Argonne National Laboratory has an opportunity for a Lead Cyber Security Engineer within the Cyber Security Program Office (CSPO). The CSPO is a team responsible for identifying, detecting, protecting, responding, and recovering from cyber security incidents and risks at Argonne National Laboratory.

The Lead Cyber Security Engineer reports to the Deputy Chief Information Security Officer and will act as a leader for other engineers on the team. The lead engineer will help drive vision, strategy, and roadmap while ensuring the security requirements necessary to protect our organization are communicated, implemented, and effective. This role will work with many business, scientific, and IT groups across the Laboratory to identify security flaws and gaps in system or control design, develop proposals and plans for security changes, and recommend remediation or mitigations. This individual will also provide ownership and maturation of various security tools operated or developed by the cyber security team.

Key Responsibilities:

• Coordinate the day-to-day activities of contractors and reports to ensure tasks are completed

• Coach junior team members

• Manage the direction of a team in coordination with leadership

• Provide development, maturation, and ownership of designated security tools, platforms, or capabilities

• Assess the effectiveness of cyber security measures utilized by systems

• Provide guidelines for implementing secure systems

• Develop specific cyber security plans, countermeasures, and risk mitigation strategies for vulnerabilities, systems and/or applications and recommend security changes to system or system components as needed

• Assess threats to and vulnerabilities of computer systems to develop a security risk profile

• Determine the protection needs (i.e., security controls) for the information system(s) and network(s) and document appropriately.

• Evaluate security architectures and designs to determine the adequacy of security design and architecture in response to requirements

• Provide input on security requirements to be included in statements of work and other appropriate documents

Position Requirements

• Knowledge of cyber security and privacy principles, threats, and vulnerabilities.

• Knowledge of cyber security architecture, practices, tools, and techniques

• Knowledge of networking concepts and OS administration

• Knowledge of system administration, network, and operating system hardening techniques

• Skill in collecting and correlating data from a variety of resources

• Skill in conducting vulnerability scans and recognizing vulnerabilities in systems

• Skill in translating operational requirements into protection needs (i.e., security controls)

• Skill in evaluating the adequacy of security designs and how a system should work in various conditions or environments

• Skill in identifying security risks and business impact

• Skill in designing countermeasures to identified security risks

• Experience assessing security controls based on cyber security principles and frameworks (e.g. CIS CSC, NIST CSF, NIST SP 800-53, CMMC)

• Experience collaborating and working through both influence and control on cross-functional teams in order to achieve a common goal

• Proven ability to be highly responsive, meet deadlines, prioritize and manage the work of themselves and others

• Demonstrated excellence in planning and driving projects to successful outcomes

• Ability to skillfully communicate with various methods and audiences

• Ability to work well with others and facilitate conversation amongst a small group of professionals

• Ability to make decisions and solve problems

• Ability to model Argonne’s Core Values: Impact, Safety, Respect, Integrity, and Teamwork.

Preferred:

• Previous experience in scientific, research, or academic institutions

• Real-world experience in a major cloud environment (e.g., AWS or Microsoft Azure)

• Prior project management experience

• Knowledge of the NIST Cyber Security Framework

• Experience with organizational cyber security tools (e.g., Axonius, Splunk, Tenable.sc, CrowdStrike, etc.) and capabilities (e.g., VM, WAF, EDR, CASB, CAASM, CSPM, CNAAP, etc.)

• Experience with common design approaches (e.g., Agile, Waterfall) and secure development practices

Job Family

Job Profile

Worker Type

Time Type