Cyber Security Engineer

Overview

The National Energy Research Scientific Computing Center (NERSC) at Lawrence Berkeley National Laboratory (LBNL) is inviting applications for the position of Cyber Security Engineer. NERSC’s mission is to accelerate scientific discovery through high performance computing and data analysis for the DOE Office of Science programs. NERSC provides critical HPC and data systems and support for NERSC’s 10,000 users researching alternative energy sources, climate science, energy efficiency, environmental science and other DOE mission areas.

In this exciting role, you will be involved in all aspects of cyber security at NERSC, working both independently and collaboratively with the security team to monitor for malicious and unauthorized activity, perform vulnerability scanning and application security testing, participate or lead responses to security incidents, provide security guidance to staff and end-users, perform security assessments and reviews, assist in remediation or mitigation of cyber security issues, and contribute to the NERSC strategy as we move to exascale and beyond.

At NERSC, you will work in a collaborative, interdisciplinary environment with opportunities to explore emerging technologies, cross-team projects, and attend NERSC seminars on a wide range of scientific and technical subjects.

• Perform security duties including monitoring for potential threats, examining network traffic and log data, investigating anomalous activity, forensic analysis, and resolution of security incidents.
• Support and/or lead cyber incident response activities, participating in the full incident response lifecycle, from initial detection through resolution and post-incident documentation.
• Maintain up-to-date awareness of cybersecurity threats and trends, assess emerging security issues to determine risk and impact, advise on response strategies, and coordinate mitigation across teams.
• Assist with vulnerability assessment activities, including configuration of scanning tools, assessment of vulnerabilities, prioritization and triage, and guiding remediation efforts with NERSC staff and end users.
• Participate in 24/7 on-call rotation, occasionally working outside of scheduled hours as needed.
• Contribute to design and development of NERSC’s security architecture, address operational gaps in monitoring and detection, and evaluate new cyber security tools and technologies.
• Participate or lead efforts to upgrade existing systems to meet evolving needs, including specification, purchase, installation, configuration, and deployment of new hardware and security services.
• Perform system administration tasks, troubleshooting, and hardware maintenance and support as needed; help maintain and manage existing cybersecurity systems using automation tools.
• Develop comprehensive documentation of the team’s technical systems, processes, and procedures.
• Develop and update IDS and monitoring rules based on emerging threats and incident data to ensure detection aligns with current attack vectors.
• Lead or support security initiatives, including a Zero Trust strategy, to reduce risk while enabling open science.
• Promote a strong security culture through outreach, technical consulting, and security awareness activities; provide guidance on security best practices and communicate policies to staff and users.
• Collaborate with NERSC system engineers and software developers to integrate cyber security tools and processes across the center.
• Conduct in-depth security reviews and risk assessments; document findings with actionable recommendations to mitigate risk.
• Serve as a security subject matter expert on cross-functional projects, ensuring security is considered across all phases.
• Contribute to cybersecurity requirements and maintain documentation in a central repository; create technical guides and resources for staff and users.
• May lead technical initiatives or projects in areas such as containerized environments, secure software practices, Zero Trust Architecture, and secure data movement in HPC workflows.

• Typically requires a minimum of 8 years of related experience with a Bachelor’s degree; or 6 years…