Cyber Security Engineer 4

About The Position

Requirements

• BS/BA and 7+ years of relevant work experience -OR-
• MS/MA and 5+ years of relevant work experience -OR-
• PhD with 3+ year of relevant experience
• U.S. Citizenship
• Background Investigation: Applicants selected will be subject to a Federal background investigation and must meet eligibility requirements for access to classified matter in accordance with 10 CFR 710, Appendix B.
• Drug Testing: All Security Clearance positions are Testing Designated Positions, which means that the applicant selected for hire is subject to pre-employment drug testing, and post-employment random drug testing. In addition, applicants must be able to demonstrate non-use of illegal drugs, including marijuana, for the 12 consecutive months preceding completion of the requisite Questionnaire for National Security Positions (QNSP).
• Note: Applicants will be considered ineligible for security clearance processing by the U.S. Department of Energy if non-use of illegal drugs, including marijuana, for 12 months cannot be demonstrated.

Nice To Haves

• 4+ years of experience focused on ICS/OT assessments in industrial, critical infrastructure, or mission environments.
• Previous experience at PNNL, National Labs and/or mission driven work
• Working knowledge of ICS protocols such as Modbus, DNP3, and BACnet.
• Hands-on experience with assessment tools such as Nessus, Nmap, Wireshark (or equivalent).
• Experience with OT security platforms such as Dragos, Claroty, Tenable OT (or equivalent).
• Strong understanding of ICS/OT architectures, including Purdue model concepts, segmentation, and secure remote access.
• Proficiency with enterprise networking concepts and devices (IP addressing, VLANs/VRFs, firewalls, routers, switches).
• Familiarity with Federal/DoD cybersecurity requirements (e.g., STIGs, CNSSI 1253, RMF concepts).
• Ability to lead cross-discipline teams, communicate effectively to technical and non-technical audiences, and operate in high-stakes environments.
• Active Secret or Top Secret clearance (or ability to obtain).
• Certifications such as GICSP, CISSP, CEH, ISA/IEC 62443 (or equivalent ICS/OT-focused credentials).
• Experience with DoD RMF, including use of platforms such as eMASS (and similar compliance workflows).
• Experience applying Zero Trust concepts to facility-related control systems (FRCS) and ICS/OT networks.
• Background in critical infrastructure protection programs (e.g., CISA or similar).
• Demonstrated track record of leading assessments that resulted in measurable risk reduction or operational improvements.
• Strong understanding of fundamental computer science principles.
• Ability to rapidly learn and understand the application and impact of advanced and emerging technical security principles, theories, and concepts.
• Demonstrated ability to translate operational assessment findings into research and development (R&D) opportunities, including authoring or contributing to white papers, technical proposals, statements of work, and sponsor-facing briefings that define problems, articulate innovation, and scope executable R&D tasks.

Responsibilities

• Designs, deploys, and operates systems, networks, applications, and tools that underpin cyber security and cyber defense.
• Provides integration of hardware, software, and other components to solve operational challenges for cyber defenders.
• Performs data and systems engineering functions to support cyber operations activities and systems.
• Engineers and deploys security and defensive countermeasures and controls.
• Ensures system security needed in operations are assessed, established, and included in design and development; executes security requirements definition, systems analysis, systems design, security hardening, security test and evaluation, and certification and accreditation.
• Supports operational systems and performs activities such as vulnerability scanning, network, and system security configuration, etc.
• Design and architecture of new approaches, methods and techniques for cyber defense and resiliency for information technology and operational technology systems and networks.
• May interface with external entities including law enforcement, intelligence and other government organizations and agencies.
• The Cyber Assessment Lead will spearhead cybersecurity evaluations and risk assessments for ICS/OT environments supporting critical infrastructure. You will identify vulnerabilities, quantify risk, and drive practical mitigations that include Zero Trust capabilities to improve the resilience of systems such as HVAC and building management systems (BMS), electrical substations, emergency generator backups, and water/wastewater control systems among others. This role operates in high-consequence, mission-focused environments and requires strong technical depth, disciplined assessment execution, and clear communication to technical and executive stakeholders.

Benefits

• Employees and their families are offered medical insurance, dental insurance, vision insurance, robust telehealth care options, several mental health benefits, free wellness coaching, health savings account, flexible spending accounts, basic life insurance, disability insurance, employee assistance program, business travel insurance, tuition assistance, relocation, backup childcare, legal benefits, supplemental parental bonding leave, surrogacy and adoption assistance, and fertility support.
• Employees are automatically enrolled in our company-funded pension plan and may enroll in our 401 (k) savings plan with company match.
• Employees may accrue up to 120 vacation hours per year and may receive ten paid holidays per year.