Cyber Security Analyst, Intermediate

Savannah River National Laboratory is seeking to hire a Cyber Security Analyst. The Analyst is responsible for designing, implementing, and maintaining robust security controls within a highly sensitive and air-gapped enterprise environment. This role is critical in safeguarding the integrity, confidentiality, and availability of information systems by ensuring that security measures are effectively integrated throughout the system development lifecycle (SDLC). The ISSE will work within an air-gapped environment, meaning the systems are physically or logically isolated from unsecured networks, including the internet.

• Security Architecture and Design: Design, develop, and implement secure environments within the air-gapped enterprise, applying relevant security frameworks like RMF, NIST, and ISO 27001. Develop strategies for complex security challenges unique to air-gapped systems and enforce secure relations for data transfer.
• Security Control Implementation and Maintenance: Implement and enforce security controls to protect sensitive information. Ensure compliance with security guidelines like STIGs and SRGs. Configure and troubleshoot security infrastructure, including specialized systems for air-gapped operations. Perform and review technical security assessments.
• Compliance and Authorization: Develop security requirements and maintain detailed documentation such as SSPs. Prepare and review authorization documentation according to regulations. Support authorization activities and participate in security audits.
• Incident Response and Risk Management: Assess and mitigate system security threats and risks. Respond to and investigate security incidents, implementing procedures considering air-gapped constraints. Research remediation options for vulnerabilities.
• Collaboration and Communication: Work closely with other IT professionals to ensure secure practices. Collaborate with stakeholders to align security initiatives with operational needs. Provide expert support and communicate effectively on security matters. 

Minimum Qualifications:

• Bachelor's degree in a relevant field of study and 4-6 years of relevant work experience.
• Technical Skills: Understanding of security architectures, encryption, firewalls, and IDS/IPS. Expertise in vulnerability assessment and penetration testing. Knowledge of network security protocols and secure coding practices. Familiarity with cloud security principles (if applicable). Proficiency with security tools like SIEM and endpoint protection, including Splunk and Elastic SIEM. Experience applying STIGs. Strong understanding of risk management and the challenges of air-gapped networks.
• Certifications: DoD 8570 compliance with [Specify IASAE Level] certification (e.g., CISSP, CASP). 
• Soft Skills: Excellent communication and interpersonal skills. Strong attention to detail and adaptability. Ability to multi-task and identify non-compliance solutions. 
• Experience with security frameworks like JSIG, NIST SP 800 Series, and CNSSI 1253. 
• For ability to obtain and maintain a security clearance, US Citizenship is Legally Required

Preferred Qualifications:

• Cloud Service Provider Associate Certification
• Experience with containerization and zero-trust architectures.
• Splunk or Tenable Certifications.
• Experience with SECOPS administrative processes.
• Active DOE Clearance

"We put science to work!" 

Savannah River National Laboratory (SRNL) is a multi-program laboratory applying state of the art science and practical, high-value, cost-effective solutions to complex technical problems to protect the nation. Located at the U.S. Department of Energy’s (DOE) Savannah River Site (SRS) in Aiken SC, the laboratory develops and deploys innovative technologies to address some of the nation’s environmental, energy, and national security challenges.

Battelle Savannah River Alliance (BSRA) is constantly assessing trends to provide the best possible benefits to our workforce. We also negotiate cost effective premiums that will meet the needs of our evolving workforce. 

Some of the *Benefits offered to employees include:

*Benefits vary based upon employment status

• Highly competitive Medical, Dental, and Vision options including HSA options with company provided seed
• Short- & Long-Term Disability (company paid)
• Life Insurance Non-Contributary 1X salary (company paid)
• AD&D Non-contributary 1x salary (company paid)
• Savings & Investment plan:
• Qualified Non-Elective Company Contribution of 5% each pay period with immediate vesting
• Company match 50 cents/dollar up to 8% (3 yrs. vesting in company match)
• Contributory Life Insurance up to 5x Salary with $1M Cap
• Contributory AD&D (employee, spouse and children)
• Paid Time Off
• Employee Assistance Plan
• SRNL offers a competitive relocation package to ease the transition process. Domestic and international relocation assistance is available for certain positions. 

For more information about our benefits, working here, and living here, visit the “About” tab at www.srnl.doe.gov.

BSRA is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status. BSRA is also committed to making our workplace accessible to individuals with disabilities and will provide reasonable accommodations, upon request, for individuals to participate in the application and hiring process. Please email us at SRNLRecruiting@srnl.doe.gov with any questions regarding the hiring process or to request an accommodation.