Los Alamos National Laboratory Cybersecurity Technical Staff (Cybersecurity Techinical Staff 3/4) in Los Alamos, New Mexico

What You Will Do_

As a member of the cybersecurity technical staff at LANL, you will have the opportunity to be on the cutting edge of cyber security, while enjoying the unique opportunities provided by LANL’s location. You will work in the Network and Infrastructure Engineering Division supporting a computing environment scaling from “desktop to teraflops,” a diverse and challenging network environment unavailable anywhere else.

The selected candidate will be a member of the NIE-ESS Computer Security Incident Response Team that is responsible for computer security incident response, host and network forensics, malware analysis, and the development of countermeasures and advanced detection techniques.

This position will be filled at either the Cybersecurity Technical Staff 3 or 4 level, depending on the skills of the selected candidates. Additional job responsibilities (outlined below) will be assigned if the candidate is hired at the higher level.

Cybersecurity Technical Staff 3 ($96,600 - $161,300)

  • Identify and respond to complex computer security incidents, communicate findings, and modify defenses and response measures as appropriate.

  • Develop advanced methods, techniques, and standards and communicate findings to multiple audiences.

  • Independently lead work on moderately complex cyber issues, providing guidance and direction as appropriate to other cyber security personnel.

  • Critically analyze malware and develop indicators.

Cybersecurity Technical Staff 4 ($116,900 - $197,000)

In addition to the responsibilities outlined above, the Cybersecurity Technical Staff 4 will:

  • Independently lead work on unusually significant or complex issues.

  • Serve as a technical expert in a key security or incident response field (forensics, malware analysis, reverse engineering, signature development, or penetration testing).

  • Responsible for coordination among groups, external organizations, and key decision makers.

What You Need

Minimum Job Requirements:

  • Knowledge of the cyber security environment, including network and host system security issues and concepts, compliance, and certification.

  • Advanced knowledge of common network and host-based attacks, attack methods, network defense architectures, and security tools.

  • Extensive experience with one or more of the following: malware analysis and reverse engineering; enterprise host and memory forensics; network forensics and packet analysis; incident response and incident coordination; penetration testing.

  • Experience leading projects or mentoring junior analysts.

  • Strong analytical, documentation, and communication skills.

Additional Job Requirements for Cybersecurity Technical Staff 4:

  • Ability to work independently and generate new initiatives to achieve long-range goals.

  • Ability to mentor junior analysts, share expertise, and serve as a subject-matter expert in one or more areas of computer security and incident response.

Desired skills:

  • Experience with enterprise forensics tools (EnCase Enterprise, GRR, Resolution One, CarbonBlack).

  • Experience with Core Impact and Metasploit for red teaming exercises.

  • Experience with memory analysis with Volatility or Rekall.

  • Experience with IDA Pro, BinDiff, or yara rule creation beyond string searching.

  • Experience with dynamic analysis of software samples via debuggers such as OllyDbg or IDA debugger.

  • Experience with BRO or Wireshark to produce custom protocol decoders.

  • Experience with network signature creation with Snort or BRO.

  • Experience with ArcSight, Splunk, or similar tools.

  • Extensive background developing regular expressions.

  • Experience with automated analysis and scripting with Python, Perl, or similar languages.

  • Experience with tool integration and event correlation with differing API’s.

Education:

Cybersecurity Technical Staff 3: typically requires a bachelor’s degree (master’s preferred) in a technical field and a minimum of 8 years’ related experience, or an equivalent combination of education and experience. At this level post graduate work may be expected.

Cybersecurity Technical Staff 4: typically requires a bachelor’s degree (master’s preferred) in a technical field and a minimum of 12 years’ related experience, or an equivalent combination of education and experience. At this level post graduate work may be expected.

Note to Applicants: Please provide a comprehensive cover letter that details how you meeting the qualifications for the position.

Additional Details:

Clearance: Q(Position will be cleared to this level). Applicants selected will be subject to a Federal background investigation and must meet eligibility requirements* for access to classified matter.

*Eligibility requirements: To obtain a clearance, an individual must be at least 18 years of age; U.S. citizenship is required except in very limited circumstances. See DOE Order 472.2 for additional information.

New-Employment Drug Test: The Laboratory requires successful applicants to complete a new-employment drug test and maintains a substance abuse policy that includes random drug testing.

Regular position: Term status Laboratory employees applying for regular-status positions are converted to regular status.

Equal Opportunity: Los Alamos National Laboratory is an equal opportunity employer and supports a diverse and inclusive workforce. All employment practices are based on qualification and merit, without regards to race, color, national origin, ancestry, religion, age, sex, gender identity, sexual orientation or preference, marital status or spousal affiliation, physical or mental disability, medical conditions, pregnancy, status as a protected veteran, genetic information, or citizenship within the limits imposed by federal laws and regulations. The Laboratory is also committed to making our workplace accessible to individuals with disabilities and will provide reasonable accommodations, upon request, for individuals to participate in the application and hiring process. To request such an accommodation, please send an email to applyhelp@lanl.gov or call 1-505-665-4444 option 1.

Where You Will Work_

Located in northern New Mexico, Los Alamos National Laboratory (LANL) is a multidisciplinary research institution engaged in strategic science on behalf of national security. LANL enhances national security by ensuring the safety and reliability of the U.S. nuclear stockpile, developing technologies to reduce threats from weapons of mass destruction, and solving problems related to energy, environment, infrastructure, health, and global security concerns.

Our employees are our greatest asset, which is why we provide a comprehensive benefits package that offers health coverage for you and your eligible family members today and retirement plans for a brighter tomorrow. A healthy workforce is paramount to a successful organization. We offer an incentivized wellness plan and preventive care to encourage and reward good basic health choices. Also, for your financial wellness, we provide a tax-deferred 401(k) retirement plan, with a company match and service based contribution.

Location: Los Alamos, NM, US

Work Telephone: 505-665-1683

Contact Name: Tedder, Billie Jo (BJ)

Organization Name: NIE-ESS / Engineering & Security Services

Email: bjtedder@lanl.gov

Job Title: Cybersecurity Technical Staff (Cybersecurity Techinical Staff 3/4)

Appointment Type: Regular

Req ID: IRC66517