Get new jobs for this search by email

The Cyber Security Specialist II will provide comprehensive support for the Enterprise Information Services at the DOE's Savannah River Operations Office (SRS). This role encompasses various aspects of vulnerability management, security configuration, cyber security awareness, and policy development within the framework of DOE Cyber Security Programs (CSP) and Risk Management Framework. · Spearhead comprehensive security assessments to identify vulnerabilities and ensure compliance with industry standards. · Conduct thorough risk assessments and security audits for various systems, applications, and networks. · Lead a team of security professionals in performing penetration tests and vulnerability assessments. · Develop, maintain, and enforce security policies and procedures. · Collaborate with cross-functional teams to provide expert advice on security best practices and mitigation strategies. · Analyze security breaches to recommend efficient solutions and improvements. · Prepare detailed assessment reports and present findings to senior management. · Stay up-to-date with the latest developments in cyber security threats, tools, and methodologies. · Mentor and train junior staff to build a strong cyber security team. · Conduct vulnerability management activities, including network scanning, notifying responsible parties, tracking remediation efforts, and generating validation reports. · Support security configuration management through research, development of security baselines, executing configuration scans, and managing issue resolution. · Create and deliver tailored cyber security awareness training programs. · Engage in security activities across the System Development Life Cycle (SDLC) aligned with DOE CSP and Risk Management Framework. · Assist the DOE Oversight function, overseeing site tenant systems and cyber security measures. · Participate in penetration testing, forensic analysis, and incident response activities to strengthen security posture. · Develop, review, and implement security-related policies, procedures, SOPs, and other necessary documentation. · Perform additional duties as assigned by the Program Manager or DOE Counterpart. · Participate in relevant meetings, trainings, and conferences to enhance skillset and network with industry professionals. Qualifications: Strong understanding of vulnerability management, from initial scanning to remediation tracking and validation. Knowledgeable about security configuration management, including baseline research and development. Experience in developing and delivering cyber security awareness training. Up-to-date knowledge of current cyber security trends, threats, and mitigation strategies. Familiarity with DOE Cyber Security Programs (CSP) and Risk Management Framework. Experience in penetration testing, forensic analysis, and incident response. Proven ability to develop and review policies, procedures, and other program documentation. Excellent communication skills to effectively convey complex security concepts. Ability to work independently and as part of a team to meet organizational goals and objectives. Ability to handle multiple tasks and prioritize accordingly. Strong attention to detail and organizational skills. Capable of standing, sitting, and working with computers for extended periods. Clearance: • Must possess (or be able to obtain) a “Q” level security clearance. Education: • Bachelor's degree in Information Technology, Computer Science, or related technical field. Relevant experience may be substituted for bachelor's degree on a year-for-year basis. Experience: • Experience required: (5) years in IT security experience, with a minimum of (2) years conducting/participating in Security Assessments. Certifications: • Highly desired certifications: CISSP, CISA, CySA+, C|EH, GIAC Certified Incident Handler (GCIH). • Other IAT/IAM Level I, II & III Certifications will be beneficial. Covers 100% of employee benefit premiums, including Medical (PPO or HDHP Option), Vision, Dental Matching 401K Short- and Long-Term Disability Pet Insurance Professional Development/Education Reimbursement Parking and Transit Benefits for NY, NJ, ATL, and DC Metro areas Other Duties: Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.

#J-18808-Ljbffr