Position Overview
The Associate Directorate for Stockpile Manufacturing and Support (ADSMS), conducts operations, which enhance national security by providing nuclear and explosive products and services in support of the nation's nuclear deterrent, energy security, and homeland security needs. In addition, TA-55 Facility Operations Division (FOD) provides engineering and operational management and support to ensure the safety, reliability and security of LANL¿s Cat One nuclear facility in support of the Stockpile Manufacturing and Support Directorate¿s Mission. This position will serve as the Cyber Systems Security Officer (CSSO) for TA-55 classified and unclassified networks. The CSSO is responsible for all aspects of two classified networks and one unclassified network connecting TA-55 with DOE and other government agencies. The CSSO will perform the following duties; assure security plans are technically accurate, timely, and approved by the Cyber Security Office (CSO) and Los Alamos Site Office; serve as liaison with the CSO and implement CSO policies at TA-55; work with internal and external network and cyber-security personnel, system administrators and Organizational Computer Security Officers (OCSRs) to address vulnerabilities; work with LANL and deployed cyber-security personnel; developing documentation, troubleshooting local cyber security incidents; training computer users; overseeing a team of 12-20 CTN deployed personnel for network and desktop support and administration of the associated budget; develop technical documentation such as network diagrams, hardware/software lists and other as required by Cyber; setting and ensuring completion of milestones and metrics, developing long range plans for computing, troubleshoot local and external network system problems; perform annual inventories of classified equipment operating on local area networks.
Key Position Requirements
Demonstrated thorough knowledge and experience in a wide range of computer-security related areas, including networks, software development, and security. Demonstrated professional level experience reviewing network designs, assuring security plans are technically accurate and timely. Demonstrated professional level experience writing and obtaining accreditation for secure networks. Thorough understanding and experience working with classified computing requirements at LANL and DOE. Demonstrated successful experience working with cyber security to resolve security issues and concerns. Demonstrated experience writing and developing technical documentation such as network diagrams, hardware/software lists and other as required by Cyber and experience troubleshooting local and external network and system problems and experience performing annual inventories of classified equipment operating on local area networks. Must have strong interpersonal skills to work effectively with users, customers and DOE Headquarters. Must have strong written and verbal communication skills. Must be a self-starter and research and communicate emerging technologies and how they may be applied. Must have the ability to obtain a Q clearance, which typically requires US citizenship. CSSO experience, including working with cyber-security personnel at other NWC sites highly desirable. Strong understanding of computer security guidelines and directives required by DOE and NNSA. Professional-level understanding of telecommunications/communications security, including Protected Transmission Systems, data communication facilities, and COMSEC training. Ability to work effectively in a team environment with changing priorities and challenging deadlines. BS in computer science, computer engineering, physical security or related technical field.
Summary
Leads planning and coordination of one or more programs regarding a full range of security functions including, but not necessarily limited to, inspections, identification of vulnerabilities, and assessment of risks. Makes recommendations of appropriate and required security measures, techniques and methods to assure and improve the protection of personnel, activities, and Laboratory facilities. Specific duties may include establishing and monitoring security plans/goals and programs. Works with all levels of Laboratory management and represents the Laboratory to enforcement agencies and community organizations. Reviews and recommends actions on security-related complaints. Leads planning and coordination for the research, design, development and implementation of central security control system (Argus) computer security/protection and associated technologies for Laboratory information and process systems/applications.
Viewed as an expert in central security control system field within the Laboratory. Works on significant and complex security system issues and provides solutions/recommendations to security managers. Has impact on success of future concepts, products or technologies.
Job Duties
-
Safety and security are a primary responsibility for all Laboratory employees. Maintains required safety and security training, assures safety and security compliance, and makes safety and security an integral part of every task, including taking the necessary steps to stop work if continuing the job is unsafe or compromises security.
-
Responsible for computer and communications security for classified information.
-
Develops, maintains and audits the analytical and technical aspects of central security control system (Argus) and associated computer security systems.
-
Manages the installation, configuration, and maintenance of associated computer hardware.
-
Maintains integrity of computer workstations, servers, and local area networks by maintaining user accounts and upgrading systems and software as required.
