Cyber Security Engineer

LLNLLivermore, CA
Hybrid

About The Position

Lawrence Livermore National Laboratory (LLNL) is seeking a Cybersecurity Engineer to join the Information Technology Solutions Division (ITSD) within the Computing Directorate, matrixed to the Cyber Security Program (CSP), in support of the Livermore Information Technology (LivIT) Program. This role involves supporting the Cyber Security Operations Center (CSOC) infrastructure through a wide range of activities. The position offers a hybrid schedule, allowing for a blend of in-person and virtual work, with the flexibility to work from home one or more days per week. The role can be filled at either a SES.1 or SES.2 level, depending on the candidate's qualifications and experience. The primary focus is on protecting enterprise systems and information by responding to security threats and incidents, proactively hunting for threats, and supporting recovery efforts. This includes analyzing intrusion detection systems, providing security monitoring, and resolving issues. Collaboration with staff to ensure timely patching and vulnerability mitigation is also key. Additionally, the role requires computer science and software development support, leveraging modern programming languages like Python within Linux, UNIX, and/or Windows environments, and developing scripting and automation to improve efficiency. The SES.2 level includes additional responsibilities such as managing complex technical tasks, developing improved incident response and vulnerability management processes, and providing technical guidance to team members.

Requirements

  • Ability to secure and maintain a U.S. DOE Q-level security clearance which requires U.S. citizenship.
  • Bachelor’s degree in Computer Science, Computer Engineering, Computer Information Systems, or related field, or the equivalent combination of education and related experience.
  • Experience developing software in Python or other programming languages.
  • Technical experience with operating systems, virtual environments, and/or related hardware in a moderately complex server environment.
  • Effective written and verbal communication and strong interpersonal skills, ability to interact with all levels of management and staff.
  • Ability to work in a dynamic, technical team environment with competing priorities and meet deadlines that are important to project success.
  • Experience with approaching difficult problems with enthusiasm and creativity, and to change focus when necessary.
  • Ability to work off-hours and on-call to respond to incidents (intermittently, either as-needed or as part of a rotation).
  • Proficient knowledge of SIEM solutions, EDR’s, threat hunting, incident response, incident management or vulnerability management.
  • Comprehensive experience conducting host forensics, network forensics, log analysis, or malware analysis in support of incident response investigations or leading vulnerability assessments.
  • Current industry specific certifications including but not limited to Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Global Information Assurance Certification (GIAC).

Nice To Haves

  • Master’s degree in Computer Science, Computer Engineering, or a related field, or equivalent level of knowledge.
  • Significant incident response or vulnerability management experience, including experience with cloud services such as AWS/Azure.
  • Experience with programming or scripting languages such as C, C#, Python, Java, PowerShell and PHP.

Responsibilities

  • Protect enterprise systems and information by promptly responding to security threats and incidents, acting individually and as part of a team.
  • Proactively hunt for cyber threats and enact identification, containment and eradication measures while supporting recovery efforts.
  • Perform analysis on LLNL intrusion detection systems.
  • Provide security monitoring and incident response support including troubleshooting and resolution of issues.
  • Work closely with staff to ensure timely patching and mitigation of identified vulnerabilities.
  • Provide computer science and software development support using industry standard software development practices leveraging modern programming languages such as Python within Linux, UNIX, and/or Windows environments.
  • Develop scripting and automation to provide solutions to common problems and reduce operational overhead.
  • Perform other duties as assigned.
  • Manage moderately complex to complex technical parallel tasks and priorities of customers and stakeholders, ensuring deadlines are met, while leveraging team member skills.
  • Develop methods, tools, and procedures to improve incident response capabilities or vulnerability management processes and automate various complex tasks.
  • Provide technical guidance to team members in Cyber Security best practices and procedures.

Benefits

  • Flexible Benefits Package
  • 401(k)
  • Relocation Assistance
  • Education Reimbursement Program
  • Flexible schedules (depending on project needs)
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service