Lawrence Berkeley National Lab's (LBNL) National Energy Research Scientific Computing Center (NERSC) Division has an opening for a Cyber Security Engineer to join the team.
In this exciting role, you will be involved in all aspects of cyber security at NERSC, working both independently and collaboratively with the rest of the security team to monitor for malicious and unauthorized activity, perform vulnerability scanning and application security testing, participate or lead responses to security incidents, and work with other NERSC staff and end-users to provide security guidance, perform security assessments and reviews, and assist in the remediation or mitigation of cyber security issues.
NERSC is one of the premier supercomputer centers, and our systems are used by more than 7000 users from around the world. We deploy the latest high-performance computing technologies to support our mission to accelerate scientific discovery. The cyber security team helps to make this possible by keeping NERSC computers, networks, and storage accessible and secure.
At NERSC, you will work in a collaborative, interdisciplinary environment with opportunities to explore new emerging technologies, become involved in cross-team projects, attend NERSC seminars on a diverse range of scientific and technical subjects, and continue to expand your cyber security knowledge by attending conferences and training sessions.
What You Will Do:
Monitoring and incident response
Perform security duties including threat awareness, proactive network traffic analysis, incident response, forensic analysis, monitoring ticketing queue, and resolution of security incidents.
Track security issues, and work closely with NERSC staff and end-users to advise and assist in remediation of vulnerabilities within proper timeframes.
Support and/or lead cyber incident response activities and participate in the full incident response lifecycle.
Maintain awareness of cybersecurity threats by monitoring a variety of information sources.
Participate in 24/7 on-call rotation, occasionally working outside of scheduled hours as needed.
Maintenance and improvement of security infrastructure
Maintain existing security systems using automated tools and occasionally perform manual system administration tasks.
Participate or lead efforts to upgrade existing systems to meet evolving needs, including the specification, purchase, and deployment of new security systems and infrastructure.
Improve monitoring and data analysis including improvements in security data management and log analysis.
Create, modify, and add signatures to existing IDS and security monitoring infrastructure.
Security consulting and compliance
Promote a strong security culture through outreach and technical security consulting.
Collaborate with system owners and application developers to assess and advise on proposed deployments, perform in-depth security reviews, and ensure cyber security best practices and policies are followed.
Assist with developing and documenting cyber security guidance, policies, standards, and procedures.
Project lead in one or more of the following areas
Secure deployment of containerized environments.
Development and improvement of automated tools, techniques, and documentation used in existing operations.
Security guidance and oversight in the deployment of Federated Identity and Access Management systems.
Evaluate Edge Computing Networks and Zero Trust architectures by working with internal and external collaborators.
Apply data modeling, visualization, machine learning, and statistical analysis techniques to large datasets from a wide range of sources in order to identify unusual and suspicious activity.
What is Required:
Bachelor's degree and a minimum of 8 years of related experience; or 6 years and a Master's degree; or equivalent experience.
Experience with Linux/Unix system administration, including the use of configuration automation tools such as puppet or ansible.
Experience with intrusion detection systems (e.g. Snort/Suricata/Zeek), firewalls, log analysis, and network traffic analysis.
Prior experience in threat hunting, security monitoring and analysis, incident response, penetration testing, vulnerability management and risk assessment, cyber threat intelligence, or similar cyber security role.
Experience leading a project or team, leading the implementation or administration of systems, or providing direction for a project or team.
Demonstrated proficiency using vulnerability scanning and application security testing tools.
Ability to troubleshoot and solve complex issues where analysis of situations or data requires an in-depth evaluation of variable factors.
Knowledge of system and application security threats and vulnerabilities, attacker exploit techniques, and general cyber security principles and standards.
Knowledge of network security and upper layer protocols.
Demonstrated ability to work both independently and collaboratively in an interdisciplinary team.
Excellent verbal and written communication skills.
Cloud technologies and deployment models.
Federated Identity and Access Management systems.
Edge Computing Networks and Zero Trust architectures.
Data analytics tools and their application to security analysis.
Scripting or programming in C/C++, Java, Python, Shell, or other languages.
Policy compliance management and technical documentation.
Prior work in High Performance Computing, higher education or a research environment.
This is a full-time, career appointment, exempt (monthly paid) from overtime pay.
This position may be subject to a background check. Any convictions will be evaluated to determine if they directly relate to the responsibilities and requirements of the position. Having a conviction history will not automatically disqualify an applicant from being considered for employment.
Work may be performed on-site, hybrid, full-time telework or remote modes.
Based on University of California Policy - SARS-CoV-2 (COVID-19) Vaccination Program and U.S Federal Government requirements, Berkeley Lab requires that all members of our community obtain the COVID-19 vaccine as soon as they are eligible. As a condition of employment at Berkeley Lab, all Covered Individuals must Participate in the COVID-19 Vaccination Program by providing proof that vaccination requirements have been met or submitting a request for Exception or Deferral. Visit covid.lbl.gov for more information.
Berkeley Lab is committed to Inclusion, Diversity, Equity and Accountability (IDEA) and strives to continue building community with these shared values and commitments. Berkeley Lab is an Equal Opportunity and Affirmative Action Employer. We heartily welcome applications from women, minorities, veterans, and all who would contribute to the Lab's mission of leading scientific discovery, inclusion, and professionalism. In support of our diverse global community, all qualified applicants will be considered for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, or protected veteran status.
In the world of science, Lawrence Berkeley National Laboratory (Berkeley Lab) is synonymous with excellence. Thirteen scientists associated with Berkeley Lab have won the Nobel Prize. Fifty-seven Lab scientists are members of the National Academy of Sciences (NAS), one of the highest honors for a scientist in the United States. Thirteen of our scientists have won the National Medal of Science, our nation's highest award for lifetime achievement in fields of scientific research. Eighteen of our engineers have been elected to the National Academy of Engineering, and three of our scientists have been elected into the Institute of Medicine. In addition, Berkeley Lab has trained thousands of university science and engineering students who are advancing technological innovations across the nation and around the world. Berkeley Lab is a member of the national laboratory system supported by the U.S. Department of Energy through its Office of Science. It is managed by the University of California (UC) and is charged with conducting unclassified research across a wide range of scientific disciplines. Located on a 200-acre site in the hills above the UC Berkeley campus that offers spectacular... views of the San Francisco Bay, Berkeley Lab employs approximately 4,200 scientists, engineers, support staff and students. Its budget for 2011 is $735 million, with an additional $101 million in funding from the American Recovery and Reinvestment Act, for a total of $836 million. A recent study estimates the Laboratory's overall economic impact through direct, indirect and induced spending on the nine counties that make up the San Francisco Bay Area to be nearly $700 million annually. The Lab was also responsible for creating 5,600 jobs locally and 12,000 nationally. The overall economic impact on the national economy is estimated at $1.6 billion a year. Technologies developed at Berkeley Lab have generated billions of dollars in revenues, and thousands of jobs. Savings as a result of Berkeley Lab developments in lighting and windows, and other energy-efficient technologies, have also been in the billions of dollars. Berkeley Lab was founded in 1931 by Ernest Orlando Lawrence, a UC Berkeley physicist who won the 1939 Nobel Prize in physics for his invention of the cyclotron, a circular particle accelerator that opened the door to high-energy physics. It was Lawrence's belief that scientific research is best done through teams of individuals with different fields of expertise, working together. His teamwork concept is a Berkeley Lab legacy that continues today.