Senior Cybersecurity Researcher

LLNL•Livermore, CA

1d•Hybrid

About The Position

We have an opening for a Senior Cybersecurity Researcher to lead efforts to develop techniques and tools for red teaming and blue teaming in support of the defense of critical infrastructure systems and Federal networks. You will lead and support a range of highly complex security research projects, developing and deploying innovative methods to characterize and assess cyber-adversary behavior and to develop tools used to defend critical U.S. infrastructure and networks. Your expertise will drive the evolution of advanced cyber capabilities, threat analysis, and mitigation strategies for operational technology and industrial control systems. This position is programmatically in Global Security’s Energy and Homeland Security (E) Program and administratively in the Global Security Computing Applications Division (GS-CAD) within the Computing Directorate. This position will be filled at either level based on knowledge and related experience as assessed by the hiring team. Additional job responsibilities (outlined below) will be assigned if hired at the higher level. You will Guide and support advanced cyber research projects leveraging creative and automated methods to identify and mitigate vulnerabilities and weaknesses in software, firmware, and operational technology systems. Analyze and assess novel software, firmware, and malware to uncover weaknesses, malicious behavior, and potential attack vectors, creating repeatable workflows to support future red team and blue team engagements. Conduct in-depth assessments of OT/ICS networks to identify weaknesses and vulnerabilities that could lead to physical system impacts. Participate in the design and implementation of new tools and techniques for vulnerability assessment, penetration testing, and/or adversary emulation to advance the understanding and mitigation of threats to operational technology. Identify emerging threats and opportunities for enhancing cyber defense and red team capabilities, helping shape the technical direction of LLNL’s cybersecurity initiatives. Collaborate in the development of technical requirements for red team and/or blue team operations at LLNL, including creating tools for adversary emulation and threat mitigation. Engage with sponsors and stakeholders to develop new program growth opportunities, contribute to research proposals, and ensure alignment with mission objectives. Drive and execute innovative ideas and approaches to meet sponsor and project needs in a rapidly evolving threat landscape. Mentor and collaborate with team members, utilizing technical expertise to attract and retain projects, programs, and funding. Perform other duties as assigned.

Requirements

Ability to maintain a U.S. DOE Q-level security clearance which requires U.S. citizenship.
Bachelor's degree with significant focus in cybersecurity, computer science, information technology, computer engineering, or related technical field or the equivalent combination of education and related experience.
Significant experience leading program analysis of cyber-physical system security, OT network design and security, or intelligent adversary threat assessment and mitigation.
Advanced experience in one or more of the following areas: mixed-integer programming, branch-bound-and-cut algorithms, branch-and-price algorithms, strong (polynomial- or exponential-sized) formulations and separation, parallel/distributed mathematical optimization techniques, electric energy systems operations and planning, or related relevant areas.
Significant experience communicating technical information across multi-disciplinary teams and to non-cyber experts, advising senior management, and applying interpersonal skills to collaborate effectively in a team environment.
Advanced knowledge of one of the following: deep reinforcement learning, neural networks, and/or large language models.
Advanced analytical, problem-solving, and decision-making skills to develop creative solutions to complex problems.
Ability to effectively manage concurrent technical tasks with competing priorities, along with the demonstrated ability to approach difficult problems with enthusiasm and creativity and to effectively change focus when necessary.
Advanced verbal and written communication skills necessary to effectively collaborate in a team environment and present and explain technical information to multi-disciplinary teams and non-cyber experts and advise senior management and/or external sponsors and proficient interpersonal skills.

Nice To Haves

Advanced degree with significant focus in cybersecurity, computer science, information technology, computer engineering, or a related technical field.
Knowledge of one or more of the following computer science disciplines: embedded systems, scientific data analysis, machine learning, systems programming, software engineering, formal verification methods, and high performance computing.
Experience with industrial control systems software and hardware.
Ability to secure sponsor funding through winning proposals and sponsor relationships.
Previous experience working Department of Energy, Department of Homeland Security, Department of Defense, a utility, manufacturing, or hardware/software company, or a cybersecurity firm.

Responsibilities

Guide and support advanced cyber research projects leveraging creative and automated methods to identify and mitigate vulnerabilities and weaknesses in software, firmware, and operational technology systems.
Analyze and assess novel software, firmware, and malware to uncover weaknesses, malicious behavior, and potential attack vectors, creating repeatable workflows to support future red team and blue team engagements.
Conduct in-depth assessments of OT/ICS networks to identify weaknesses and vulnerabilities that could lead to physical system impacts.
Participate in the design and implementation of new tools and techniques for vulnerability assessment, penetration testing, and/or adversary emulation to advance the understanding and mitigation of threats to operational technology.
Identify emerging threats and opportunities for enhancing cyber defense and red team capabilities, helping shape the technical direction of LLNL’s cybersecurity initiatives.
Collaborate in the development of technical requirements for red team and/or blue team operations at LLNL, including creating tools for adversary emulation and threat mitigation.
Engage with sponsors and stakeholders to develop new program growth opportunities, contribute to research proposals, and ensure alignment with mission objectives.
Drive and execute innovative ideas and approaches to meet sponsor and project needs in a rapidly evolving threat landscape.
Mentor and collaborate with team members, utilizing technical expertise to attract and retain projects, programs, and funding.
Perform other duties as assigned.