Posting Title
Cybersecurity Engineer
.
Location
Remote
.
Position Type
Regular
.
Hours Per Week
40
.
Working at NLR
Join the National Laboratory of the Rockies (NLR), where world-class scientists, engineers, and experts are accelerating energy innovation through breakthrough research and systems integration. From our mission to our collaborative culture, NLR stands out in the research community for its commitment to an affordable and secure energy future. Spanning foundational science to applied systems engineering and analysis, we focus on solving complex challenges to deliver advanced, secure, reliable, and cost-effective energy solutions. Our work helps strengthen U.S. industries, support job creation, and promote national economic growth.
At NLR, you'll find a mission-driven environment supported by state-of-the-art facilities, multidisciplinary research teams, and strong collaborations with industry, academia, and other national laboratories. We offer robust professional development opportunities, and a competitive benefits package designed to support your career and well-being.
Job Description
Manages, troubleshoots, and tunes cybersecurity tools and sensors, such as log aggregation (SIEM), automation/orchestration (SOAR), analysis, enrichment, alerting, and forensic data retention systems.
Selects, tests,deploys,and tunesnew on-premises and cloud-basedtechnical environments thatsupport infrastructure visibility, analysis,automation,andsecure data retention.
Guides policy decisions and/or manages securitypoliciesand related configurationsfor distributed security tools such as firewalls,endpoint detection and responsesuites,vulnerability detection tools,and cloud-based monitoring, protection, and incident response tools.
Develops content that enablescybersecurity personnelto takemaximumadvantage of existing tool capabilities, including workflows, integrations, and automated tasks.
Leads, designs, andperformsinfrastructure, application, and networktests and exercisestodeterminethe efficacy of security defense strategies and tools.
LeadsInformation Technology Servicesprojectteams tointegratedistributed network and endpoint security products with cybersecurity enrichment and analysis platformsand system management tools.
Creates andmaintainsarchitectural documentation and operational procedures that describe the scope, purpose, configuration, use, and maintenance of the cybersecurity operations tools and environments.
Leadsprojects (as assignedor independently) that improve the effectiveness and efficiency ofNLR's cybersecurity program, including but not limited to workflow improvements,automation expansion,management tool enhancements, program orNLRstrategic initiatives, and user awareness training.
.
Basic Qualifications
Relevant Bachelor's Degree and 9 or more years of experience or equivalent relevant education/experience. Or, relevant Master's Degree and 7 or more years of experience or equivalent relevant education/experience. Or, relevant PhD and 4 or more years of experience or equivalent relevant education/experience. Applies extensive IS expertise in specific field and has full knowledge of related disciplines. Evaluates new hardware, software, systems tools and applications and makes procurement recommendations. Excellent leadership and project management skills. Skilled in analytical techniques, practices and problem solving. Extensive programming and architecture abilities with various computer software programs and information systems.
* Must meet educational requirements prior to employment start date.
Additional Required Qualifications
Training specific experience or training/certifications with Splunk administration is required.
DOE L/Q
Clearance: Must be able to obtain and maintain a DOE L/Q Security Clearance.
Eligibility requirements: To obtain a clearance, an individual must be at least 18 years of age; U.S. citizenship is required except in very limited circumstances. See DOE O 472.2A for additional information.
Preferred Qualifications
Experience includes at least seven years in an Information Technology role working specifically in security engineering, or a role that includes significant time performing security engineering (tool selection, installation, and maintenance)
One or more professional security and/or systems engineering certifications, such as GIAC (SANS) certifications, Security+, CISSP, or training evidencing effort to attain future certification
Technical background in multiple disciplines, including experience with: Windows and Linux server and workstation system administration; TCP/IP networking concepts, Bash command-line expertise, network protocols and architecture; security measures/defense-in-depth
Experience managing, and troubleshooting both network- and host-based security tools and significant infrastructure (ex. SIEM, IDS, IPS, full packet capture) in a production (live) environment
Subject matter expertise in cybersecurity engineering; understands how to select and tune tools to provide analysts with best value visibility and response
Experience dealing with common cyber security concepts and threats and describing them to others
Intermediate scripting/programming ability with various languages, preferably Python, in support of security orchestration and automation
Technology-specific experience or training/certifications with Splunk SIEM and Cortex XSOAR (formerly Demisto) is a plus
Understanding of cloud security architecture, event collection and aggregation a plus
.
Job Application Submission Window
The anticipated closing window for application submission is up to 30 days and may be extended as needed.
