The Cybersecurity Program Analyst (Technical Lead) holds a pivotal senior technical position, overseeing the management, maintenance, and protection of the specialized Information Technology (IT) and cyber infrastructure that powers the DOE-SR EM Cybersecurity Team. As the leading technical expert, this role is entrusted with the smooth operation of key facilities, including the Cyber Lab (730-B), the Cyber Security Operations Center (CSOC) in 730-2B, and critical assets housed within the Central Computing Facility (CCF) in 703-44A.
In addition, this position serves as the trusted backup to the Cybersecurity Program Analyst (Team Lead), playing a vital role in safeguarding the availability, integrity, and confidentiality of the hardware and software systems essential for cybersecurity assessments, incident response, and forensic analysis.
• Manage the complete lifecycle of network infrastructure, including firewalls, switches, and routers, that support the cybersecurity team's facilities.
• Administer server hardware, including physical installation, configuration, and ongoing maintenance.
• Oversee the virtualization environment, including the creation, management, and security of virtual machines and hosts.
• Manage and maintain all workstation hardware and associated peripherals within the Cyber Lab and CSOC.
• Ensure all infrastructure components are patched, hardened, and configured in accordance with DOE policies, NIST guidelines, and vendor best practices.
• Develop and maintain comprehensive documentation for all managed infrastructure, including network diagrams, configuration guides, and asset inventories.
• Serve as the designated backup for the Cybersecurity Program Analyst (Team Lead), assuming leadership duties as required.
• Provide advanced technical support and troubleshooting for all cybersecurity team infrastructure and systems.
• Lead technical projects related to infrastructure upgrades, technology refresh cycles, and the implementation of new tools or capabilities.
• Collaborate with other IT and security teams to ensure proper integration and interoperability of systems.
• Implement and manage security controls for the team's infrastructure to prevent unauthorized access and ensure compliance with security policies.
• Conduct regular vulnerability scanning and configuration audits of all managed assets.
• Assist the CSAT by providing technical expertise on infrastructure security during assessments and audits.
• Maintain the operational readiness of the Cyber Lab and CSOC to support forensic analysis, incident response, and malware analysis activities.
• Provide technical recommendations to leadership for future technology investments and architectural improvements.
• Stay current on emerging trends and advancements in infrastructure technology, virtualization, and network security.
• Assist in developing technical training materials and mentoring junior team members on infrastructure management and security.
• Take direction from the assigned team lead and government tasking as a member of the Cyber Security team.
• Maintain accountability and security of assigned government equipment.
• Perform additional responsibilities and tasks, as directed, to support team objectives and organizational goals.
Clearance
• Must possess (or be able to obtain) a “Q” level security clearance.
Education
• Bachelor’s Degree in Information Technology, Computer Science, Cybersecurity, or a related field; or an equivalent combination of education and experience.
Experience
• Minimum of 7 years of hands-on experience in IT infrastructure management, network administration, or systems engineering.
• Demonstrated experience managing enterprise-level firewalls (e.g., Palo Alto, Cisco, Fortinet), including rule-set management, traffic analysis, and policy enforcement.
• Proven expertise in managing and maintaining server hardware (e.g., Dell, HP) and virtualization platforms (e.g., VMware vSphere).
• Strong background in network administration, including configuring and managing switches, routers, and VLANs.
• Experience with system administration for both Windows and Linux-based operating systems.
• Experience implementing and managing security tools such as vulnerability scanners (e.g., Tenable Nessus) and log management solutions (e.g., Splunk).
• Up-to-date knowledge of cybersecurity threats and mitigation strategies.
Certifications
• Networking certifications such as CompTIA Network+ or Cisco Certified Network Associate (CCNA).
• Security certifications such as CompTIA Security+, GIAC Certified Incident Handler (GCIH), or Certified Information Systems Security Professional (CISSP).
• Vendor-specific certifications such as VMware Certified Professional (VCP), Microsoft Certified: Azure Administrator Associate, or similar vendor credentials.
• Covers 100% of employee benefit premiums, including Medical (PPO or HDHP Option), Vision, Dental
• Matching 401K
• Short- and Long-Term Disability
• Pet Insurance
• Professional Development/Education Reimbursement
• Parking and Transit Benefits for NY, NJ, ATL, and DC Metro areas
Other Duties:
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.