Computer Engineer

Oak Ridge National Laboratory•Oak Ridge, TN

3d•Onsite

About The Position

We are seeking a Computer Engineer with a focus on Hardware Vulnerability Research who will support the Cyber Resilience and Intelligence Division in the National Security Science Directorate at Oak Ridge National Laboratory(ORNL). This role supports national security agendas related to the identification and mitigation of software vulnerabilities in critical systems. The engineer will research, develop, and improve tools and techniques for vulnerability identification and mitigation, maintain awareness of cybersecurity research, and contribute to reports for project sponsors. The position also involves assisting in the development of research proposals, promoting ORNL's cybersecurity R&D capabilities, and presenting findings to technical audiences, leadership, and sponsors. The role requires identifying and articulating ORNL capabilities and customer requirements, managing small to medium-sized projects, mentoring junior staff, and developing new research proposals. Competence with relevant equipment, systems, policies, procedures, and work methods is expected.

Requirements

MS in computer science, computer engineering, or related field and a fundamental understanding of cyber security principles, tools, and operational applications with at least 7 years of relevant experience, or a Ph.D. with at least 2 years of relevant experience.
Current experience writing software.
Binary literacy is imperative. This includes understanding how software is architected, language characteristics, binary formats, and various operating systems.
Familiarity with static and dynamic binary analysis techniques (e.g., fuzzing) and reverse engineering (e.g., Ghidra or Ida Pro).
Experience auditing source code and disassembly to identify and characterize vulnerabilities
Demonstrated desire and ability to acquire new knowledge and learn new skills.
Demonstrated interpersonal, verbal and written communication skills.
Ability to develop plans to address complex problems, be proactive, work independently, and contribute to a larger team.
Ability to function well in a fast-paced research environment, set priorities to accomplish multiple tasks within deadlines, and adapt to ever changing needs.

Nice To Haves

Most relevant languages: C, C++, Python, and Java.
Familiarity with embedded systems preferred
Prior use and familiarity with web or network-related tools, e.g., burpsuite and wireshark a plus.
Participation in capture-the-flag events, or cyber challenge events a plus.

Responsibilities

Support national security agendas as they relate to the identification and mitigation of software vulnerabilities used in defense, energy, and critical infrastructure assets.
Research, develop and improve tools and techniques used to identify and mitigate vulnerabilities in critical systems.
Maintain awareness and understanding of cyber security research and events.
Contribute material to reports generated for project sponsors.
Assist in the development of research proposals related to vulnerability science.
Promote ORNL/partners cyber security research and development capabilities as they apply to the national security community.
Present material and provide advice to technical audiences, leadership and sponsors on cyber security issues, research, and programs.
Identify and articulate ORNL capabilities and customer requirements to internal and external technical audiences, leadership, and sponsors.
Deliver ORNL's mission by aligning behaviors, priorities, and interactions with our core values of Impact, Integrity, Teamwork, Safety, and Service.
Supports senior technical staff in one or more departments or projects providing a full range of technical services.
Manage small to medium sized projects, mentoring junior staff in areas related to vulnerability research.
Develops new research proposals for submission to sponsor organizations.
Competent with all relevant equipment, systems, established policies, procedures, and work methods.