Experience Inc. Jobs

Job Information

Pacific Northwest National Laboratory Cyber Security Analyst 2 in Richland, Washington

Overview

The Computing and Information Technology Directorate works to re-imagine how digital technologies can simplify the research experience, enable data-driven insights for decision makers, and accelerate PNNL’s research missions. CIT helps connect staff to systems while enabling a broader research computing ecosystem to improve productivity and provide a sense of community.

PNNL's Computing & Information Technology Directorate (CITD) enables and accelerates PNNL's research and mission through computing and technology solutions that enable personal productivity and flexible work. The Cybersecurity Group, led by the Chief Information Security Officer (CISO) is part of the Cybersecurity & DigitalOps division in CITD, and protects and defends PNNL's systems, networks, data, staff, and reputation from constantly changing and evolving threats and cyber adversaries.

PNNL’s Cybersecurity group is looking for a talented Security Controls Assessor – Cyber Analyst to join the Cyber Risk Identification & Analysis team. The role supports the conduction of comprehensive assessments of the management, operational, and technical security controls employed within or inherited in an Information System to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the system security requirements).

This critical role is an early career level position on a growing team of experienced cyber security experts with a culture of collaboration, creativity, agility, and professional delivery. Our Cyber Analysts have the flexibility and expectation to be on the forefront of current enhancements within the cyber domain - this includes having a broad set of skills that can be applied in other areas of the Cybersecurity group. Your contributions at the Lab will directly contribute to PNNL’s successful support of diverse sponsor missions both domestically and internationally.

Responsibilities

  • Develop and execute on detailed Security Assessment Plans including the development of assessment methods appropriate to the desired level of assurance.

  • Perform independent security and privacy control assessments in support of Security Authorization.

  • Assess the implementation of security controls for a wide range of applications and general support systems using manual and automated test methods.

  • Conduct assessments of existing and new FISMA systems, including subsystems in the respective system boundary, and communicate the results and potential implications of identified control weaknesses.

  • Collect assessment evidence, working with various stakeholders as necessary and performing interviews of information system support staff.

  • Draft comprehensive Security Assessment Reports detailing assessment findings, providing an accurate technical evaluation of the system's security posture, clearly describing any identified deviations and/or weaknesses and potential impacts and/or risks, and recommending corrective actions as appropriate.

  • Document and provide findings and recommendations that are concise, system-specific, and actionable.

  • Actively contribute to the continuous evaluation and improvement of the Cyber Risk Identification & Analysis team.

  • Participate in cross-team collaboration and matrixing opportunities to identify more effective or efficient methods of cybersecurity execution.

Qualifications

Minimum Qualifications:

  • BS/BA and 2 years of relevant experience -OR-

  • MS/MA -OR-

  • PhD

Preferred Qualifications:

  • Experience in planning assessments and being a contributor amongst a team of security control assessors.

  • Experience in presenting control requirements and deficiencies to both technical and non-technical audiences.

  • Experience performing detailed, full-scope technical security control testing in complex environments, including development of security and privacy assessment plans.

  • Experience conducting or supporting Security Test & Evaluations as an assessor or in the capacity as an Information System Security Officer.

  • Familiarity and ability to analyze information system configurations and technical specifications against NIST SP 800-53 and related frameworks (e.g., Privacy, Cyber Supply Chain).

  • Possesses a strong understanding of the NIST Special Publication 800-53 security and privacy controls, the NIST Cybersecurity Framework and other information security and privacy laws and regulations.

  • Experience with development and writing of risk-based documentation.

  • Experience performing Security Authorization activities, including risk assessments, developing Security Plans, and developing or reviewing Authorization documentation.

  • Knowledge of current industry methods for evaluating, implementing, and disseminating information technology security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.

  • Certifications related to cybersecurity auditing (e.g., CISA) or cybersecurity in general (e.g. CISSP)

Hazardous Working Conditions/Environment

Not Applicable

Additional Information

This position requires the ability to obtain and maintain a federal security clearance.

Requirements:

  • U.S. Citizenship

  • Background Investigation: Applicants selected will be subject to a Federal background investigation and must meet eligibility requirements for access to classified matter in accordance with 10 CFR 710, Appendix B.

  • Drug Testing: All Security Clearance positions are Testing Designated Positions, which means that the candidate selected is subject to pre-employment and random drug testing. In addition, applicants must be able to demonstrate non-use of illegal drugs, including marijuana, for the 12 consecutive months preceding completion of the requisite Questionnaire for National Security Positions (QNSP).

Note: Applicants will be considered ineligible for security clearance processing by the U.S. Department of Energy until non-use of illegal drugs, including marijuana, for 12 months can be demonstrated.

