Founded in 1999 in the beautiful Smoky Mountains of East Tennessee, Cadre5 provides innovative technical solutions to our customers locally and nationally. Our Cadre5 Lab Partners division has partnered with the Defensive Cyber Operations Group within the Information Technology Services Directorate at Oak Ridge National Laboratory (ORNL) to recruit a qualified Cyber Security Vulnerability Analyst.
ORNL delivers scientific discoveries and technical breakthroughs needed to realize solutions in energy and national security and provides economic benefit to the nation. This premier research institution located near Knoxville in Oak Ridge, TN, addresses national needs through impactful research and world-leading research centers.
This is a full-time, permanent position that follows a Hybrid model.
Why Cadre5?
- Working with highly talented team members
- 3 weeks’ vacation
- Excellent medical insurance, up to 100% paid by employer and contributions to HSA Plans
Job Responsibilities:
- Join the Defensive Cyber Operations Group’s multi-disciplinary team in responding to advanced Cyber threats from targeted phishing to network-based threats, ransomware, and APT-level activity in a Tier 2 role.
- Mentor the DCO’s junior staff, developing their technical and incident resolution skills.
- Participate in incident response activities involving multiple teams and functions.
- Serve as primary coordinator for ORNL response to federal Binding Operational Directives and data calls.
- Leverage internal and external vulnerability scanning scan data to maintain a comprehensive view of ORNL’s threat profile and risk status.
- Automate key DCO functions using Tines technology
- Partner with ORNL’s Emerging Threat team to remediate extant vulnerabilities identified by their intelligence activities.
- Maintain strong collaborative and data sharing relationships with DOE headquarters Cyber units, other DOE laboratories, and external entities.
- Leverage EDR, SIEM, IDS, and PCAP tools to identify and investigate cyber threats.
- Assist users with the creation, monitoring, and evaluation of policy and device exceptions.
- Assist in training and awareness activities to ensure ORNL staff are aware of Cyber Security responsibilities and requirements.
- Partner with Cyber Industrial Control System Engineers to monitor the lab’s ICS enclaves for operational and security issues
Basic Qualifications:
- A BS in computer science, computer engineering, information technology, or a related field of study and two (2) years of relevant vulnerability remediation experience is required for consideration.
- The position requires eligibility to obtain a DOE security clearance. Candidates with an Active Q Clearance or Top-Secret Clearance are a plus.
- The ability to obtain and maintain a Department of Energy "Q" clearance is required. This requires US Citizenship.
Preferred Qualifications:
- 3 or more years of relevant vulnerability remediation experience.
- CISSP, GCIH, or equivalent credentials.
- Extensive Tenable experience.
- Solid understanding of security architecture, policies, and security capabilities of major operating systems.
- Demonstrated experience identifying and resolving technical issues in a project team environment, while remaining flexible and meeting the needs of the business.
- Familiarity with DOE environment and certification / accreditation processes.
- Excellent interpersonal skills; must interface well with all management levels, system owners, administrative personnel, highly technical cyber security analysts, and general staff.
- Excellent professional communication skills.
- Experience with Nozomi Networks Guardian platform a plus.
Benefits
Cadre5 offers excellent pay and benefits, to include full medical, dental, and vision coverage coupled with 401K match, 15 days PTO, and 10 holidays.
Cadre5 is an equal opportunity employer. All qualified applicants, including individuals with disabilities and protected veterans, are encouraged to apply. Cadre5 is an E-Verify Employer.