Defense Programs Cyber Security Systems Admin - Aiken, United States - Savannah River Nuclear Solutions

Description

30-Apr-2024

Engineering

9273BR

Who We Are

As the Savannah River Site's management and operations contractor since 2008, Savannah River Nuclear Solutions (SRNS) makes the world safer. With safety and security in the forefront, SRNS develops innovative approaches to deliver on our environmental commitments and nuclear materials challenges; supplies products and services necessary to maintain the nation's nuclear deterrent; secures nuclear materials to prevent unwanted proliferation; and transforms nuclear materials into assets and stable wasteforms.

The SRNS workforce is highly capable, engaged, and adaptable to meet existing and expanding missions. SRNS employees apply superior expertise and innovative solutions to complex and challenging national and global issues. We have the knowledge to address a range of national and international nuclear issues. We make the world safer - and you can, too.

What You'll Do in This Position

The role will be supporting the

SRS Defense Programs Computing Assurance and Operations Security Systems Domain Controllers, Member Servers, Workstations, Industrial Control Systems (ICS), instrumentation systems, etc.
* Ensure that the confidentiality, integrity, and availability of information systems are protected from unauthorized access or disclosure
* Implement and enforce policies and procedures reflecting the legislative intent of applicable laws and regulations
* In charge of the day-to-day operations of cybersecurity systems
* Developing, implementing, and documenting security procedures for the organization
* Ensuring the systems are operated in accordance with security best practices
* Ensure all systems are compliant with applicable approved baselines
* Conduct and support vulnerability scanning and patching of Operation Technology Systems
* Monitoring systems and running and testing regular backups
* Support the development of firewalls to secure network infrastructure, maintain an awareness of new intrusion methods, and supports the development of Protection Plans
* Responsible for either generating and/or coordinating the compiling of all document deliverables required for Certification & Authorization (C&A)
* Process, track, and manage C&A packages for applicable systems
* Participate in an information security risk assessments during the C&A process
* Perform analysis of log files from a variety of sources, to include individual host logs, network traffic logs, firewall logs, and intrusion detection system logs
* Report lost, missing, or compromised information systems to the Information System Security Officer (ISSO)
* Managing individual user accounts and system access in accordance with least privilege
* Collaborating with security team members
* Testing and maintaining firewalls and antivirus software
* Implementing security training
* Researching new security risks
* Ability to maintain Hardware and Software lists
* Interpret System Assessment Report and report possible threats, vulnerabilities, and intrusion
* Suggesting improvements for security weaknesses
* Identifying opportunities for better efficiency
* Develop conventional engineering and scientific solutions to technical task objectives.
* Learn specific Division/Department systems and requirements for accomplishing tasks.
* Assist more senior technical personnel in performing related activities in more complex tasks.
* Accept delegated technical responsibility for a limited phase of a scientific or an engineering program.
* Support engineers or scientists performing related phases of a program.
* Assist in study, development, testing and analyses of designs, processes or procedures relating to a limited phase of a group's function.
* Organize and accept responsibility for the accuracy of limited technical analyses, and evaluation of results using standard techniques and procedures.
* Make scientific, engineering and design calculations.
* May prepare project cost proposal in an assigned area. * Assist in the preparation of technical manuals, reports and procedures.
* May advance technology within assigned area through the medium of patent disclosures, preparation and presentation of technical papers, articles and talks.

Security Clearance Information

SRNS is required by DOE to conduct a pre-employment drug test and background review that includes checks of personal references, credit, criminal records, and employment history, and education verifications. Positions with SRNS may require applicants to obtain and maintain a DOE L or Q-level security clearance, which requires U.S. citizenship. Factors such as pre-employment background review results, dual citizenship status, and unpaid and/or unfiled taxes may impact your ability to obtain a security clearance. This list of factors is not exhaustive; pre-employment information and security clearance requests are reviewed on a case-by-case basis.