Annual Salary Range (based on full-time 40 hours per week)
Job Profile: IT Professional IV / Annual Salary Range: $100,400 - $180,700
Job Profile: IT Professional III / Annual Salary Range: $83,600 - $150,500
NLR takes into consideration a candidate's education, training, and experience, expected quality and quantity of work, required travel (if any), external market and internal value, including seniority and merit systems, and internal pay alignment when determining the salary level for potential new employees. In compliance with the Colorado Equal Pay for Equal Work Act, a potential new employee's salary history will not be used in compensation decisions.
Benefits Summary
Benefits include medical, dental, and vision insurance; short - and long-term disability insurance; pension benefits ; 403(b) Employee Savings Plan with employer match ; life and accidental death and dismemberment (AD&D) insurance; personal time off (PTO) and sick leave; paid holidays; and tuition reimbursement . NLR employees may be eligible for, but are not guaranteed, performance-, merit-, and achievement- based awards that include a monetary component. Some positions may be eligible for relocation expense reimbursement. Limited-term positions are not eligible for long-term disability or tuition reimbursement.
** * Based on eligibility rules
Badging Requirement
NLR is subject to Department of Energy (DOE) access restrictions. All employees must also be able to obtain and maintain a federal Personal Identity Verification (PIV) card as required by Homeland Security Presidential Directive 12 (HSPD-12), which includes a favorable background investigation.
Drug Free Workplace
NLR is committed to maintaining a drug-free workplace in accordance with the federal Drug-Free Workplace Act and complies with federal laws prohibiting the possession and use of illegal drugs. Under federal law, marijuana remains an illegal drug.
If you are offered employment at NLR, you must pass a pre-employment drug test prior to commencing employment. Unless prohibited by state or local law, the pre-employment drug test will include marijuana. If you test positive on the pre-employment drug test, your offer of employment may be withdrawn.
Submission Guidelines
Please note that in order to be considered an applicant for any position at NLR you must submit an application form for each position for which you believe you are qualified. Applications are not kept on file for future positions. Please include a cover letter and resume with each position application.
.
Equal Opportunity Employer
All qualified applicants will receive consideration for employment without regard basis of age (40 and over), color, disability, gender identity, genetic information, marital status, domestic partner status, military or veteran status, national origin/ancestry, race, religion, creed, sex (including pregnancy, childbirth, breastfeeding), sexual orientation, and any other applicable status protected by federal, state, or local laws.
Reasonable Accommodations (http://www.nrel.gov/careers/employment-policies.html)
E * * -Verify www.dhs.gov/E-Verify For information about right to work, click here (http://www.justice.gov/sites/default/files/crt/legacy/2013/08/13/FinalOSCPosterEN08 01 2013.pdf) for English or here (http://www.justice.gov/crt/file/813271/download) for Spanish.
E-Verify is a registered trademark of the U.S. Department of Homeland Security. This business uses E-Verify in its hiring practices to achieve a lawful workforce.
The National Laboratory of the Rockies (NLR) is a leader in the U.S. Department of Energy's effort to secure an environmentally and economically sustainable energy future. With locations in Golden and Boulder, Colorado, and a satellite office in Washington, D.C., NLR is the primary laboratory for research, development, and deployment of renewable energy technologies in the United States.
NLR is subject to Department of Energy (DOE) access restrictions. All candidates must be authorized to access the facility per DOE rules and guidance within a reasonable time frame for the specified position in order to be considered for an interview and for hiring. DOE rules for site access during the interview process depend on whether the candidate is interviewed on-site, off-site, or via telephone or videoconference. All employees must also be able to obtain and maintain a federal Personal Identity Verification (PIV) card as required by Homeland Security Presidential Directive 12 (HSPD-12), which includes a favorable background investigation. Additionally, DOE contractor employees are prohibited from participating in certain Foreign Government Talent Recruitment Programs (FGTRPs). If a candidate is currently participating in an FGTRP, they will be required to disclose their participation after receiving an offer of employment and may be required to disengage from participation in the FGTRP prior to commencing employment. Any offer of employment is conditional on the ability to obtain work authorization and to be granted access to NLR by the Department of Energy (DOE).
Drug Free Workplace
NLR is committed to maintaining a drug-free workplace in accordance with federal Drug-Free Workplace Act and complies with federal laws prohibiting the possession and use of illegal drugs. Under federal law, marijuana remains an illegal drug.
If you are offered employment at NLR, you must pass a pre-employment drug test prior to commencing employment. Unless prohibited by state or local law, the pre-employment drug test will include marijuana. If you test positive on the pre-employment drug test, your offer of employment may be withdrawn.
Please review the information on our Hiring Process (https://www.nlr.gov/careers/hiring-process.html) website before you create an account and apply for a job. We also hope you will learn more about NLR (https://www.nlr.gov/about/) , visit our Careers site (https://www.nlr.gov/careers/) , and continue to search for job opportunities (https://nrel.wd5.myworkdayjobs.com/NLR) at the lab.
