Los Alamos National Laboratory Cybersecurity Technical Staff 2 in Los Alamos, New Mexico

What You Will Do_

As a member of the cybersecurity technical staff at LANL, you will have the opportunity to be on the cutting edge of cyber security, while enjoying the unique opportunities provided by LANL’s location. You will work in the Network and Infrastructure Engineering Division supporting a computing environment scaling from “desktop to teraflops,” a diverse and challenging network environment unavailable anywhere else.

The selected candidate will be a member of the NIE-ESS Computer Security Incident Response Team that is responsible for computer security incident response, host and network forensics, malware analysis, and the development of countermeasures and advanced detection techniques. Responsibilities include the following:

  • Identify and respond to complex computer security incidents, communicate findings, and modify defenses and response measures as appropriate.

  • Develop methods, techniques, and standards and communicate findings to multiple audiences.

  • Work on complex cyber issues, providing guidance as appropriate to other cyber security personnel.

  • Contribute to the integration of malware analysis, forensic investigation, and threat research into incident response and long-term understanding of threats.

What You Need

Minimum Job Requirements:

  • Knowledge of and experience with the cyber security environment, including network and host system security issues and concepts, compliance, and certification.

  • Knowledge of and experience with common network and host-based attacks, attack methods, network defense architectures, and security tools.

  • Experience with one or more of the following: malware analysis and reverse engineering; enterprise host and memory forensics; network forensics and packet analysis; incident response and incident coordination; penetration testing.

  • Strong analytical, documentation, communication, and teaming skills.

Desired Skills:

  • Knowledge of enterprise forensics tools (EnCase Enterprise, GRR, Resolution One, CarbonBlack).

  • Knowledge of Core Impact and Metasploit for red teaming exercises.

  • Knowledge of memory analysis with Volatility or Rekall.

  • Experience with IDA Pro, BinDiff, yara rule creation beyond string searching.

  • Knowledge of software samples via debuggers such as OllyDbg or IDA debugger.

  • Experience with BRO or Wireshark to produce custom protocol decoders.

  • Knowledge of network signature creation with Snort or BRO.

  • Experience with ArcSight, Splunk, or similar tools.

  • Experience with developing regular expressions.

  • Knowledge of automated analysis and scripting with Python, Perl or similar languages.

  • Experience with tool integration and event correlation with differing API’s

Education:Cybersecurity Technical Staff 2 typically requires a bachelor’s degree (master’s preferred) in a technical field and a minimum of 4 years’ related experience, or an equivalent combination of education and experience. At this level post graduate work may be expected.

Notes to Applicants:Please provide a comprehensive cover letter that details how you meeting the qualifications for the position.

Additional Details:

Clearance: Q(Position will be cleared to this level). Applicants selected will be subject to a Federal background investigation and must meet eligibility requirements* for access to classified matter.

*Eligibility requirements: To obtain a clearance, an individual must be at least 18 years of age; U.S. citizenship is required except in very limited circumstances. See DOE Order 472.2 for additional information.

New-Employment Drug Test: The Laboratory requires successful applicants to complete a new-employment drug test and maintains a substance abuse policy that includes random drug testing.

Regular position:Term status Laboratory employees applying for regular-status positions are converted to regular status.

Internal Applicants:Please refer to Laboratory policy P701 for applicant eligibility.

Equal Opportunity:Los Alamos National Laboratory is an equal opportunity employer and supports a diverse and inclusive workforce. All employment practices are based on qualification and merit, without regards to race, color, national origin, ancestry, religion, age, sex, gender identity, sexual orientation or preference, marital status or spousal affiliation, physical or mental disability, medical conditions, pregnancy, status as a protected veteran, genetic information, or citizenship within the limits imposed by federal laws and regulations. The Laboratory is also committed to making our workplace accessible to individuals with disabilities and will provide reasonable accommodations, upon request, for individuals to participate in the application and hiring process. To request such an accommodation, please send an email to applyhelp@lanl.gov or call 1-505-665-4444 option 1.

Where You Will Work_

Located in the beautiful mountains of northern New Mexico near Santa Fe, Los Alamos National Laboratory (LANL) is a multidisciplinary research institution engaged in strategic science on behalf of national security. LANL enhances national security by ensuring the safety and reliability of the U.S. nuclear stockpile, developing technologies to reduce threats from weapons of mass destruction, and solving problems related to energy, environment, infrastructure, health, and global security concerns.

Our employees are our greatest asset, which is why we provide a comprehensive benefits package that offers health coverage for you and your eligible family members today and retirement plans for a brighter tomorrow. A healthy workforce is paramount to a successful organization. We offer an incentivized wellness plan and preventive care to encourage and reward good basic health choices. Also, for your financial wellness, we provide a tax-deferred 401(k) retirement plan, with a company match and service based contribution.

Maximum Salary: 131000

Minimum Salary: 80100

Location: Los Alamos, NM, US

Work Telephone: 505-665-1683

Contact Name: Tedder, Billie Jo (BJ)

Organization Name: NIE-ESS/Engineering & Security Services

Email: bjtedder@lanl.gov

Job Title: Cybersecurity Technical Staff 2

Appointment Type: Regular

Req ID: IRC66962