High Performance Computing Security Developer

High Performance Computing Security Developer - 85656

Organization: NE-NERSC

Discover your future at Berkeley Lab!

Berkeley Lab’s National Energy Research Computing (NERSC, https://

www.nersc.gov/) Center has an opening for a High Performance

Computing (HPC) Security Developer. As an HPC Security Developer

you will be involved in all aspects of computer and network security at

the NERSC Center. You will use your computer and programming skills

to enhance network and host intrusion prevention as we migrate from

100G to Terabit networks. You will create new methods to protect

Exascale class systems in an open science environment and have

opportunities to work with data analytics and researchers in a variety of

scientific fields.

This position will be hired at a level 3 or 4 contingent upon level of

experience, skills, knowledge, and abilities of the successful candidate.

What You Will Do:

• Serve as a core member of the NERSC Security Group performing

varying security duties including threat awareness, proactive network

traffic analysis, incident response, forensic analysis, and resolution of

security incidents.

• As part of the security DevOps team program in C/C++ to automate

security data collection and use machine learning algorithms to identify

anomalies for investigation.

• Integrate knowledge of network protocols, services, threats,

vulnerabilities, mitigation strategies, and hardware capabilities, with

programming and scripting to build a security environment that reduces

and mitigates risk while enabling our open science mission to succeed.

• Construct methods to examine a wide range of data including: Bro

logs, NetFlow data, centralized syslog, and authentication logs to detect

security incidents.

• Promote a strong security culture through technical security

consulting with NERSC staff.

• On occasion, assist with security incidents outside of regular business

hours as part of a 24/7 devops security team.

• Share your outstanding work through papers and presentations at

various HPC and security conferences.

Additional Responsibilities:

• Lead technical projects in one or more areas of intrusion detection,

data analytics, machine learning, and artificial intelligence.

• Understand complex systems and develop security models to mitigate

significant risks while minimising effort on minor/theoretical risks.

• Design a security model that allows NERSC to support scientific work

with sensitive data (export controlled, HIPAA, etc) while maintaining an

open science security architecture.

• Lead the team in architecting the next-generation IDS system for

NERSC to use with 400GE and 1TbE border connections.

What is Required:

• Bachelor's degree in engineering, computer science, management

information systems, or related field preferred or equivalent combination

of education and experience and a minimum of 8 years of related

experience in systems programming or cyber security (including college

work).

• At least two years in the area of computer security in a dynamic,

multi-platform networked environment, preferably in a high-

performance computing or academic environment.

• Self-motivated with demonstrated ability to work highly

collaboratively, requiring little direct supervision.

• Excellent oral, written and people skills.

• Expertise with firewalls, network intrusion detection systems, detecting

compromised systems and securing Internet accessible production

systems.

• Experience with UNIX system administration and systems

programming.

• Ability to articulate the long-range vision of Security and Open

Science used by NERSC.

• Ability to identify and implement security enhancements that will

reduce risk to NERSC without interfering with the ability of our users to

do science.

• Familiarity with basic statistical and data analysis concepts, and how

they can be applied to workflow.

• Experience using Bro, an open-source network intrusion detection

platform.

• Ability to formulate, organize, and present ideas in an effective

manner. Develop proposals and clearly articulate

Additional Desired Qualifications:

• A minimum of 12 years of experience in systems programming and

cyber security.

• Capable of implementing a moderate enclave and maintaining export

control compliance.

• Broad expertise with a respected reputation within the HPC and

Security communities.

• Masters degree in computer science, computer engineering or related

field.

• Minimum of 4 years programming in c or c++

• Demonstrated experience in system administration and/or network

administration (design, implementation, and maintenance) - particularly

relating to scale and automation issues.

• Experience with machine learning and Artificial Intelligence

algorithms.

• Familiar with federated identity management in a large collaborative

environment.

• Familiarity with DOE Office of Science research programs, and/or

Research and Education networking communities in the US or abroad.

The posting shall remain open until the position is filled.

Notes:

• This is a full time career appointment.

• Full-time, M-F, exempt (monthly paid) from overtime pay.

• This position requires access to export control and security sensitive

information. Therefore, the selected candidate for this position requires

U.S. citizenship or U.S. permanent residency.

• This position may be subject to a background check. Any convictions

will be evaluated to determine if they directly relate to the

responsibilities and requirements of the position. Having a conviction

history will not automatically disqualify an applicant from being

considered for employment.

• Work will be primarily performed at: Lawrence Berkeley National Lab,

1 Cyclotron Road, Berkeley, CA.

How To Apply

Apply directly online at http://50.73.55.13/counter.php?id=159409 and

follow the on-line instructions to complete the application process.

Berkeley Lab (LBNL,http://www.lbl.gov/) addresses the world’s most

urgent scientific challenges by advancing sustainable energy, protecting

human health, creating new materials, and revealing the origin and fate

of the universe. Founded in 1931, Berkeley Lab’s scientific expertise has

been recognized with 13 Nobel prizes. The University of California

manages Berkeley Lab for the U.S. Department of Energy’s Office of

Science.

Equal Employment Opportunity: Berkeley Lab is an Equal Opportunity/

Affirmative Action Employer. All qualified applicants will receive

consideration for employment without regard to race, color, religion,

sex, sexual orientation, gender identity, national origin, disability, age,

or protected veteran status. Berkeley Lab is in compliance with the Pay

Transparency Nondiscrimination Provision under 41 CFR 60-1.4 (https://

www.dol.gov/ofccp/PayTransparencyNondiscrimination.html). Click

here (http://www.dol.gov/ofccp/regs/compliance/posters/pdf/

eeopost.pdf) to view the poster: "Equal