About the position
Enhance the organization's cybersecurity posture by performing comprehensive risk assessments, improving incident response protocols, and ensuring compliance with industry standards.
Responsibilities
- Monitor network traffic & security events to detect potential threats utilizing Splunk and SCOM.
- Conduct vulnerability scans and risk assessments utilizing Tenable and Nessus.
- Analyze logs utilizing Splunk, Panorama and Syslog to reconstruct timelines of security incidents.
- Engage other cybersecurity experts frequently to share relevant knowledge, opinions, and recommendations, working to fulfill deliverables as a team.
- Support and enhance incident response strategies and threat detection capabilities.
- Apply network operations knowledge to predict potential attack vectors.
- Recommend improvements for threat data collection to support cybersecurity and IT operations.
- Analyze large datasets to identify risks and communicate findings to decision-makers.
- Conduct requirements analysis, feasibility assessments, and develop change proposals for application solutions.
- Design technical solutions independently, participate as a member of a multidisciplinary team to analyze sponsor requirements and designs, and implement software and perform analyses to address these requirements.
- Manage multiple parallel tasks and priorities of customers and stakeholders to ensure deadlines are met.
- Provide solutions requiring analysis and creative use of innovative methods to complex problems by collaborating with subject matter experts and program managers in one or more of the following areas: critical infrastructure and industrial control system cyber security, information security.
- Prepare documentation, including testing plans, implementation guides, and research records.
- Generate reports on security posture, incidents, and compliance.
- Manage security vendor relationships and ensure contractual compliance.
- Develop and give cybersecurity training to domestic and international partners.
- Provide cybersecurity expertise as part of multi-disciplinary teams providing assessments of sites and facilities and consulting to DOE/NNSA’s DNN.
- Perform other duties as assigned.
Requirements
- Top Secret with investigation current within the last 5 years.
- On-site, no remote.
Nice-to-haves
- Preferred familiarization with RSA.