Clearance Required to Perform Job

Q

Qualifications We Require

Bachelor degree in applicable science or engineering discipline

Other Qualifications

Bachelor's degree in Cybersecurity, Information Security/Assurance, Computer Engineering, Network Administration, or equivalent from an accredited college or university
*Sound technical knowledge base of Cyber Security discipline's standard concepts, principles and techniques. Ability to apply formal training.
*Knowledge of Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG) *Knowledge and/or use of Nessus and Paragon *Previous experience scanning for vulnerabilities and mitigating them to the lowest acceptable level.
*Previous experience with use of Scanning Tools.
*Previous experience creating Risk Assessment Reports (RAR)
*Previous experience with Splunk and Tenable Security Center
*Previous experience implementing and maintaining System Security Plans (SSPs)
*Previous experience gathering supporting artifacts for security controls, Certification and Authorization (C&A), and Authority to Operate (ATO)
* Knowledge of Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG)
* Knowledge of Nessus and Paragon
* Previous experience creating Risk Assessment Reports (RAR)
* Previous experience implementing and maintaining System Security Plans (SSPs)
* Previous experience gathering supporting artifacts for security controls, C&A, and Authority to Operate (ATO)
* Working knowledge of Cyber Security best practices and the ability to ensure implementation
* Advise Information System Owners, Subject Matter Experts, and System Engineers on correcting findings during monthly and quarterly cyber audits and artifact collection
* Working knowledge of policies and procedures as it pertains to the Federal Information Security Management Act (FISMA)
*Working knowledge of the security controls in NIST Special Publication and
*Working knowledge of Authorization Boundaries and the ability to ensure compliance with all regulations
*Ability to work independently with minimal oversight and direction
*Ability to see issues through to closure and work with the team to deliver positive results
*Outgoing and positive attitude required
*CompTIA Security+ or CompTIA CySa+

Qualifications We Desire

*Master's degree Cybersecurity, Information Security/Assurance, Computer Engineering, Network Administration, or equivalent from an accredited college or university
*System Management knowledge of Distributed Control Systems (e.g. Emerson DeltaV or Novatech D3) and Information Technology Networking.
*ISC2 CISSP or CompTIA CASP+

What We Offer

Savannah River Nuclear Solutions (SRNS) Benefits team is constantly assessing trends in the benefits area to provide the best possible services to our workforce. We ensure high quality outcomes of each service provider by consistent monitoring and oversite for positive results. We also negotiate cost effective premiums that will meet the needs of our evolving workforce. Your SRNS Health & Welfare benefits provide peace of mind and financial protection for you and your family. Some of the Benefits offered to full service employees include:

- Medical, Dental, and Vision insurance options
- Critical Illness and Accident Insurance
- Employer paid life insurance with buy up options
- Employer paid Short Term and Long Term Disability
- 401(k) with Employer Match
- Various wellness programs
- Paid Time Off and Holidays
- Discounts and other supplemental benefits

SRNS employees are critical to the success of SRNS, all while making the world a safer place. The work that we do every day makes a difference.

Standards of Excellence

The SRNS vision states that we will "be the standard of excellence in nuclear materials management by delivering knowledge, innovation and experience." This is underpinned by the recognition that everything we do relies on our employees and how they demonstrate the SRNS Standards of Excellence every day.

Built on the foundation of safety and security, each employee is expected to:
Model Excellence by demonstrating the highest standards and values in work and promoting them within the organization and to the customer.
Deliver Results by meeting customer expectations to ensure objectives, goals and deadlines are met while being good stewards of resources.
Energize and Recognize Teams through growing organizational strength and recognizing continued excellence.
Build Relationships by developing relationships with coworkers and customers to foster a respectful workplace.
Shape the Future by creating a diverse, innovative and integrated workforce that fosters mission success and company growth.

Note:

SRNS is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status. SRNS is also committed to making our workplace accessible to individuals with disabilities and will provide reasonable accommodations, upon request, for individuals to participate in the application and hiring process. To request such an accommodation, you may contact us by phone at , or by e-mail at

Job Expires

08-May-2024