R&D S&E, Cybersecurity (Experienced)

Posting Duration:

This posting will be open for application submissions for a minimum of seven (7) calendar days, including the ‘posting date’. Sandia reserves the right to extend the posting date at any time.

NNSA Requirements for MedPEDs:

If you have a Medical Portable Electronic Device (MedPED), such as a pacemaker, defibrillator, drug-releasing pump, hearing aids, or diagnostic equipment and other equipment for measuring, monitoring, and recording body functions such as heartbeat and brain waves, if employed by Sandia National Laboratories you may be required to comply with NNSA security requirements for MedPEDs.

If you have a MedPED and you are selected for an on-site interview at Sandia National Laboratories, there may be additional steps necessary to ensure compliance with NNSA security requirements prior to the interview date.

Salary Range:

$101,400 - $201,400

*Salary range is estimated, and actual salary will be determined after consideration of the selected candidate's experience and qualifications, and application of any approved geographic salary differential.

What Your Job Will Be Like:

Are you passionate about research dedicated to keeping systems safe and thwarting cyber intrusions? Are you dreaming of a chance to develop protective technologies, conduct threat assessments, and analyze government, military, and civilian computer networks? If so, apply for this opportunity!

We are seeking cybersecurity professionals to join Sandia's unique multidisciplinary team committed to solving the information security challenges facing our nation. As part of our team, selected candidates will engage in work across the technology spectrum including embedded, mobile, desktop, and enterprise systems, as well as globally connected networks of networks.

To support Sandia's national security missions, our cybersecurity scientists and engineers engage in a variety of research areas including:

• Cyber threat intelligence

• Network operation, information protection, and resiliency

• Cyber vulnerability management, triage, and analysis

• Network operation, information protection, and resiliency

• Authentication and authorization

• Hardware/software trust and assurance

• Virtualization (system and network) and cloud technologies

• Mobile devices and smart technologies

• Industrial control systems and SCADA systems

• Intrusion prevention/detection and response, penetration testing, and forensics

• Manual and automated reverse engineering, vulnerability assessment, and malware analysis

When applying to this requisition, candidates may be interviewed and/or hired by one of several cybersecurity-focused organizations.

The selected applicant can be a virtual worker located in any U.S. State or District of Columbia. Regular or periodic travel to your assigned work location may be required.

Qualifications We Require:

• Master’s degree in Computer Science/Engineering, Electrical Engineering, Computer Information Systems, Computer Forensics, Cybersecurity or other related subject area and 1 year of relevant experience, or equivalent related experience

• Proficiency in Perl, Python, Git, SQL, or scripting languages (bash, etc.)

• Operating system expertise with Linux, Unix, & Windows

• Ability to acquire and maintain a DOE Q-level security clearance along with an SCI clearance, which may require a polygraph test

Qualifications We Desire:

• Proficiency developing Splunk dashboards, detections, searches, and alerting

• Demonstrated experience with host, network, and memory forensics

• Demonstrated experience with Incident Response and Incident Handling

• Experience with computer forensic collection and analysis

• Demonstrated ability to lead multidisciplinary research teams

• Led projects as the principal investigator in the past 5 years

• Experience conducting research resulting in creative technical solutions

• Strong oral and written communication skills, ability to explain complex ideas clearly and concisely

• Deep technical knowledge of introspection techniques at the network and virtual machine layers, more particularly with introspection, deep packet inspection, and data enrichment

• Deep technical knowledge of virtual networking and virtual machines

• Deep technical knowledge of cloud security, logging, and controls

• Experience with system administration, networks, and device management

• Experience with one or more of the following: network design, implementation, administration, database systems, webservers, application servers, firewalls, network devices, data science/analytics

• Experience auditing code in C/C++, Java, Python, assembly, or other languages

• Strong analytical skills

• Familiarity with secure-system design principles and information assurance principles

• Strong oral and written communication skills, ability to explain complex ideas clearly and concisely

• Experience with assembly or operating system programming, application layer programming, Dev-Ops programming, and/or network layer programming

• Ability to conduct independent technical R&D and strong analytical skills

• Ability to work in a highly collaborative team

• Disciplined time management and ability to work on multiple R&D projects

• Well-developed leadership skills with the ability to prioritize and execute in a disciplined and focused manner

• Ability to build trusting, long lasting relationships with partners, customers, and internal stakeholders

• Active DOE Q security clearance

About Our Team:

The Cyber Enterprise Security department is responsible for computer and cyber security research and operations. Research is conducted in all areas of cyber defense, vulnerability assessment, intrusion detection, forensics, malware analysis, and reverse engineering. The results of the research are applied to the protection of Sandia's information and cyber environment. The department partners with various functions across the labs and NSE complex to creatively design, implement, and evolve the capabilities necessary to protect Sandia's information and assets. The department focuses on the following:

• Analyzing network communications to discover unauthorized cyber penetrations, conduct forensics analysis, reverse engineering and analyzing potential threats to information systems

• Developing analysis methods and tools which process data to extract meaningful information and to hypothesize future outcomes

• Developing, designing and conducting vulnerability management of information systems and all related technologies

• Designing and developing tools and procedures to safeguard information- Participation and leadership of cross-site teams assembled for the purpose of discovering and sharing new knowledge regarding rapidly advancing cyber threats.

About Sandia:

Sandia National Laboratories is the nation’s premier science and engineering lab for national security and technology innovation, with teams of specialists focused on cutting-edge work in a broad array of areas. Some of the main reasons we love our jobs:

• Challenging work with amazing impact that contributes to security, peace, and freedom worldwide

• Extraordinary co-workers

• Some of the best tools, equipment, and research facilities in the world

• Career advancement and enrichment opportunities

• Flexible work arrangements for many positions include 9/80 (work 80 hours every two weeks, with every other Friday off) and 4/10 (work 4 ten-hour days each week) compressed workweeks, part-time work, and telecommuting (a mix of onsite work and working from home)

• Generous vacations, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance*

World-changing technologies. Life-changing careers. Learn more about Sandia at: http://www.sandia.gov*These benefits vary by job classification.

Security Clearance:

Sandia is required by DOE to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants for employment need to be able to obtain and maintain a DOE Q-level security clearance and SCI access, both of which require US citizenship. SCI access may also require a polygraph examination. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain these levels of access may be impacted.

Applicants offered employment with Sandia are subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by the DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment.

EEO:

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status and any other protected class under state or federal law.

Job ID: 688548