-
Responsible for secure installation and operation of cryptographic equipment, secure transmission of classified information and sensitive unclassified information and protection of cryptographic principles and methods.
-
Leads the technical support, training and timely computer system data recovery.
-
Oversees the investigation of computer security incidents, and acts as lead analyst of computer facility protection plans.
-
Conducts complex surveillance of computer protection measures, and creates measurement tools for system vulnerability assessments.
-
Leads the development and implementation of policies, procedures, standards, training and methods for identifying and protecting information, personnel, property, facilities, operations, or material from unauthorized disclosure, misuse, theft, assault, vandalism, product tampering, espionage, sabotage, or loss.
-
Interprets and identifies computer and information security systems to ensure good business practices.
-
Demonstrates full understanding of federal and state regulations.
-
Understands and adheres to all Laboratory and industry regulatory guidance and governance specific to computer and information security.
-
Ensures all security systems, processes and final products meet quality specifications and are completed according to established requirements.
-
Fosters a mutually respectful work environment that is free from discrimination and harassment.
Job Knowledge
-
Professional/specialized knowledge and experience with surveillance of computer protection measures and creating measurement tools for system vulnerability assessments.
-
Comprehensive knowledge of operations and security requirements at the Laboratory, especially regarding central security control system (Argus), video equipment and software, and database to install, configure, and maintain security system. Highly specialized technical knowledge in Argus, providing subject-matter guidance on security system issues to the institution.
-
Extensive knowledge and experience with computer security for classified information security and communications security systems.
-
Advanced knowledge of security computer workstations, servers, and area networks.
-
Technical knowledge of installation and operation of cryptographic equipment, secure transmission of classified information and sensitive unclassified information and protection of cryptographic principles and methods.
-
Professional-level experience and demonstrated skill in conducting research, investigating alternative solutions, and recommending solutions on problems affecting computer and information security.
-
Advanced skill to conceptualize and communicate major elements of security to both technical and non-technical personnel.
-
Extensive experience in the preparation and presentation of computer and information security reports and in making recommendations to diverse audiences of internal/external audiences of both technical and nontechnical staff.
-
In-depth experience developing and managing complex computer security plans.
-
Comprehensive understanding of DOE and Laboratory computer and information security policies, practices, and procedures.
-
Extensive knowledge and understanding of legal requirements and environmental impacts affecting computer and information security.
-
Extensive experience solving problems at an institutional level working with core and field security management to provide recommendations of appropriate and required security measures, techniques, and methods to assure and improve the protection of personnel, activities and Laboratory facilities.
-
Extensive high-level experience conducting security self-assessments, audits and inspections and root-cause analyses.
Education
-
Position typically requires a bachelor’s degree and a minimum of twelve years related experience, or an equivalent combination of education and experience. At this level, post graduate course work may be expected.
Direction
A. Supervision Received
B. Supervision Exercised
C. Contacts
-
Regular contacts throughout the Lab and external to the Laboratory. Contacts include all levels of Los Alamos and Lawrence Livermore National Laboratory staff, oversight organizations and assessment groups to provide computer and information security activities for central security control system (Argus) and associated systems. Regular interactions with key contacts in areas other than security, related to mission. May serve as the point of contact for implementation of specific security requirements and Department of Energy (DOE) directives.
This description is not intended to be a complete statement of every aspect of the position, but rather to act as a guide to the essential functions to be performed. Assigned functions of this job may vary, and other duties and responsibilities may be assigned or changed at the discretion of management.
Notes To Applicants
This position is subject to the requirements of the Human Reliability Program (HRP). All candidates invited for an interview must consent to be in the HRP at the time of the interview. Only the selected candidate will be subject to the requirements of HRP, which includes a pre-employment background check, a counterintelligence-scope polygraph, medical examination including psychological evaluations, and drug/alcohol testing.
Human Reliability Program (HRP)
This position is subject to the requirements of the Human Reliability Program (HRP). All candidates invited for an interview must consent to be in the HRP at the time of the interview. Only the selected candidate will be subject to the requirements of HRP, which includes a pre-employment background check, a counterintelligence-scope polygraph, medical examination including psychological evaluations, and drug/alcohol testing.
Contact
For specific questions about the status of this job, call (505)664-6947
