Responsible for the analysis and development of the integration, testing, operations, and maintenance of systems security.
- Apply security policies to applications that interface with one another, such as Business-to-Business (B2B) applications.
- Apply security policies to meet security objectives of the system.
- Apply service-oriented security architecture principles to meet organization's confidentiality, integrity, and availability requirements.
- Ensure all systems security operations and maintenance activities are properly documented and updated as necessary.
- Perform security reviews of Industrial Control System (ICS) and Supervisory Control and Data Acquisition (SCADA), identify gaps in architecture, and develop an ICS/SCADA security risk management plan.
- Ensure that the application of security patches for commercial products integrated into system design meet the timelines dictated by the management authority for the intended operational environment.
- Ensure that cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.
- Implement specific cybersecurity countermeasures for systems and/or applications.
- Integrate automated capabilities for updating or patching system software where practical and develop processes and procedures for manual updating and patching of system software based on current and projected patch timeline requirements for the operational environment of the system.
- Perform cybersecurity testing of developed applications and/or systems.
- Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
- Plan and recommend modifications or adjustments based on exercise results or system environment.
- Properly document all systems security implementation, operations, and maintenance activities and update as necessary.
- Provide cybersecurity guidance to leadership.
- Provide input to the Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
- Verify and update security documentation reflecting the application/system security design features.
- Assess the effectiveness of security controls.
- Assess all the configuration management (change configuration/release management) processes.
- Develop procedures and test fail-over for system operations transfer to an alternate site based on system availability requirements.
- Analyze and report organizational security posture trends.
- Analyze and report system security posture trends.
- Assess adequate access controls based on principles of least privilege and need-to-know.
- Ensure the execution of disaster recovery and continuity of operations.
- Implement security measures to resolve vulnerabilities, mitigate risks, and recommend security changes to system or system components as needed.
- Implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation.
- Ensure the integration and implementation of Cross-Domain Solutions (CDS) in a secure environment.
- Mitigate/correct security deficiencies identified during security/certification testing and/or recommend risk acceptance for the appropriate senior leader or authorized representative.
- Assess and monitor cybersecurity related to system implementation and testing practices.
- Verify minimum security requirements are in place for all applications.
- Provides cybersecurity recommendations to leadership based on significant threats and vulnerabilities.
- Work with stakeholders to resolve computer security incidents and vulnerability compliance.
- Provide advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans.
Knowledge, Skillset, and Abilities (KSAs):
- Knowledge of computer networking concepts and protocols, and network security methodologies.
- Knowledge of Industrial Control System/Supervisory Control and Data Acquisition System threats, vulnerabilities, security controls and methods.
- Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
- Knowledge of cybersecurity and privacy principles.
- Knowledge of cyber threats and vulnerabilities.
- Knowledge of specific operational impacts of cybersecurity lapses.
- Knowledge of encryption algorithms
- Knowledge of cryptography and cryptographic key management concepts
- Knowledge of installation, integration, and optimization of system components.
- Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
- Knowledge of cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, nonrepudiation).
- Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).
- Knowledge of security system design tools, methods, and techniques.
- Knowledge of software engineering.
- Knowledge of the systems engineering process.
- Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
- Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.
- Knowledge of security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).
- Knowledge of Personally Identifiable Information (PII) data security standards.
- Knowledge of information technology (IT) risk management policies, requirements, and procedures.
- Knowledge of laws, policies, procedures, or governance relevant to cybersecurity for critical infrastructures.
- Knowledge of configuration management techniques.
- Knowledge of security management.
- Knowledge of developing and applying user credential management system.
- Knowledge of implementing enterprise key escrow systems to support data-at-rest encryption.
- Knowledge of an organization's information classification program and procedures for information compromise.
- Knowledge of countermeasure design for identified security risks.
- Knowledge of network design processes, to include understanding of security objectives, operational objectives, and trade-offs.
- Knowledge of how to use network analysis tools to identify vulnerabilities.
- Skill in designing the integration of hardware and software solutions.
- Skill in developing and applying security system access controls.
- Skill in evaluating the adequacy of security designs.
- Skill in assessing security systems designs.
- Skill in assessing security controls based on cybersecurity principles and tenets. (e.g., CIS CSC, NIST SP 800-53, Cybersecurity Framework, etc.).
- Skill in recognizing vulnerabilities in security systems. (e.g., vulnerability and compliance scanning).
- Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, nonrepudiation)
Specific Requirements:
Senior level experience in Security Information and Event Management (SIEM); Senior level experience as an Information System Security Manager (ISSM) and Security Control Assessments
Education and Related Experience for Each Level:
- Level 5 - PhD in a technical field and 2 to 5 years of related experience or Master’s degree in a technical field and 5 to 10 years of related experience or Bachelor’s degree in a technical field and 10 to 15 years of related experience or Associates degree in a technical field and 15 to 20 years of related experience. Requires demonstrated in depth knowledge and skills in a technical specialty. Recognized as an expert in their field.
- Level 6 - PhD in a technical field and 5 or more years of related experience or Master’s degree in a technical field and 10 or more years of related experience or Bachelor’s degree in a technical field and 15 or more years of related experience or Associates degree in a technical field and 20 or more years of related experience. Requires demonstrated in-depth knowledge and skills in a technical specialty. This level should be limited to a small population. Recognized as an expert in their field.
Clearance Requirement:
- Desired Dept. of Energy Q, required Dept. of Energy L.
Miscellaneous:
- Must be a U.S. citizen, at this time we are not accepting applications from Visa or Green Card holders.
Job Types: Full-time, Contract
Pay: $130,000.00 - $140,000.00 per year
Compensation package:
Schedule:
- 8 hour shift
- Monday to Friday
Application Question(s):
- Do you currently possess or have the ability to obtain a Dept. of Energy L or Q clearance?
Education:
Experience:
- Cybersecurity: 2 years (Required)
- Vulnerability management: 2 years (Required)
- Threat detection & response: 2 years (Required)
- designing the integration of hardware & software solutions: 2 years (Required)
- developing & applying security system access controls: 2 years (Required)
- assessing security systems designs: 2 years (Required)
- Cybersecurity principles (CIS CSC, NIST SP 800-53): 2 years (Required)
- recognizing vulnerabilities in security systems: 2 years (Required)
- SIEM / ISSM: 2 years (Required)
- IT Risk Management: 2 years (Required)
Ability to Commute:
- Oak Ridge, TN 37830 (Required)
Ability to Relocate:
- Oak Ridge, TN 37830: Relocate before starting work (Required)
Work Location: Hybrid remote in Oak Ridge, TN 37830