Senior Electric Grid Cybersecurity Researcher

NREL•Golden, CO

About The Position

NLR is located at the foothills of the Rocky Mountains in Golden, Colorado is the nation's primary laboratory for energy systems research and development. Join the National Laboratory of the Rockies (NLR), where world-class scientists, engineers, and experts are accelerating energy innovation through breakthrough research and systems integration. From our mission to our collaborative culture, NLR stands out in the research community for its commitment to an affordable and secure energy future. Spanning foundational science to applied systems engineering and analysis, we focus on solving complex challenges to deliver advanced, secure, reliable, and cost-effective energy solutions. Our work helps strengthen U.S. industries, support job creation, and promote national economic growth. At NLR, you'll find a mission-driven environment supported by state-of-the-art facilities, multidisciplinary research teams, and strong collaborations with industry, academia, and other national laboratories. We offer robust professional development opportunities, and a competitive benefits package designed to support your career and well-being. The Cybersecurity Threat Analysis Group (CTAG) within the National Laboratory of the Rockies (NLR) Cybersecurity Research Center performs research to make cybersecurity an enabling part of the nation’s energy ecosystem. This is primarily accomplished through engaging with energy sector partners, government program offices, and national security organizations. Research areas within CTAG include s energy system modeling and simulation, threat to consequence risk analysis, and hardware & software supply chain security . CTAG is seeking an experienced senior electric grid cybersecurity research professional to lead our Energy Threat Analysis Center (ETAC) portfolio of work. The ETAC is a n operational collaborative that convenes experts from the U.S. Department of Energy and the U.S. energy sector to collectively identify , analyze, and mitigate cyber threats to America’s critical energy infrastructure. The successful candidate will bring a combination of strong technical security background and power systems engineering. This role also requires profi ciency in developing and executing cybersecurity research within a laboratory environment, knowledge of cutting-edge adversarial Tactics, Techniques, and Procedures, experience leading complex cybersecurity programs across a matrixed organization, a passion for leading and driving new research, and the ability to collaborate with partners from across the national laboratory complex , the Department of Energy, industry, and national security partners.

Requirements

Relevant PhD and 9 or more years of experience . Or, relevant Master's Degree and 12 or more years of experience . Or, relevant Bachelor's Degree and 14 or more years of experience
Applies advanced scientific technical principles, theories and concepts.
Contributes to the development of new principles and concepts.
Considered a national subject matter expert.
Demonstrates leadership in a number of areas, including all team, task and/or project lead responsibilities.
Demonstrated management of complex and/or impactful projects.
Excellent technical writing, interpersonal and communication skills.
Must meet educational requirements prior to employment start date.
Must be able to obtain and maintain a DOE security clearance at the Q/TS/SCI level.
Eligibility requirements: To obtain a clearance, an individual must be at least 18 years of age; U.S. citizenship is except in very limited circumstances. See DOE O 472.2A for additional information. Polygraph may be .
Knowledge of and demonstrated experience in power systems engineering principles and practices
Demonstrated experience leading cybersecurity programs for national security partners
Demonstrated experience in adversarial cybersecurity practices (e.g., red teaming, reverse engineering, threat hunting )
Demonstrated e xperience with threat hunting or detection engineering
Experience deploying and configuring operational technology system components (e.g., SCADA RTUs, PLCs, and HMI )
Familiarity with applicable security frameworks, best practices and guidance as provided by IEC62443, NERC CIP, NIST and IEEE
Understanding of MITRE ATT&CK for ICS to develop real-world security test strategies
Excellent leadership, communication, problem solving and project management skills
Strong writing and public speaking skills demonstrated through proposals, presentations, business development and/or customer engagement

Responsibilities

Provide technical leadership supporting multi-partner programs, coordinating with program office leadership, tasking and mentoring staff in support of program objectives
Lead adversarial research initiatives targeting energy sector systems, including threat emulation, cyber range experimentation, and model-based simulation, defining experimental objectives and strategies
Independently design, execute, and evaluate complex adversary–defender studies, including multi-stage attack-chain modeling, vulnerability exploration, and defense validation, ensuring reproducible and rigorous research outcomes
Proven leadership in offensive cybersecurity research and program management , including planning and executing complex experiments with strategic impact
Advanced proficiency in Python, PowerShell, C/C++, or other languages, enabling automation, data-driven analysis, and modeling integration across projects
Expert-level knowledge of ICS, OT, and energy sector systems, including protocols, architectures, and security considerations
Writing high-quality intelligence assessments and briefings for both senior-level and technical audiences
Contribute specialized knowledge to collaborative response efforts based on cyber incidents
Provide technical thought-leadership by proposing and leading new areas of work
Support quick reaction tasking requiring research into areas of government concern
Serve as a Subject Matter Expert (SME) in adversarial TTPs, cybersecurity mitigations, best practices, and reverse engineering
Serve as a SME within our growing supply chain security portfolio of work
Collaborate with fellow researchers, Department of Energy staff as well as industrial partners to ensure research relevance and impact

Benefits

Benefits include medical, dental, and vision insurance; short- and long-term disability insurance; pension benefits; 403(b) Employee Savings Plan with employer match; life and accidental death and dismemberment (AD&D) insurance; personal time off (PTO) and sick leave; paid holidays; and tuition reimbursement.
NLR employees may be eligible for, but are not guaranteed, performance-, merit-, and achievement- based awards that include a monetary component.
Some positions may be eligible for relocation expense reimbursement.
Limited-term positions are not eligible for long-term disability or tuition reimbursement.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume