Los Alamos National Laboratory Cybersecurity Technical Staff 2/3 in Los Alamos, New Mexico
Vacancy Name: IRC75776
Job Title Cybersecurity Technical Staff 2/3
Location Los Alamos, NM, US
Organization Name NIE-ESS/Network and Infrastructure Engineering - Engineering and Security Services
What You Will Do
The selected candidate will work as an application security engineer as a member of the Security Architecture team. This is a small, focused team under the direction of the Network and Infrastructure Engineering division and the Engineering and Security Services group (NIE-ESS). The role of the Security Architecture team is to orchestrate the development of the security architecture for the institution on both classified and unclassified networks and to provide cybersecurity solutions that protect the enterprise while adding value to the organization.
This position will be filled at either the Cybersecurity Technical Staff 2 or 3 level, depending on the skills of the selected candidate. Additional job responsibilities (outlined below) will be assigned if the candidate is hired at the higher level.
Cybersecurity Technical Staff 2 ($81,600 - $133,400)
Collaborate with developers and various teams to gather application security requirements
Work with software development teams to integrate secure coding and application security best practices into development processes
Participate in the planning, research, design, and debugging of a robust security architecture and application security strategy for the LANL IT enterprise
Evaluate new tools and techniques and propose effective solutions to cyber security issues
Develop and maintain documentation that relates to architecture, conﬁguration, procedures, or processes
Provide top-tier technical support for security devices, configurations, troubleshooting, and vulnerability remediation
Cybersecurity Technical Staff 3 ($98,900 - $165,100)
In addition to the duties outlined above, the Cybersecurity Technical Staff 3 will be expected to:
Independently lead work on moderately complex cyber security issues and security architecture projects.
Propose innovative solutions to application security issues and influence the strategic direction of cyber security architecture and application security.
Identify, promote, and develop new application security capabilities.
Design, develop, modify, configure, and debug cyber protections to solve problems of diverse scope and complexity.
Coordinate among teams, groups, external organizations, and key decision makers.
The ideal candidate will be a self-starter with an inquisitive, analytical mind that constantly looks for solutions to difficult problems. They will have technical knowledge and/or experience in multiple relevant areas. Taking ownership of a task or responsibility and working it until completion in the face of many challenges is essential to being successful in this role. The candidate must also have the ability to convey complicated technology and security concepts to stakeholders at multiple levels.
What You Need
Minimum Job Requirements
Cybersecurity Technical Staff 2
Through knowledge of secure coding and application security best practices and the software development lifecycle.
Thorough understanding of public key infrastructure (PKI), cer ti ficates, encryption, and digital signatures.
Thorough knowledge of and experience designing, developing, modifying, testing, and debugging software to securely meet customer requirements.
Experience with application servers (i.e. .Net, Weblogic, Tomcat) and web servers (i.e. Apache, OHS, NGINX, IIS).
Strong analytical, documentation, communication, and teaming skills.
Additional Job Requirements for Cybersecurity Technical Staff 3 ($98,900 - $165,100):
In addition to an advanced level of understanding and expertise in the Job Requirements outlined above, qualification at the Cybersecurity Technical Staff 3 level requires:
Advanced knowledge of the application security threat landscape including vulnerabilities, threats, and exposures
Advanced experience with application penetration testing and/or application security protections including web application firewalls
Advanced ability to successfully integrate complex security solutions into enterprise architecture and workflows
Demonstrated ability to mentor junior personnel as a subject matter expert in areas of cyber security
Self-directed ability to work independently and generate new initiatives to achieve long-term goals
Experience in security operations and/or incident response
Experience with network protocols and network architecture
IDS/IPS, ADCs, NGFWs, or other enterprise-grade security solutions.
Enterprise-grade tools for event analysis and correlation.
Experience with Identity & Access management
Automation and scripting with Python, Perl or similar languages.
Security and compliance for federal agencies.
Knowledge of DevSecOps, DevOps, Red Team, Blue Team concepts.
Knowledge of security frameworks and project management methodologies.
Active DOE Q clearance or Department of Defense (DoD) Top Security clearance.
Lower Level Education Required: Cybersecurity Technical Staff 2 typically requires a bachelor’s degree and a minimum of four years related experience, or an equivalent combination of education and experience.
Higher Level Education Required: Cybersecurity Technical Staff 3 typically requires a bachelor’s degree and a minimum of eight years of related experience, or an equivalent combination of education and experience. At this level, post-graduate course work may be expected
Notes to Applicants: Please provide a comprehensive cover letter that details how you meet the minimum qualifications for the position.
Clearance: Q (Position will be cleared to this level). Applicants selected will be subject to a Federal background investigation and must meet eligibility requirements
for access to classified matter.
Eligibility requirements: To obtain a clearance, an individual must be at least 18 years of age; U.S. citizenship is required except in very limited circumstances. See DOE Order 472.2 for additional information.
New-Employment Drug Test: The Laboratory requires successful applicants to complete a new-employment drug test and maintains a substance abuse policy that includes random drug testing.
Regular position: Term status Laboratory employees applying for regular-status positions are converted to regular status.
Internal Applicants: Please refer to Laboratory policy P701 for applicant eligibility
Equal Opportunity: Los Alamos National Laboratory is an equal opportunity employer and supports a diverse and inclusive workforce. All employment practices are based on qualification and merit, without regards to race, color, national origin, ancestry, religion, age, sex, gender identity, sexual orientation or preference, marital status or spousal affiliation, physical or mental disability, medical conditions, pregnancy, status as a protected veteran, genetic information, or citizenship within the limits imposed by federal laws and regulations. The Laboratory is also committed to making our workplace accessible to individuals with disabilities and will provide reasonable accommodations, upon request, for individuals to participate in the application and hiring process. To request such an accommodation, please send an email to email@example.com or call 1-505-665-4444 option 1.
Where You Will Work
Located in northern New Mexico, Los Alamos National Laboratory (LANL) is a multidisciplinary research institution engaged in strategic science on behalf of national security. LANL enhances national security by ensuring the safety and reliability of the U.S. nuclear stockpile, developing technologies to reduce threats from weapons of mass destruction, and solving problems related to energy, environment, infrastructure, health, and global security concerns.
As a member of the cybersecurity technical staff at LANL, you will have the opportunity to be on the cutting edge of cyber security, while enjoying the unique opportunities provided by LANL’s location. You will work under the Network and Infrastructure Engineering (NIE) division supporting a computing environment scaling from “desktop to teraflops,” a diverse and challenging network environment unavailable anywhere else.
Within NIE, the Engineering and Security Services (NIE-ESS) group is responsible for LANL's classified and unclassified institutional network services and for the security of our network infrastructure. NIE-ESS cyber security services include computer security incident response, network anomaly and intrusion detection, vulnerability assessment and mitigation, and network firewalls.
Appointment Type Regular
Contact Name Gonzales, Andrea Jo
Req ID: IRC75776