Senior Cyber Security Architect
Full/Part Time: Full-Time
Come and work for a billion-dollar international research institution with a diverse science portfolio with compelling missions across national security, energy, and environment. Our collaborative environment and commitment to work/life balance makes Pacific Northwest National Laboratory (PNNL) an ideal place to advance your career, pursue your passions, challenge yourself and make a difference in science and for our nation.
Our science and technology inspires and enables the world to live prosperously, safely and securely. Our discoveries not only change the way people think, they increase our nation’s energy capacity and improve our national security efforts, making the world a cleaner and safer place. Cyber Security is a PNNL Strategic Lab Objective in 2018 – PNNL is reshaping the cyber landscape by revealing adversary strategies and tactics, countering cyber adversaries leading in cyber analytics and situational awareness in support of DOE and the nation’s critical infrastructures.
The Cyber Security Architect is a key leader, influencer and cyber security practitioner. As a direct report to the PNNL Chief Information Security Officer (CISO), this individual will have the technical acumen, strategy and architecture skills as well as the interpersonal and influencing skills to drive continuous improvement in our capabilities and maturity as well as our Cyber Security Strategic Lab Objective and research priorities, Protecting PNNL infrastructure, systems, information and users and to Detect and Respond to cyber adversaries.
You are a seasoned IT and cyber security practitioner who has a foundation of diverse skills across IT in networking, systems engineering, operating systems, software engineering, etc. Further, you have worked across the cyber security domain space in governance, risk management and compliance (GRC), security operations, identity management, security architecture and engineering, secure systems and software development lifecycles, etc.
You are driven by your passion in cyber security and solving hard problems with creativity and innovation. You have a passion for the science and the national security mission of PNNL as a leading national laboratory in cyber security. Working cross-organizationally excites you, leveraging your strategy, architecture and technical skills to influence both IT security as well as the R&D and the science of cyber security at PNNL to build solutions for DOE and our sponsors across the cyber security problem space.
You @ PNNL
Your key responsibilities and accountabilities would include:
-Serve as a thought leader and senior cyber security subject matter expert, providing advisory and consulting services as required; Represents cyber security in the IT architecture council
-Keep abreast of cyber security trends across multiple domains, the emerging threat landscape and actively engage with the ecosystem (R&D, vendors, academia, etc.), understanding architecture roadmaps, technology direction, and investment to improve security capabilities and deliver cost effective solutions; maintain up to date knowledge of information vulnerabilities and adversary tactics, techniques and procedures (TTPs).
-You are a cyber security thought leader, technologist and you influence PNNL’s Cyber Security Lab Strategic Objective and provide vision for research investments across cyber security, computing analytics and our computing systems.
-You work closely at the intersection of research and IT and security operations, driving, influencing and championing research solutions deployed to security operations.
-Participate in the development IT strategy and capabilities planning and roadmaps based on forward looking business & security strategies to drive program and investment decisions
-Develop and produce high quality documentation for strategic security architecture vision, including blueprints, standards and frameworks that are aligned with overall business strategy
-Research and identify technical and administrative controls and take a risk-based approach to address existing vulnerabilities and compliance issues which are pertinent to PNNL’s environment
-Influences and consults with project managers and stakeholders to ensure that cybersecurity requirements defined early in the IT project lifecycle; ensures requirements are delivered as designed
-Analyzes business needs to plan security architecture requirements for systems. Collaborates with third party vendors, system developers, and users to select appropriate security solutions.
-Influence security controls for Industrial Control Systems (ICS)/Operations Technology (OT) environments as they converge with IT systems.
-Influences and leads PNNL’s IT cloud security strategy, ensuring our risk and compliance goals and requirements are met as we leverage the cloud
-Ensures that acquired or developed system(s) and architecture(s) are consistent with organization's cybersecurity architecture guidelines.
-Is a key partner to the Cyber security Risk and Policy and Security Operations Center teams; provides subject matter expertise and solves hard problems in GRC and Security Operations.
-Knowledge of network security architecture concepts including topology, protocols, components, and principles.
-Operating Systems knowledge and expertise in Windows, Unix or Linux
-Minimum of 7 years in the Information Security/Cyber Security field
Ultimately, success in this role comes as the cyber security capabilities and maturity across Protect, Detect and Respond at PNNL continuously improve and evolve in response to the changing threat, technology and business landscape. Your role and contributions will be evident and visible to all stakeholders. You will not only impact PNNL IT security but your impact will extend to leadership in our across R&D initiatives in cyber security. Further, your leadership, results and impact will be known across PNNL, our partners, our sponsors and in the cyber security industry.
Equal Employment Opportunity
Battelle Memorial Institute (BMI) at Pacific Northwest National Laboratory (PNNL) is an Affirmative Action/Equal Opportunity Employer and supports diversity in the workplace. All employment decisions are made without regard to race, color, religion, sex, national origin, age, disability, veteran status, marital or family status, sexual orientation, gender identity, or genetic information. All BMI staff must be able to demonstrate the legal right to work in the United States. BMI is an E-Verify employer. Learn more at jobs.pnnl.gov.
Technical field Bachelors of Science (B.S.) degree with 9-13 years of experience; Masters with 7-11 years of experience; PhD with 4-8 years of experience; MD with 0-3 years of experience OR 17 years of relevant experience in lieu of degree.
-Master’s Degree with 12+ years of experience in IT and Cyber Security
-At least one or more of the following professional certifications such as GSEC, GIAC, CISSP, CISM, SCNP or SSCP.
-Bachelor's degree or higher in Computer Science or related field in Information Management, Information Security or Cybersecurity from an accredited institution
-Experience architecting and implementing solutions in SIEMs, firewalls, DLP, IDS/IPS, and Vulnerability Management.
-Experience (or familiarity) with SANs ICS and NIST 800-82 R2 concerning industrial control systems.
-Familiarity and audit experience with NIST 800-53 Controls
-Knowledge of cryptography and encryption algorithms (e.g., IPSEC, AES, GRE, IKE, MD5, SHA, 3DES, etc.).
-Broad experience with identity Management architectures and solutions such as Microsoft Active Directory or similar; expertise in identity federation standards and solutions.
-Cloud services and security experience in Amazon AWS, Microsoft Azure & Office 365
-Software development/Engineering experience, particularly in secure design, development and testing practices, threat modeling, static analysis, fuzzing, etc.
Organization and Job ID
Job ID: 307708
Directorate: Communications & Information Technology
Division: Cyber Security
This position requires the ability to obtain and maintain a federal security clearance.
* U.S. Citizenship
* Background Investigation: Applicants selected will be subject to a Federal background investigation and must meet eligibility requirements for access to classified matter in accordance 10 CFR 710, Appendix B.
* Drug Testing: All Security Clearance (L or Q) positions will be considered by the Department of Energy to be Testing Designated Positions which means that they are subject to applicant, random, and for cause drug testing. In addition, applicants must be able to demonstrate non-use of illegal drugs, including marijuana, for the 12 consecutive months preceding completion of the requisite Questionnaire for National Security Positions (QNSP).
Note: Applicants will be considered ineligible for security clearance processing by the U.S. Department of Energy until non-use of illegal drugs, including marijuana, for 12 consecutive months can be demonstrated.