical solutions that conform to CIS enterprise architectures and technical standards.  This will include helping to develop necessary technical specifications that conform to and complement CIS standards, as necessary, to be used for individual projects or programs. The Technical Solutions Specialist will interact with CIO and CISO staff to evaluate potential project technical products and solutions for compliance with existing technical standards as part of solution evaluation, and assist CIO/CISO is determining standards in areas not defined.   The Technical Solutions Specialist will also serve as the principal technical focal point for a project/program throughout the development life-cycle.  While not solely responsible for the solution design, this individual will be the primary interface to the technical departments and/or vendors/contractors involved in the solution development and implementation, including resolution of technical issues.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The Business Analyst (BA) will work as a member of one or more project teams to facilitate the elicitation of requirements by CIS business owners, ensuring that these requirements are conveyed to development organizations consistently and in an understandable manner.  The BA will utilize multiple information sources including personal interviews, functionality of existing systems, available documentation including documentation of capability gaps, and knowledge of the CIS systems enterprise to develop a deep understanding of desired features and functions from an end-user perspective.  The BA will work with both the end users and system developers to facilitate an accurate understanding of end user needs throughout the development process. The BA will also participate in the review of early developer products (e.g., wireframes, prototypes) and assist in the identification of test cases necessary to confirm successful implementation of the desired business capabilities.  

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The Security Best Practices team at CIS is looking for an Engineering Team Leader to act as primary technical stakeholder for the health and progress of our one of a kind Controls Self Assessment Tool (CSAT). This role requires a strong computer science background with an emphasis in Java/Groovy development and a DevOps mindset. The team lead needs to have strong skills in technology, leadership, and customer focus.    

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   As a Cyber Threat Intelligence Analyst, you will identify and begin to apply data and technical analysis to aid in and draft actionable Cyber Threat Intelligence (CTI) catered to state, local, tribal, and territorial (SLTT) governments. As a member of the CTI Team, you will work with limited oversight to integrate CTI analysis within operations teams in the 24x7 Security Operations Center (SOC) as well as SLTT and Federal partners.   You will work in both a classified and unclassified environment to develop tactical, operational, and strategic intelligence about threat groups, their methodologies, and motivations, and to aid in solving complex threat-centric problems focused on driving SLTTs toward proactive network defense. This position may involve essential duties and responsibilities that must continue during crisis situations and contingency operations, necessitating extended working hours.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The Associate Cloud Solutions Architect position will work closely with the Cloud Solutions Architect(s). The primary purpose of this position is the building and maintaining of the CIS Hardened Image product line in multiple Cloud Service Providers (CSP).

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The Social Media Specialist will be the voice of CIS on social media. This position is responsible for planning, implementing, and monitoring CIS's social media strategy in order to increase brand awareness, drive website traffic, and drive lead generation. The Social Media Specialist is responsible for managing social media accounts including Facebook, Twitter, LinkedIn (including CIS showcase pages), and Instagram.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The Information Security Operations Manager is assigned to the Office of the CISO at the Center for Internet Security. Reporting to the CISO this position will collaborate with other cybersecurity team members to promote the CISO operational security standards and help support the growth of the CISO organization. The primary purpose of this position is to monitor the effectiveness of implemented security controls and define new operations and policy for the protection of the enterprise information assets.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The Senior Director Agile Program Office (APO) leads a small, dedicated team of highly capable Agile Coaches and Instructors whose mission is to drive and support the successful implementation of Agile philosophy and practices across the CIS. The incumbent is responsible for engaging with key programs and targeted organizations within CIS to ensure successful planning for, training on, and implementation of appropriate Agile practices. The incumbent leads or participates in the planning of key CIS strategic initiatives that rely on Agile practices.  The scope of this role and the APO is broad, cross functional and throughout all levels of the CIS organization. The actions of the incumbent enable CIS to work smarter and more efficiently by employing a rapid delivery model with laser focus on responding to customer needs. The incumbent ensures that CIS’s Agile strategy drives an improved ability to meet CIS mission needs.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The Cybersecurity Services Project Manager has a key role on the Sales and Business Services team. This position will work cross functionally with multiple CIS teams to develop, implement, and manage security products and services offered to State, Local, Tribal and Territorial (SLTT) organizations. This position is responsible for project management for these products and services as assigned, including the following: product research; customer and vendor feedback management; documenting processes and requirements; and working with internal and external stakeholders to deliver consistent service experiences to our Members.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The Security Operations Center (SOC) Analyst position is assigned to the Security Operations Team. The primary purpose of this position is to help coordinate and report on cyber incidents impacting State, Local, Tribal and Territorial (SLTT) governments. This position involves critical duties and responsibilities that must continue to be performed during crisis situations and contingency operations, which may necessitate extended hours of work.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The Security Best Practices team is looking for a Cloud Solutions Architect to act as a technical stakeholder for the health and progress of the CIS Hardened Images product lines. This role requires a strong system hardening background with an emphasis in Cloud development and a DevOps mindset. The engineer needs to have skills in system hardening and cloud computing services and strategy.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The primary purpose of this position is to gain experience while providing support to essential Product Technical Support team functions.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats. The Principal Cyber Defense Engineer will be a senior technical individual contributor position within CIS’s Operations & Security Services (OSS) Department. The Principal Cyber Defense Engineer will provide overall strategic and tactical direction, operational enhancements, and expert troubleshooting for a suite of cyber defensive capabilities deployed by OSS to thousands of State, Local, Tribal, and Territorial (SLTT) organizations through the Multi-State Information Sharing & Analysis Center (MS-ISAC) and Elections Infrastructure Information Sharing & Analysis Center (EI-ISAC).

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats. The Vice President – Engineering and Product Management will serve as the senior leader for four major divisions within OSS: DevOps, Engineering and Infrastructure, Emerging Technology, and Product Management. The VP and their management team will be responsible for software development, data analytics, hardware engineering, cloud management, tier 3 support of OSS products and services, evaluating technologies for use within OSS by our State, Local, Tribal, and Territory (SLTT) members, and product management/ownership.

The Center for Internet Security (CIS) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit responsible for industry leading best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats.   The Salesforce Business Analyst will work across teams at CIS to enhance the usage and functionality of Salesforce. This includes working with a variety of managers and use cases, and understanding both the business need and the system functionality. The ideal candidate is a strong Business Analyst who understands Salesforce and workflows, and can develop automated and scalable processes to meet our various teams’ needs.