Los Alamos National Laboratory Network Security Operations Center Analyst (Cybersecurity Technical Staff 2) in Los Alamos, New Mexico
What You Will Do
We are seeking cyber security professionals to join our Network Security Operations Center (NSOC) team. As a member of the NSOC, you will work on monitoring, detecting, and isolating events, event triage, tier 1 and tier 2 incident response, and escalation of critical incidents. The team also manages LANL’s security products and network device security configurations on both unclassified and classified networks and provides an overview of LANL’s cyber landscape by monitoring and alerting on cyber events and providing operational metrics. Job duties include, but are not limited to:
Work to monitor, detect, and isolate cyber security events
Respond to tier 1 and tier 2 events and escalate critical incidents
Record security analysis and operational metrics, follow escalation guidance and reporting requirements
Manage network security systems and devices, implement configurations and signatures, and troubleshoot issues
Identify and respond to events of diverse scope, communicate findings, and modify response methods as appropriate
Analyze security devices to provide recommendations to reduce false positive and improve detection of true positive events
Mentor more junior members of the NSOC
Interact with senior internal and external personnel
Lead lifecycle management efforts and project initiatives
What You Need
Minimum Job Requirements:
Thorough knowledge of and experience with all aspects of current network technology including networking protocols, network infrastructure elements, and network applications, services, and related protocols.
Thorough knowledge of and experience performing security analysis and security administration including dealing with network and host system security issues, compliance, and certification.
Thorough knowledge of and experience with host and network-based security issues from both a user and system administrator perspective.
Advanced knowledge and understanding of the cyber security environment, common network and host-based attacks, attack methods, and network defense architectures.
Experience in host forensics, network forensics, network traffic analysis and log event time lining.
Experience in the incident response process and log file analysis.
Strong communication and collaboration skills to effectively communicate findings, escalate critical incidents, and team in a fast-paced environment.
Education/Experience : Position typically requires a bachelor’s degree (master’s preferred) in a technical field and a minimum of 4 years’ related experience, or an equivalent combination of education and experience. At this level, postgraduate work may be expected.
Security Information Event Management tools
Host and network log file analysis
Linux or Windows command-line scripting
Network packet capture analysis
Familiarity with intrusion detection/prevention technologies such as Zeek and Snort
Trouble ticketing and change management software
This position will be part of the Laboratory’s Telework Pilot and may work from a remote/home location within a two-hour ground commute of the Laboratory. The Telework Pilot is in effect from Oct. 1, 2020 through Sept. 30, 2021, but may be shortened or extended at the manager’s discretion. Ability to report on-site is a must for this position.
Vaccination Requirement :
The COVID vaccine is mandatory for all Laboratory employees, on-site contractors, and on-site subcontractors unless granted an accommodation under applicable state or federal law. This requirement will apply to those working on-site, those teleworking, and all new hires.
Position commitment: Regular appointment employees are required to serve a period of continuous service in their current position in order to be eligible to apply for posted jobs throughout the Laboratory. If an employee has not served the time required, they may only apply for Laboratory jobs with the documented approval of their Division Leader. The position commitment for this position is 1 year.
Where You Will Work
Located in beautiful northern New Mexico, Los Alamos National Laboratory (LANL) is a multidisciplinary research institution engaged in strategic science on behalf of national security. Our generous benefits package includes:
§ PPO or High Deductible medical insurance with the same large nationwide network
§ Dental and vision insurance
§ Free basic life and disability insurance
§ Paid maternity and parental leave
§ Award-winning 401(k) (6% matching plus 3.5% annually)
§ Learning opportunities and tuition assistance
§ Flexible schedules and time off (paid sick, vacation, and holidays)
§ Onsite gyms and wellness programs
§ Extensive relocation packages (outside a 50 mile radius)
Directive 206.2 - Employment with Triad requires a favorable decision by NNSA indicating employee is suitable under NNSA Supplemental Directive 206.2 . Please note that this requirement applies only to citizens of the United States. Foreign nationals are subject to a similar requirement under DOE Order 142.3A.
Clearance: Q (Position will be cleared to this level). Applicants selected will be subject to a Federal background investigation and must meet eligibility requirements
for access to classified matter. This position requires a Q clearance which requires US Citizenship except in extremely rare circumstances. Dependent upon position, additional authorization to access nuclear weapons information may be required that may or may not be available to dual citizens depending upon the circumstances.
Eligibility requirements: To obtain a clearance, an individual must be at least 18 years of age; U.S. citizenship is required except in very limited circumstances. SeeDOE Order 472.2 for additional information.
New-Employment Drug Test: The Laboratory requires successful applicants to complete a new-employment drug test and maintains a substance abuse policy that includes random drug testing.
Regular position: Term status Laboratory employees applying for regular-status positions are converted to regular status.
Internal Applicants: Regular appointment employees who have served the required period of continuous service in their current position are eligible to apply for posted jobs throughout the Laboratory. If an employee has not served the required period of continuous service, they may only apply for Laboratory jobs with the documented approval of their Division Leader. Please refer to PolicyPolicy P701for applicant eligibility requirements.
Equal Opportunity: Los Alamos National Laboratory is an equal opportunity employer and supports a diverse and inclusive workforce. All employment practices are based on qualification and merit, without regard to race, color, national origin, ancestry, religion, age, sex, gender identity, sexual orientation or preference, marital status or spousal affiliation, physical or mental disability, medical conditions, pregnancy, status as a protected veteran, genetic information, or citizenship within the limits imposed by federal laws and regulations. The Laboratory is also committed to making our workplace accessible to individuals with disabilities and will provide reasonable accommodations, upon request, for individuals to participate in the application and hiring process. To request such an accommodation, please send an email to email@example.com or call1-505-665-4444 option 1. Appointment Type
Contact Name Gonzales, Andrea Jo
Vacancy Name: IRC90213
Organization Name NIE-ESS/ENGINEERING & SECURITY SERVICES
Minimum Salary 85400
Maximum Salary 139600
Req ID: IRC90213
Category: Information Technology