Cyber Vulnerability Engineer (Hybrid Eligible)

Requisition Id15548

Overview:

We are hiring a Cyber Vulnerability Engineer to support vulnerability scanning, infrastructure coordination, analysis, and remediation. The engineer will assist in the development, management, and integration of cybersecurity platforms, ensuring alignment with organizational security practices and compliance standards.

In this role, the engineer will support platform development, coordinate across stakeholders, and contribute to the operational management of vulnerability scanning tools and integrations. Responsibilities include tracking remediation progress, maintaining accurate vulnerability data, and contributing to technical reporting for internal stakeholders.

This position resides in the Cyber Enhancements Group in the Cybersecurity Division, in the Information Technology Services Directorate atOak Ridge National Laboratory(ORNL).

Major Duties/Responsibilities:

• Operate, maintain, and enhance the infrastructure and tools for vulnerability scanning.
• Support the vulnerability lifecycle by aiding in detection, analysis, and remediation activities.
• Analyze logs and alerts to identify false positives, trends, and vulnerabilities.
• Collaborate with Cyber Operations, Cyber Governance, Networking, Enterprise Operations, and Cyber Security Research teams to ensure the proper configuration and implementation of security tools.
• Standardize, document, and automate processes for monitoring, analyzing, and responding to events.
• Prepare written reports, dashboards, and oral briefings to communicate technical concepts and assessment results to management and DOE stakeholders.
• Assist in cybersecurity activities related to intrusions, malicious activity, protective actions, and remediation on classified and unclassified systems.
• Deliver ORNL's mission by aligning behaviors, priorities, and interactions with our core values of Impact, Integrity, Teamwork, Safety, and Service. Promote equal opportunity by fostering a respectful workplace - in how we treat one another, work together, and measure success.

Basic Qualifications:

• A AS degree in a technical field or a related discipline and a minimum of four (4) to six (6) years of aligned professional experience is required for consideration.
• Two (2) to four (4) years of cybersecurity experience.
• Proficient with vulnerability scanning tools like Nessus, Burp Suite, Nexpose, or Nmap.
• Skilled in log-centric analysis (application logs, OS events, authentication data).
• Familiar with enterprise operating systems (Windows, Linux, Mac).
• Experience in scripting or automation for improved scanning and reporting.
• Ability to analyze data sets to identify vulnerabilities and security issues.
• Strong written and verbal communication skills for reports and briefings.

Preferred Qualifications:

• Active DOE Q, active DOD Top Secret, or active DOD TS/SCI clearance is heavily preferred for consideration.
• A BS in computer science, computer engineering, information technology, information systems, science, engineering, business, or a related discipline.
• Security industry certifications (e.g., CISSP, CySA+, GCIA, GCIH).
• Four (4) or more years of relevant cybersecurity experience.
• Familiarity with SIEM integration and Elastic Stack.
• Experience with automation or scripting in Python, PowerShell, or similar languages.
• Advanced understanding of Linux, Unix, Mac, and Windows operating systems.
• Experience working in DOE facilities, other government entities, or large-scale enterprise environments.

Special Requirements:

• Q Clearance: This position requires the ability to obtain and maintain clearance from the Department of Energy. As such, this position is a Workplace Substance Abuse (WSAP) testing designated position. WSAP positions require passing a pre-placement drug test and participation in an ongoing random drug testing program.
• Visa sponsorship: Visa sponsorshipis not available for this position.

Hybrid Eligibility:

This position is in Oak Ridge, Tennessee and requires onsite presence. We offer a flexible work environment that supports both the organization and our employees. A hybrid/onsite working arrangement may be available with this position, which provides flexibility to work periodically from your home, while reporting onsite to the Oak Ridge, Tennessee location on a weekly and regular basis.

About ORNL:

As a U.S. Department of Energy (DOE) Office of Science national laboratory, ORNL has an impressive 80-year legacy of addressing the nation's most pressing challenges. Our team is made up of over 7,000 dedicated and innovative individuals! Our goal is to create an environment where a variety of perspectives and backgrounds are valued, ensuring ORNL is known as a top choice for employment. These principles are essential for supporting our broader mission to drive scientific breakthroughs and translate them into solutions for energy, environmental, and security challenges facing the nation.

ORNL offers competitive pay and benefits programs to attract and retain individuals who demonstrate exceptional work behaviors. The laboratory provides a range of employee benefits, including medical and retirement plans and flexible work hours, to support the well-being of you and your family.

Employee amenities such as on-site fitness, banking, and cafeteria facilities are also available for added convenience.

Other benefits include the following: Prescription Drug Plan, Dental Plan, Vision Plan, 401(k) Retirement Plan, Contributory Pension Plan, Life Insurance, Disability Benefits, Generous Vacation and Holidays, Parental Leave, Legal Insurance with Identity Theft Protection, Employee Assistance Plan, Flexible Spending Accounts, Health Savings Accounts, Wellness Programs, Educational Assistance, Relocation Assistance, and Employee Discounts.

If you have difficulty using the online application system or need an accommodation to apply due to a disability, please email:ORNLRecruiting@ornl.gov.

#LI-CS1

This position will remain open for a minimum of 5 days after which it will close when a qualified candidate is identified and/or hired.

We accept Word (.doc, .docx), Adobe (unsecured .pdf), Rich Text Format (.rtf), and HTML (.htm, .html) up to 5MB in size. Resumes from third party vendors will not be accepted; these resumes will be deleted and the candidates submitted will not be considered for employment.

If you have trouble applying for a position, please email ORNLRecruiting@ornl.gov.

ORNL is an equal opportunity employer. All qualified applicants, including individuals with disabilities and protected veterans, are encouraged to apply. UT-Battelle is an E-Verify employer.