The National Laboratory of the Rockies (NLR) is seeking a talented Cybersecurity Engineer to join the Computational Science Center (CSC) Advanced Computing Operations (ACO) group. This candidate must have an interest in making a difference in the world by helping to envision, develop, deploy, monitor, maintain, and analyze security posture and defense in an environment that supports a variety of applications and data-sharing platforms related to advancing integrated energy system technologies and markets. This candidate will work to ensure information security is built into and maintained for systems deployed in and by the laboratory's Advanced Computing Operation Group. The ideal candidate excels at building relationships with project teams, effectively communicating complex security concepts in a clear and approachable manner. They are proactive and persistent in following up to ensure security best practices are implemented and maintained, with a collaborative and solutions-oriented approach to problem-solving. A strong sense of initiative and the ability to manage multiple priorities while fostering a culture of security across diverse teams are essential for success in this role. In this position, you’ll join a tight-knit team that implements systems security and configures the security posture of the platforms ACO oversees—spanning AWS, HPC, OpenStack, and purpose-built environments. You’ll script and automate controls, produce security artifacts (screenshots, log exports), and monitor vulnerabilities across servers, networks, web applications, and cloud services. You’ll collaborate daily with developers, researchers, and system administrators to ensure appropriate security controls are considered at every stage of a project. Implement and harden security controls across heterogeneous environments; configure platform/security guardrails and verify enforcement. Script and automate security tasks using Bash and Python to meet control requirements (e.g., log collection, config checks, patch workflows). Monitor vulnerabilities and coordinate remediation with engineering teams across multiple platforms (servers, networks, web apps, cloud). Analyze logs using SIEM/log tools and produce meaningful reporting for stakeholders. Implement new capabilities required by DOE to enhance cybersecurity on ACO-managed systems. Partner closely with NLR Cyber Security, HPC Operations S - As, and Cloud Engineers; communicate clearly and confidently across diverse user and stakeholder groups. You will need to develop a good rapport and work closely with the NLR Cyber Security group, HPC Operations systems administrators and Cloud engineers. . Basic Qualifications. Level I:Relevant Bachelor's Degree or equivalent relevant education/experience. Limited use and/or application of basic principles, theories and concepts in specific field. Limited knowledge of related IS practices and standards. Good analytical and problem solving skills. Good written and verbal communication skills. Basic programming and/or maintenance ability with various computer software programs and information systems. Level II:Relevant Bachelor's Degree and 2 or more years of experience or equivalent relevant education/experience. Or, relevant Master's Degree or equivalent relevant education/experience. General knowledge and application of standards, principles, concepts and techniques in specific field. Some understanding of related IS practices and standards. Skilled in analytical techniques and practices, and problem solving. Skilled in written and verbal communication. Intermediate programming ability with various computer software programs and information systems. Clearance: Must be able to obtain and maintain a DOE Q Security Clearance. Eligibility requirements: To obtain a clearance, an individual must be at least 18 years of age and a U.S. citizen. See DOE O 472.2 A for additional information. - Must meet educational requirements prior to employment start date. Additional Required Qualifications?All candidates will need to have the following knowledge, skills and abilities:UNIX/ Linux experience (administration, troubleshooting). Ability to script and automate with Bash and Python. Basic knowledge of security tools (IDS/ IPS, firewalls, vulnerability scanners). Basic networking fundamentals (TCP/ IP, DNS, common protocols). Basic understanding of encryption/cryptography (SSL/ TLS, key management). Basic knowledge of access control & identity management. In addition to each level requires:IT Professional I - Advanced Computing: Skilled in analytical techniques and problem solving. Skilled in oral and written communication. Intermediate programming ability with various software programs and information systems. IT Professional II - Advanced Computing: Strong leadership and project management skills; drive small initiatives Advanced analytical/problem solving with design and analysis abilities across software and information systems. Complete understanding and wide application of principles, concepts, and techniques in cybersecurity; general knowledge of related IS disciplines. Awareness of common threats, vulnerabilities, and attack vectors. Basic knowledge of incident response practices (identify, contain, mitigate). Effective communication (written and verbal), analytical mindset, and problem-solving skills. Preferred Qualifications. Preferred Qualifications:Level I:Familiarity with enterprise/research computing (on-prem/virtualized). SIEM/log analysis experience (e.g., Splunk, Elastic, Logstash). Experience identifying and remediating vulnerabilities; collaborates to address risk. Working knowledge of NIST SP 800-53 and FIPS 199. Level II:Experience implementing security controls across heterogeneous platforms (HPC, on-prem/virtualized, applications). Incident response experience (investigation, containment, recovery, post-incident review). Experience maintaining compliance with NIST SP 800-53 and FIPS 199.. Job Application Submission Window. The anticipated closing window for application submission is up to 30 days and may be extended as needed.