Senior/ Principal Splunk Engineer, Field Intelligence - Onsite

Press Control+M to start dragging object

What Your Job Will Be Like

The HSO Cybersecurity Operations Organization is seeking a highly motivated and driven Information System Security Engineer (ISSE) to research, design, and develop mission-enabling solutions which effectively integrate and meet our cyber security requirements. Our ideal candidate has strong experience in developing excellent partnerships with peers and customers, a strong technical background working with IT and cyber security tools, and the ability to engineer innovative, integrated, and risk-managed solutions to address complex national security challenges.

On any given day, you may be called on to:

• Engage our information assurance partners to define system requirements
• Identify cyber security or architectural risks and propose alternatives
• Perform analysis of sponsor cyber policies and requirements against solution criteria
• Develop and integrate cyber security controls into existing or new tools and infrastructures
• Evaluate emerging technologies for cyber security risk management
• Provide recommendations to internal and external senior leadership

Due to the nature of the work, this candidate must be able to work onsite. Ability to travel for job-related training, work duties, and customer engagement as needed.

Salary Range

$109,300 - $217,400

*Salary range is estimated, and actual salary will be determined after consideration of the selected candidate's experience and qualifications, and application of any approved geographic salary differential.

Qualifications We Require

• Bachelor’s degree in Management Information Systems, Information Assurance, Systems Engineering, Computer Engineering, Computer Science, plus 5 years experience.
• Experience automating processes using the tools of your choice (Python, shell scripts, MS VBA, MS Powershell, etc.).
• Experience architecting, installing, configuring, and/or maintaining complex Splunk environments, or other Security Information and Event Management tools in a distributed production environment.
• Ability to obtain and maintain Department of Energy (DOE) Q and Sensitive Compartmented Information (SCI) clearances which may require a polygraph test.

Qualifications We Desire

• Experience implementing secure design and architectures based on known Common Vulnerabilities and Exposures (CVEs)
• Ability to coordinate cyber security-related activities with peer and customer information security architects, engineers, officers, system owners, and sponsors
• Ability to participate in project teams using Agile Project Methodologies
• Master’s degree in Management Information Systems, Information Assurance, Systems Engineering, Computer Engineering, Computer Science, or a related field
• Experience implementing or developing services within cloud services (AWS or Azure)
• Experience applying the Risk Management Framework (RMF) via NIST Special Publication 800-37
• Intelligence Community Directive (ICD) 503, or Committee of National Security Systems (CNSS) cyber security programs
• Experience with Security Orchestration Automation and Response (SOAR) or Security Event Information Management (SEIM)
• Experience with virtualization technologies including VMWare ESXi, vSphere, or vCenter
• Experience with web application security and Open Web Application Security Project (OWASP)
• Industry-recognized IT or Cyber Security certifications (e.g., CISSP, GIAC, CCSP, EnCE)
• Experience or a motivation to learn cyber forensics
• Active DOE Q (or DOD TS), and
• Active SCI Security Clearance

About Our Team

The FIE Cyber Security Operations Department supports the Field Intelligence Element mission by delivering capabilities around information system hardening/accreditation, vulnerability assessment, risk management, and forensics with a particular focus on mitigating cyber threats. The Cyber Security staff, consisting of Information Systems Security Managers (ISSMs), Information Systems Security Officers (ISSOs), Alternate ISSOs (AISSOs), and Information Systems Security Engineers (ISSEs), provide effective technical solutions for DOE, DOD, and the Intelligence Community.

Posting Duration

This posting will be open for application submissions for a minimum of seven (7) calendar days, including the ‘posting date’. Sandia reserves the right to extend the posting date at any time.

Security Clearance

Sandia is required by DOE to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants for employment need to be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted.

Applicants offered employment with Sandia are subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct, or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment.

EEO

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or veteran status and any other protected class under state or federal law.

NNSA Requirements for MedPEDs

If you have a Medical Portable Electronic Device (MedPED), such as a pacemaker, defibrillator, drug-releasing pump, hearing aids, or diagnostic equipment and other equipment for measuring, monitoring, and recording body functions such as heartbeat and brain waves, if employed by Sandia National Laboratories you may be required to comply with NNSA security requirements for MedPEDs.

If you have a MedPED and you are selected for an on-site interview at Sandia National Laboratories, there may be additional steps necessary to ensure compliance with NNSA security requirements prior to the interview date.