Lead Cyber Security Engineer
Argonne National Laboratory
Lemont, USA
Job posting number: #7208877 (Ref:417099)
Posted: January 20, 2024
Job Description
Argonne National Laboratory has an opportunity for a Lead Cyber Security Engineer within the Cyber Security Program Office (CSPO). The CSPO is a team responsible for identifying, detecting, protecting, responding, and recovering from cyber security incidents and risks at Argonne National Laboratory.
The Lead Cyber Security Engineer reports to the Deputy Chief Information Security Officer and will act as a leader for other engineers on the team. The lead engineer will help drive vision, strategy, and roadmap while ensuring the security requirements necessary to protect our organization are communicated, implemented, and effective. This role will work with many business, scientific, and IT groups across the Laboratory to identify security flaws and gaps in system or control design, develop proposals and plans for security changes, and recommend remediation or mitigations. This individual will also provide ownership and maturation of various security tools operated or developed by the cyber security team.
Key Responsibilities:
Coordinate the day-to-day activities of contractors and reports to ensure tasks are completed
Coach junior team members
Manage the direction of a team in coordination with leadership
Provide development, maturation, and ownership of designated security tools, platforms, or capabilities
Assess the effectiveness of cyber security measures utilized by systems
Provide guidelines for implementing secure systems
Develop specific cyber security plans, countermeasures, and risk mitigation strategies for vulnerabilities, systems and/or applications and recommend security changes to system or system components as needed
Assess threats to and vulnerabilities of computer systems to develop a security risk profile
Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.
Evaluate security architectures and designs to determine the adequacy of security design and architecture in response to requirements
Provide input on security requirements to be included in statements of work and other appropriate documents
Position Requirements
Knowledge of cyber security and privacy principles, threats, and vulnerabilities.
Knowledge of cyber security architecture, practices, tools, and techniques
Knowledge of networking concepts and OS administration
Knowledge of system administration, network, and operating system hardening techniques
Skill in collecting and correlating data from a variety of resources
Skill in conducting vulnerability scans and recognizing vulnerabilities in systems
Skill in translating operational requirements into protection needs (i.e., security controls)
Skill in evaluating the adequacy of security designs and how a system should work in various conditions or environments
Skill in identifying security risks and business impact
Skill in designing countermeasures to identified security risks
Experience assessing security controls based on cyber security principles and frameworks (e.g. CIS CSC, NIST CSF, NIST SP 800-53, CMMC)
Experience collaborating and working through both influence and control on cross-functional teams in order to achieve a common goal
Proven ability to be highly responsive, meet deadlines, prioritize and manage the work of themselves and others
Demonstrated excellence in planning and driving projects to successful outcomes
Ability to skillfully communicate with various methods and audiences
Ability to work well with others and facilitate conversation amongst a small group of professionals
Ability to make decisions and solve problems
Ability to model Argonne’s Core Values: Impact, Safety, Respect, Integrity, and Teamwork.
Preferred:
Previous experience in scientific, research, or academic institutions
Real-world experience in a major cloud environment (e.g., AWS or Microsoft Azure)
Prior project management experience
Knowledge of the NIST Cyber Security Framework
Experience with organizational cyber security tools (e.g., Axonius, Splunk, Tenable.sc, CrowdStrike, etc.) and capabilities (e.g., VM, WAF, EDR, CASB, CAASM, CSPM, CNAAP, etc.)
Experience with common design approaches (e.g., Agile, Waterfall) and secure development practices
Job Family
Professional Technical (PT)Job Profile
Computing Security 4Worker Type
RegularTime Type
Full timeAs an equal employment opportunity and affirmative action employer, and in accordance with our core values of impact, safety, respect, integrity and teamwork, Argonne National Laboratory is committed to a diverse and inclusive workplace that fosters collaborative scientific discovery and innovation. In support of this commitment, Argonne encourages minorities, women, veterans and individuals with disabilities to apply for employment. Argonne considers all qualified applicants for employment without regard to age, ancestry, citizenship status, color, disability, gender, gender identity, gender expression, genetic information, marital status, national origin, pregnancy, race, religion, sexual orientation, veteran status or any other characteristic protected by law.
Argonne employees, and certain guest researchers and contractors, are subject to particular restrictions related to participation in Foreign Government Sponsored or Affiliated Activities, as defined and detailed in United States Department of Energy Order 486.1A. You will be asked to disclose any such participation in the application phase for review by Argonne's Legal Department.
All Argonne offers of employment are contingent upon a background check that includes an assessment of criminal conviction history conducted on an individualized and case-by-case basis. Please be advised that Argonne positions require upon hire (or may require in the future) for the individual be to obtain a government access authorization that involves additional background check requirements. Failure to obtain or maintain such government access authorization could result in the withdrawal of a job offer or future termination of employment.
Argonne is an equal opportunity employer, and we value diversity in our workforce. As an equal employment opportunity and affirmative action employer, Argonne National Laboratory is committed to a diverse and inclusive workplace that fosters collaborative scientific discovery and innovation. In support of this commitment, Argonne prohibits discrimination or harassment based on an individual's age, ancestry, citizenship status, color, disability, gender, gender identity, genetic information, marital status, national origin, pregnancy, race, religion, sexual orientation, veteran status or any other characteristic protected by law.