POSITION POSTED: SEPTEMBER 13, 2021 SALARY RANGE: $105,200 - $166,200 (SCS III)
Manages the Laboratory’s cyber security program and team members to provide a functional, robust and secure computing environment for the Laboratory. Supervises a team of Cyber Security Analysts and leads large and/or very complex projects comprised of CNI staff to achieve the goals of the CST Division and the Laboratory. Coordinates cross-group projects within the Laboratory including enclave planning, enclave performance and cyber security self assessments.
Maintains cyber security systems and associated operations and devises new solutions to ensure that the Laboratory’s Cyber Security Program meets the needs of the Laboratory and DOE requirements. This includes, but is not limited to, developing the Lab's Cyber Security Program Plan (CSPP), managing cyber operations (vulnerability scanning, intrusion detection, incident handling), and providing program oversight (continuous monitoring of technical and administrative processes). Essential Functions: Oversees the management and operation of the Cyber Security staff, with regard to operations and new development including all aspects of security, cyber security, safety and staff member development and training. Planning/Task Management- Accurately estimates the effort required for delivery of very complex, multi-person efforts. Identifies, designs, and implements software tools to enhance the Laboratory’s Cyber Security Program. Supports the needs of the Lab’s science and technology programs by establishing good operational practices and by providing consultation on security issues.
Trains and informs the user support team so that they can effectively help users with cyber security related issues.
Drafts cyber security policy for consideration and approval by Lab management; creates documentation that satisfies the needs of different audiences: Users, System/Network Administrators, and other CNI staff; plus provides the responses to cyber security data calls from DOE including FISMA reporting. Maintains communication with peers, professional groups, and other labs. Identifies and recommends technologies and changes to the Lab’s computing infrastructure that anticipate emerging needs and improve the Lab’s ability to achieve its core science mission.
Education and Experience: Bachelors in Computer Science, Cybersecuity or related field, plus 10 years of relevant experience Knowledge, Skills and Abilities: Extensive working knowledge of and experience with the Unix/Linux, Macintosh, and Windows operating systems Must posses an understanding of network technologies and a complete understanding of TCP/IP, firewalls and security aspects of router and switch configurations Knowledgeable about penetration testing techniques. Experience designing intrusion detection systems (IDS) and security monitoring programs.
The ability to devise new solutions to evolving Cyber Security threats and issues.
Working knowledge of industry standard cyber security practices, policies, and procedures, explicitly including NIST cyber security documents.
The ability to develop Unix shell scripts (bash, tcsh, sh, ksh, etc) and to program in at least two of the following languages: C/C++, Perl, Java, and Python.
Project management skills to coordinate long-term projects, estimate the effort required, and lead a team to accomplish the aims of projects, some of which will involve close coordination with other groups.
The ability to present options to complex problems and persuasively argue positions.
Demonstrated experience in the construction of software systems and frameworks.
• Ability to understand, remember, and communicate highly technical information and make decisions
• Ability to understand complex problems and to collaborate, explore and implement alternative solutions • Capable of analytic and deductive reasoning
• Ability to traverse across various locations on the laboratory site and access work areas
• Ability to work at a computer workstation for extended periods • Visual capabilities to use computer workstations, read documents, and see safety alarms • Auditory capabilities to hear safety alarms • Ability to lift up to 10 pounds frequently and 25 pounds occasionally • Ability to stoop, bend over and climb ladders
Jefferson Science Associates, LLC (JSA) manages and operates the Thomas Jefferson National Accelerator Facility (Jefferson Lab). JSA is an Equal Opportunity Employer and does not discriminate in hiring or employment on the basis of race, color, religion, ethnicity, sex, sexual orientation, gender identity, national origin, ancestry, age, disability, or veteran status or on any other basis prohibited by federal, state, or local law. As part of the JSA’s equal employment opportunity policy, we also take affirmative action as called for by applicable laws and Executive Orders to ensure that minority group individuals, females, disabled veterans, recently separated veterans, other protected veterans, Armed Forces, and qualified disabled persons are introduced into our workforce and considered for promotional opportunities.
JSA is committed to providing reasonable accommodations for persons with disabilities (unless doing so will result in an undue hardship). If you need a reasonable accommodation for any part of the employment process, please send an e-mail to firstname.lastname@example.org or call (757) 269-7598 to provide the nature of your request. Reasonable accommodations are considered on a case-by-case basis.
Employment with JSA is conditional upon DOE approval if at any time during your employment you are participating in a Foreign Government Talent Recruitment Program or Affiliated activity. Generally, such programs/activities include any foreign-state-sponsored attempt to acquire U.S.-funded scientific research through programs run or funded by the government that target scientists, engineers, students, academics, researchers, and entrepreneurs of all nationalities working or educated in the United States. This includes positions or appointments, both domestic and foreign, titled academic, professional, or institutional appointments whether or not remuneration is received and whether full-time, part-time or voluntary.