Cybersecurity Analyst

Does a career focused on changing the world's energy future intrigue you? If so, we might have just the opportunity you're looking for!

Our team works on-site 9x80 schedule located at our REC facility with every other Friday off!

Responsibilities Include:

Idaho National Laboratory (INL) is seeking a software/security engineer to join the Cyber Operations and Incident Response department in the CyberCore division. This position will support development of tools and analytics in the domain of cybersecurity-oriented network traffic analysis. 

• Includes development of the open-source Malcolm network traffic analysis tool suite and writing network protocol analyzers for the Industrial Control Systems Network Protocol Parsers (ICSNPP) project.
• Additional responsibilities include operational support deploying these and other tools in networks operated by public- and private-sector partners, and in designing and implementing integrations with other National and Homeland Security cybersecurity projects.
• As a member of the Cyber Operations and Incident Response department, you will participate in our mission to enable the cyber resiliency of critical infrastructure for the United States through the development of innovative tools and analytics focused on providing visibility into application protocol traffic found in operational technology (OT) and information technology (IT) networks. Our department's vision is to apply the lessons of today to enhance the cyber resilience of tomorrow's critical infrastructure.
• In this role, your responsibilities will include:
• Working with a small team of peers in the design, development, and maintenance of software tools in the area of network traffic analysis and intrusion detection
• Researching and interfacing with a wide variety of open-source tools and libraries
• Researching and developing protocol analyzers for OT application protocols
• Analyzing network traffic associated with known exploited vulnerabilities and creating detectors for these exploits.
• Designing and creating analytics and visualizations to highlight security-oriented network events.
• Working with public sector and private industry partners in the industrial control systems space to assist in instrumenting networks with traffic capture and analysis.
• Responding to requests from the projects' communities in the form of: bug reports, engagement on public chat channels, and presenting at conferences and other outreach opportunities
• Facilitating the creation and dissemination of documentation and training materials.

Minimum Requirements:

• PR0300: Bachelor's degree and 5 years of experience or advanced degree and 3 years of experience.
• PR0400: Bachelor's degree and 8 years of experience or advanced degree and 6 years of experience.
• Preferred degree disciplines are Computer Science/Engineering, Math, or other technical degree with a strong Computer Science background. 

Experience with:

• Networking skills
• Understanding of network protocols and data structures
• Experience with tools and concepts in network traffic analysis
• Packet capture (PCAP) files
• Wireshark, tcpdump, netsniff, etc.
• Network configuration
• Network segmentation
• Routing/switching
• Programming
• Scripting in Python and/or Bash
• Object Oriented Programming
• Cybersecurity Fundamentals
• Linux
• Software Containers (e.g., Docker, Kubernetes, Singularity, etc.)
• This position requires the ability to obtain and maintain a Department of Energy "Q" clearance which requires US Citizenship. When required, must be able to work in a secure work environment to include handling/storing/processing classified and CUI information, and adhere to physical and electronic protection standards.

Preference for experience in: 

• Cloud (e.g., AWS, Azure, Google, Oracle, etc.)
• Industrial control systems technology or internet of things
• Machine learning
• Dev Ops / CICD
• API development
• Working with open-source software
• Writing documentation and training materials
• SIEM
• Source and version control (e.g., Git)
• IDS tools (e.g., Zeek/Corelight, Suricata, Snort, YARA, etc.)

Job Information

• PR0300 - Salary Grade - 210 ($95,928 - $158,232) OR PR0400 - Salary Grade - 220 ($110,316 - $181,956)
• Chosen applicants are required to show a demonstrated commitment to valuing diversity and contributing to an inclusive working environment.
• TDP: This is a testing designated position; you will be required to submit to a pre-employment drug screen and periodic drug testing throughout the term of your employment.
• Multi-Level: This is a multi-level posting and the selected candidate will be placed at the appropriate level dependent on depth and breadth of proven experience and skills.

INL Overview:

INL is a science-based, applied engineering national laboratory dedicated to supporting the U.S. Department of Energy's mission in nuclear energy research, science, and national defense. With more than 5,000 scientists, researchers, and support staff, the laboratory works with national and international governments, universities and industry partners to discover new science and development technologies that underpin the nation's nuclear and renewable energy, national security, and environmental missions.

INL Mission:

Our mission is to discover, demonstrate and secure innovative nuclear energy solutions, other clean energy options and critical infrastructure.

INL Vision:

Our vision is to change the world's energy future and secure our nation's critical infrastructure.

Selective Service Requirements:

To be eligible for employment at INL men born after December 31, 1959 must have registered with the Selective Service System (SSS). For more information see www.sss.gov.

Equal Employment Opportunity:

INL is an Equal Employment Opportunity (EEO) employer. It is the policy of INL to provide EEO to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information. Women and People of Color are strongly encouraged to apply.

Reasonable Accommodation:

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Other Information:

When applying to positions please provide your resume and answer all questions on the following screens. Applicants who fail to provide a resume or answer the questions, may be deemed ineligible for consideration.

INL does not accept resumes from third party vendors unsolicited.

Benefits & Salary:

We have an extremely competitive salary structure, robust relocation package, and a phenomenal benefits package. For more information, please visit: https://www.inl.gov/careers/benefits-overview

.