Computer Scientist / Engineer (Vulnerability Research)
Oak Ridge, TN, US, 37830
Oak Ridge National Laboratory
Requisition Id 12462
Overview:
As a U.S. Department of Energy (DOE) Office of Science national laboratory, Oak Ridge National Laboratory (ORNL) has an extraordinary 80-year history of solving the nation’s biggest problems. We have a dedicated and creative staff of over 6,000 people! Our vision for diversity, equity, inclusion, and accessibility (DEIA) is to cultivate an environment and practices that foster diversity in ideas and in the people across the organization, as well as to ensure ORNL is recognized as a workplace of choice. These elements are critical for enabling the execution of ORNL’s broader mission to accelerate scientific discoveries and their translation into energy, environment, and security solutions for the nation.
We are seeking a Computer Scientist or Engineer with a focus on Vulnerability Research who will support the Cyber Resilience and Intelligence Division in the National Security Science Directorate at Oak Ridge National Laboratory (ORNL).
Major Duties/Responsibilities:
- Support national security agendas as they relate to the identification and mitigation of software vulnerabilities used in defense, energy, and critical infrastructure assets.
- Research, develop and improve tools and techniques used to identify and mitigate vulnerabilities in critical systems.
- Maintain awareness and understanding of cyber security research and events.
- Contribute material to reports generated for project sponsors.
- Assist in the development of research proposals related vulnerability science.
- Promote ORNL/partners cyber security research and development capabilities as they apply to the national security community.
- Present material and provide advice to technical audiences, leadership and sponsors on cyber security issues, research, and programs.
- Identify and articulate ORNL capabilities and customer requirements to internal and external technical audiences, leadership, and sponsors.
- Deliver ORNL's mission by aligning behaviors, priorities, and interactions with our core values of Impact, Integrity, Teamwork, Safety, and Service. Promote diversity, equity, inclusion, and accessibility by fostering a respectful workplace - in how we treat one another, work together, and measure success.
All team members deliver ORNL’s mission by aligning behaviors, priorities, and interactions with our core values of Impact, Integrity, Teamwork, Safety, and Service. Promote diversity, equity, inclusion, and accessibility by fostering a respectful workplace – in how we treat one another, work together, and measure success.
Basic Qualifications:
- Requires a bachelor’s degree in computer science, computer engineering, or related field and a fundamental understanding of cyber security principles, tools, and operational applications.
Preferred Qualifications:
- Current experience writing software. Most relevant languages: C, C++, Python, and Java.
- Basic binary literacy is important. This includes understanding how software is architected, language characteristics, binary formats, and operating systems.
- Familiarity with static and dynamic binary analysis techniques (e.g., fuzzing) and reverse engineering (e.g., Ghidra or Ida Pro).
- Experience auditing source code and disassembly a plus.
- Familiarity with embedded systems preferred.
- Prior use and familiarity with web or network related tools, e.g., burpsuite and wireshark a plus.
- Demonstrated desire and ability to acquire new knowledge and learn new skills.
- Demonstrated interpersonal, verbal and written communication skills.
- Ability to develop plans to address complex problems, be proactive, work independently, and contribute to a larger team.
- Participation in capture-the-flag events, or cyber challenge events a plus.
- Ability to function well in a fast-paced research environment, set priorities to accomplish multiple tasks within deadlines, and adapt to ever changing needs
Special Requirements
Visa Sponsorship:
Visa sponsorship is not available for this position.
Q clearance with SCI:
This position requires the ability to obtain and maintain a Secret Compartmented Information (SCI) clearance from the Department of Energy. As such, this position is a Workplace Substance Abuse (WSAP) testing designated position. WSAP positions require passing a pre-placement drug test and participation in an ongoing random drug testing program. In addition, due the SCI, you may also be subject to random polygraph testing.
Benefits at ORNL:
ORNL offers competitive pay and benefits programs to attract and retain talented people. The laboratory offers many employee benefits, including medical and retirement plans and flexible work hours, to help you and your family live happy and healthy. Employee amenities such as on-site fitness, banking, and cafeteria facilities are also provided for convenience.
Other benefits include the following: Prescription Drug Plan, Dental Plan, Vision Plan, 401(k) Retirement Plan, Contributory Pension Plan, Life Insurance, Disability Benefits, Generous Vacation and Holidays, Parental Leave, Legal Insurance with Identity Theft Protection, Employee Assistance Plan, Flexible Spending Accounts, Health Savings Accounts, Wellness Programs, Educational Assistance, Relocation Assistance, and Employee Discounts.
If you have difficulty using the online application system or need an accommodation to apply due to a disability, please email: ORNLRecruiting@ornl.gov or call 1.866.963.9545.
#LI-DC1
This position will remain open for a minimum of 5 days after which it will close when a qualified candidate is identified and/or hired.
We accept Word (.doc, .docx), Adobe (unsecured .pdf), Rich Text Format (.rtf), and HTML (.htm, .html) up to 5MB in size. Resumes from third party vendors will not be accepted; these resumes will be deleted and the candidates submitted will not be considered for employment.
If you have trouble applying for a position, please email ORNLRecruiting@ornl.gov.
ORNL is an equal opportunity employer. All qualified applicants, including individuals with disabilities and protected veterans, are encouraged to apply. UT-Battelle is an E-Verify employer.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Banking Burp Suite C Clearance Computer Science Ghidra Java Polygraph Python Reverse engineering Vulnerabilities
Perks/benefits: Career development Competitive pay Fitness / gym Flex hours Flex vacation Health care Insurance Medical leave Parental leave Relocation support Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open SQL-related jobs
- Open PowerShell-related jobs