Overview

The Cyber Security & Digital Operations Division at Pacific Northwest National Laboratory (PNNL) seeks a senior cybersecurity architect with strong experience in identity and access management to join its leadership team and help drive positive change towards a more secure tomorrow. This role will be an integral part of the Chief Information Security Officer’s leadership team and will collaborate directly with senior architects from other IT-related domains in setting the technological roadmap for the Lab. While much of the focus of this role will revolve around identity and related cloud security technologies, a large portion of the work will also involve adjacencies including privileged account management, securing and configuring tenancies, secure networking, encryption, data protection, and/or key/certificate management.

Responsibilities

Some key responsibilities will inlude:

• Represent the Cyber Security Group in evaluating technology initiatives and projects to determine advanced cybersecurity requirements and controls necessary to comply with company policies, standards, and industry best practices.

• Evaluate existing and proposed technical architectures for security risk, provide technical advice to support the design and development of secure architectures and recommend security controls to mitigate those risks.

• Coach stakeholders throughout the business on cyber security processes, from project managers and developers to director-level management with a focus on Identity and Access Management.

• Consolidate IAM and other security needs and interests of diverse stakeholders with established cyber security requirements to drive innovative solutions to the challenges we face.

• Participate in research and development in the broad field of cyber security (e.g., defining security architectures for public cloud, Kubernetes-based infrastructures, or operational technology) as well as follow and share knowledge on evolving standards, security best practices, and open-source software.

• Align identity and access management solutions with industry security standards and frameworks and cloud security best practices.

• Provide creative and innovative solutions that bridge the gap between requirements and cloud capabilities.

• Demonstrate flexibility and resilience in response to changing or ambiguous situations.

• Evangelize security and application solutions and controls by creating and communicating presentations both internally and externally.

• Stay current on industry trends and cloud provider capabilities.

Qualifications

Minimum Qualifications:

• BS/BA with 7 years of experience.

• MS/MA with 5 years of experience.

• PhD with 3 years of experience

Preferred Qualifications:

• Experience in the area of software architectures and cyber security, preferably with a focus on IAM (e.g., Identity Federation, SSO (OAuth 2.0, OpenID Connect, SAML federation), access management and authorization (RBAC/ABAC/etc.), or related topics in the field of operational technologies.

• Hands-on experience in the field of cloud computing as an architect, in development and/or operation, especially Kubernetes, AWS, GCP, or Microsoft Azure.

• Experience integrating identity and access management software into cloud infrastructure and applications.

• Experience developing identity management strategies, architectures and implementation plans

• Diverse knowledge of security architectures as well as ability to clearly present and communicate on technical subjects to various audiences.

• Understanding of current regulatory environment and related implications to identity management and security/audit compliance.

• Experience leading business requirements gathering, translating those into system requirements, and facilitating business process design.

• Enjoy developing cyber security architectures and have advanced knowledge of cybersecurity principles evidence by related industry certifications.

Hazardous Working Conditions/Environment

No hazardous working conditions / environment are anticipated for this position.

Additional Information

This position requires the ability to obtain and maintain a federal security clearance.

Requirements:

• U.S. Citizenship

• Background Investigation: Applicants selected will be subject to a Federal background investigation and must meet eligibility requirements for access to classified matter in accordance 10 CFR 710, Appendix B.

• Drug Testing: All Security Clearance (L or Q) positions will be considered by the Department of Energy to be Testing Designated Positions which means that they are subject to applicant, random, and for cause drug testing. In addition, applicants must be able to demonstrate non-use of illegal drugs, including marijuana, for the 12 consecutive months preceding completion of the requisite Questionnaire for National Security Positions (QNSP).

Testing Designated Position

This position is a Testing Designated Position (TDP). The candidate selected for this position will be subject to pre-employment and random drug testing for illegal drugs, including marijuana, consistent with the Controlled Substances Act and the PNNL Workplace Substance Abuse Program.

About PNNL

Pacific Northwest National Laboratory (PNNL) is a world-class research institution powered by a highly educated, diverse workforce committed to the values of Integrity, Creativity, Collaboration, Impact, and Courage. Every year, scores of dynamic, driven people come to PNNL to work with renowned researchers on meaningful fundamental science challenges and important global priorities spanning climate and coastal research, national security, and energy resiliency; here is your chance to be one of them!

At PNNL, you will find an exciting research environment and excellent benefits including health insurance, 401k, pension and flexible work schedules and locations as part of our hybrid workplace. PNNL has multiple campuses, with our main campus located in eastern Washington State—the dry side of Washington known for its stellar outdoor recreation and affordable cost of living. The Lab’s campus is only a 45-minute flight (or ~3-hour drive) from Seattle or Portland, and is serviced by the convenient PSC airport, connected to 8 major hubs.

Commitment to Excellence, Diversity, Equity, Inclusion, and Equal Employment Opportunity

Our laboratory is committed to a diverse and inclusive work environment dedicated to solving critical challenges in fundamental sciences, national security, and energy resiliency. We are proud to be an Equal Employment Opportunity and Affirmative Action employer. In support of this commitment, we encourage people of all racial/ethnic identities, women, veterans, and individuals with disabilities to apply for employment.

Pacific Northwest National Laboratory considers all applicants for employment without regard to race, religion, color, sex (including pregnancy, sexual orientation, and gender identity), national origin, age, disability, genetic information (including family medical history), protected veteran status, and any other status or characteristic protected by federal, state, and/or local laws.

We are committed to providing reasonable accommodations for individuals with disabilities and disabled veterans in our job application procedures and in employment. If you need assistance or an accommodation due to a disability, contact us at [ Email address blocked ] - Click here to apply to Cybersecurity & Identity Architect.

Drug Free Workplace

PNNL is committed to a drug-free workplace supported by Workplace Substance Abuse Program (WSAP) and complies with federal laws prohibiting the possession and use of illegal drugs.

Mandatory Requirements

Battelle requires employees to have a COVID-19 vaccine as a condition of employment, subject to accommodation. Applicants are required to disclose their vaccination status following a conditional offer of employment and must attest to being fully vaccinated with a Center for Disease Control (CDC)-approved COVID-19 vaccination, or provide documentation of need for medical or religious exemption from the COVID-19 vaccination requirement.

Rockstar Rewards

Employees and their families are offered medical insurance, dental insurance, vision insurance, health savings account, flexible spending accounts, basic life insurance, disability insurance*, employee assistance program, business travel insurance, tuition assistance, supplemental parental bonding leave**, surrogacy and adoption assistance, and fertility support. Employees are automatically enrolled in our company funded pension plan* and may enroll in our 401k savings plan. Employees may accrue up to 120 vacation hours per year and may receive ten paid holidays per year.

• Research Associates excluded.

**Once eligibility requirements are met.

Click Here For Rockstar Rewards ([ Link removed ] - Click here to apply to Cybersecurity & Identity Architect