Testing Designated Position

This position is a Testing Designated Position (TDP). The candidate selected for this position will be subject to pre-employment and random drug testing for illegal drugs, including marijuana, consistent with the Controlled Substances Act and the PNNL Workplace Substance Abuse Program.

About PNNL

Pacific Northwest National Laboratory (PNNL) is a world-class research institution powered by a highly educated, diverse workforce committed to the values of Integrity, Creativity, Collaboration, Impact, and Courage. Every year, scores of dynamic, driven people come to PNNL to work with renowned researchers on meaningful science, innovations and outcomes for the U.S. Department of Energy and other sponsors; here is your chance to be one of them!

At PNNL, you will find an exciting research environment and excellent benefits including health insurance, and flexible work schedules. PNNL is located in eastern Washington State—the dry side of Washington known for its stellar outdoor recreation and affordable cost of living. The Lab’s campus is only a 45-minute flight (or 3 hour drive) from Seattle or Portland, and is serviced by the convenient PSC airport, connected to 8 major hubs.

Commitment to Excellence, Diversity, Equity, Inclusion, and Equal Employment Opportunity

Our laboratory is committed to a diverse and inclusive work environment dedicated to solving critical challenges in fundamental sciences, national security, and energy resiliency. We are proud to be an Equal Employment Opportunity and Affirmative Action employer. In support of this commitment, we encourage people of all racial/ethnic identities, women, veterans, and individuals with disabilities to apply for employment.

Pacific Northwest National Laboratory considers all applicants for employment without regard to race, religion, color, sex (including pregnancy, sexual orientation, and gender identity), national origin, age, disability, genetic information (including family medical history), protected veteran status, and any other status or characteristic protected by federal, state, and/or local laws.

We are committed to providing reasonable accommodations for individuals with disabilities and disabled veterans in our job application procedures and in employment. If you need assistance or an accommodation due to a disability, contact us at careers@pnnl.gov .

Drug Free Workplace

PNNL is committed to a drug-free workplace supported by Workplace Substance Abuse Program (WSAP) and complies with federal laws prohibiting the possession and use of illegal drugs.

If you are offered employment at PNNL, you must pass a drug test prior to commencing employment. PNNL complies with federal law regarding illegal drug use. Under federal law, marijuana remains an illegal drug. If you test positive for any illegal controlled substance, including marijuana, your offer of employment will be withdrawn.

HSPD-12 PIV Credential Requirement

In accordance with Homeland Security Presidential Directive 12 (HSPD-12) and Department of Energy (DOE) Order 473.1A, new employees are required to obtain and maintain a HSPD-12 Personal Identity Verification (PIV) Credential. To obtain this credential, new employees must successfully complete and pass a Federal Tier 1 background check investigation. This investigation includes a declaration of illegal drug activities, including use, supply, possession, or manufacture within the last year. This includes marijuana and cannabis derivatives, which are still considered illegal under federal law, regardless of state laws.

Mandatory Requirements

Please be aware that the Department of Energy (DOE) prohibits DOE employees and contractors from having any affiliation with the foreign government of a country DOE has identified as a “country of risk” without explicit approval by DOE and Battelle. If you are offered a position at PNNL and currently have any affiliation with the government of one of these countries, you will be required to disclose this information and recuse yourself of that affiliation or receive approval from DOE and Battelle prior to your first day of employment.

Rockstar Rewards

Employees and their families are offered medical insurance, dental insurance, vision insurance, health savings account, flexible spending accounts, basic life insurance, disability insurance, employee assistance program, business travel insurance, tuition assistance, supplemental parental bonding leave, surrogacy and adoption assistance, and fertility support. Employees are automatically enrolled in our company funded pension plan and may enroll in our 401k savings plan. Employees may accrue up to 120 vacation hours per year and may receive ten paid holidays per year.

  • Research Associates excluded.

**Once eligibility requirements are met.

Click Here For Rockstar Rewards (https://careers.pnnl.gov/rockstar-rewards)

Notice to Applicants

PNNL lists the full pay range for the position in the job posting. Starting pay is calculated from the minimum of the pay range and actual placement in the range is determined based on an individual’s relevant job-related skills, qualifications, and experience. This approach is applicable to all positions, with the exception of positions governed by collective bargaining agreements and certain limited-term positions which have specific pay rules.

As part of our commitment to fair compensation practices, we do not ask for or consider current or past salaries in making compensation offers at hire. Instead, our compensation offers are determined by the specific requirements of the position, prevailing market trends, applicable collective bargaining agreements, pay equity for the position type, and individual qualifications and skills relevant to the performance of the position.

Minimum Salary

USD $111,600.00/Yr.

Maximum Salary

USD $178,300.00/Yr.

DirectEmployers