Senior/Principal Cybersecurity Software Researcher - Cyber Threat Center, Onsite
Sandia National Laboratories
Albuquerque, USA
Job posting number: #7283797 (Ref:Sa694104)
Posted: October 11, 2024
Job Description
About Sandia:
Sandia National Laboratories is the nation’s premier science and engineering lab for national security and technology innovation, with teams of specialists focused on cutting-edge work in a broad array of areas. Some of the main reasons we love our jobs:
- Challenging work with amazing impact that contributes to security, peace, and freedom worldwide
- Extraordinary co-workers
- Some of the best tools, equipment, and research facilities in the world
- Career advancement and enrichment opportunities
- Flexible work arrangements for many positions include 9/80 (work 80 hours every two weeks, with every other Friday off) and 4/10 (work 4 ten-hour days each week) compressed workweeks, part-time work, and telecommuting (a mix of onsite work and working from home)
- Generous vacations, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance*
World-changing technologies. Life-changing careers. Learn more about Sandia at: http://www.sandia.gov*These benefits vary by job classification.
What Your Job Will Be Like:
Are you passionate about research dedicated to keeping systems safe and thwarting cyber intrusions? Are you dreaming of a chance to develop protective technologies, conduct threat assessments, and analyze government, military, and civilian computer networks? If so, this is the opportunity for you to join Sandia's unique multidisciplinary team committed to solving the information security challenges facing our nation. As part of our team, you will engage in work across the technology spectrum including embedded, mobile, desktop, enterprise, and cloud systems, as well as globally connected networks of networks.
To support Sandia's national security missions, our cybersecurity scientists and engineers engage in a variety of research areas including:
- Manual and automated reverse engineering, vulnerability assessment, and malware analysis Intrusion prevention/detection and response, penetration testing, and forensics
- Network operation, information protection, and resiliency
- Authentication and authorization
- Cryptography
- Side Channel Analysis
- Failure Analysis
- Threat intelligence
- Modeling, simulation, and emulation
- Data science, information theory, and streaming and behavioral analytics
- Hardware/software trust and assurance
- Real-time operating systems (RTOS) and embedded systems, including Internet of Things (IoT)
- Virtualization (system and network) and cloud technologies
- Mobile devices and smart technologies Autonomous systems
- Industrial control systems and SCADA systems
- Artificial Intelligence (AI) and AI Security
Applicants on this requisition may be interviewed by multiple organizations at Sandia National Laboratories. Due to the nature of the job, the selected candidate must be able to work onsite. Relocation will be provided to eligible candidates.
Salary Range:
$109,300 - $217,400
*Salary range is estimated, and actual salary will be determined after consideration of the selected candidate's experience and qualifications, and application of any approved geographic salary differential.
Qualifications We Require:
- Master’s degree in Computer Science/Engineering, Electrical Engineering, Mathematics, Cybersecurity or relevant STEM discipline plus 2 years of relevant experience, OR equivalent (Bachelor’s + 6 years).
- Experience with writing code in one or more of the following: C/C++, Java, Python, hardware languages, assembly, or other languages.
- Ability to obtain and maintain both a DOE Q security clearance and SCI security clearance, and have the willingness to take a polygraph exam, if requested.
Qualifications We Desire:
Ideally, we would like to see your background include some of the following:
- Demonstrate and proven research experience in cybersecurity field.
- Experience with assembly or operating system programming, application layer programming, Dev-Ops programming, and/or network layer programming,
- Experience with one or more of the following: reverse engineering, malware analysis, formal methods, or deciphering known and unknown file formats, data structures, and network protocols,
- Experience with one or more of the following:
- vulnerability research,
- system vulnerability assessments,
- high consequence high trust systems,
- mobile systems,
- embedded systems,
- OT/ICS/SCADA devices and systems,
- virtualization technologies,
- or firmware environments,
- Experience with one or more of the following:
- operating system design and security,
- driver development,
- low- level software debugging,
- hypervisor implementations,
- or memory management,
- Demonstrated experience and application of one or more of the following fields:
- data science,
- machine learning,
- information theory,
- and streaming and behavioral analytics,
- and network protocols,
- Defining new research directions, crafting research proposals, and presenting results of that research in a relevant area of cybersecurity
- Cyber relevant experience in Artificial Intelligence (AI) to include:
- AI Security,
- data engineering,
- and machine learning models.
- Active DOE Q or DoD TS security clearance and SCI security clearance, and have the willingness to take a polygraph exam, if requested.
About Our Team:
As a Federally Funded Research and Development Center (FFRDC), Sandia National Laboratories is continually asked to help address the country’s most pressing national security needs. In the Threat Intelligence Center, the mission of the Information Operations Program is to assess, design, implement and influence the development of national security-related information systems and technologies in support of Defense and Intelligence customers and their national security missions.
When applying to this requisition, you may be interviewed and/or hired into one of several groups contributing to the Information Operations mission in the Threat Intelligence Center:
- Cyber-Physical Mission R&D: The Cyber-Physical Mission R&D Group performs research and development to assess and protect Cyber-Physical Systems (CPS). We maintain a wide variety of skillsets and capabilities, which enables us to analyze CPS from a system view down to individual components. We provide innovative research and development in the cyber-physical domain for national security missions.
- Cyber Intelligence Research: Work in Cyber Intelligence Research Group involves the development and application of various software and hardware tools to analyze complex information systems and technologies for vulnerabilities as well as the development and transfer of solutions for the Nation's most critical information system challenges. These activities include research and development in computer security, computer network security, and vulnerability assessments.
- Microelectronics Protection Technologies: The Microelectronics Protection Technologies Group assesses, designs, and influences national-security-related information systems and technologies by developing and applying tools to analyze microelectronic devices and next layer assemblies for vulnerabilities; and developing and transferring solutions to help protect the nation’s most critical systems.
- Emerging Cyber Capabilities: The Emerging Cyber Capabilities (ECC) Group develops emergent, innovative cyber capabilities. Work within ECC involves synthesizing operational, experimental, threat, and vulnerability data into complex systems understanding for the assessment and protection of high consequence national security systems. The mission of this subprogram is diverse and adaptive, anticipating the evolving threat environments of our national security partners.
Posting Duration:
This posting will be open for application submissions for a minimum of seven (7) calendar days, including the ‘posting date’. Sandia reserves the right to extend the posting date at any time.
Security Clearance:
Sandia is required by DOE to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants for employment need to be able to obtain and maintain a DOE Q-level security clearance and SCI access, both of which require US citizenship. SCI access may also require a polygraph examination. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain these levels of access may be impacted.
Applicants offered employment with Sandia are subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by the DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment.
EEO:
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status and any other protected class under state or federal law.
NNSA Requirements for MedPEDs:
If you have a Medical Portable Electronic Device (MedPED), such as a pacemaker, defibrillator, drug-releasing pump, hearing aids, or diagnostic equipment and other equipment for measuring, monitoring, and recording body functions such as heartbeat and brain waves, if employed by Sandia National Laboratories you may be required to comply with NNSA security requirements for MedPEDs.
If you have a MedPED and you are selected for an on-site interview at Sandia National Laboratories, there may be additional steps necessary to ensure compliance with NNSA security requirements prior to the interview date.
Job ID: 694104
Job Family: RD
Regular/Temporary Position: R
Full/Part-Time Status: F
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.