Information Systems Security Engineer

We have an opening for an Information Systems Security Engineer (ISSE) to provide advanced cybersecurity support to a variety of LLNL DOE and customer missions. This position is in the Information Technology Support (ITS) Division supporting the Strategic Deterrence Directorate.

This position requires fulltime onsite presence due to the nature of the work.

This position will be filled at either level based on knowledge and related experience as assessed by the hiring team. Additional job responsibilities (outlined below) will be assigned if hired at the higher level.

You will 

• Develop implement and monitor security controls to ensure compliance with frameworks standards and Federal requirements.
• Manage security monitoring tools (e.g. Splunk Tenable) to detect analyze and respond to security incidents.
• Assess and mitigate security threats perform audits and maintain system integrity.
• Design and architect systems to meet cybersecurity requirements and program needs.
• Collaborate with teams to integrate cybersecurity practices across systems operations and continuous monitoring projects.
• Recommend improvements to security monitoring incident response processes and risk strategies.
• Research analyze and apply cybersecurity policies to mitigate risks and enhance efficiency.
• Execute project plans gather metrics and report results.
• Provide guidance on policies requirements and solutions and coordinate working groups.
• Perform other duties as assigned.

Additional job responsibilities at the SES.3 level

• Provide advanced technical assistance training and/or mentoring to others in the area of cybersecurity.
• Collaborate in the development of new processes and serve as a primary technical point of contact with stakeholders.
• Lead efforts to implement and optimize security monitoring tools (e.g. Splunk Tenable STIG/SCAP) to enhance incident detection and response capabilities.
• Partner with crossfunctional teams to ensure seamless integration of cybersecurity tools and practices into existing infrastructure and operations.
• Drive continuous improvement in security control implementation and compliance monitoring to meet evolving industry standards and Federal requirements.

Qualifications :

• Ability to secure and maintain a U.S. DOE Qlevel security clearance which requires U.S. citizenship.
• Bachelors degree in Computer Science Engineering Cyber Security Information Assurance or in a related field or equivalent combination of education and technical training in a security discipline(s) and related experience.
• Broad experience in assessing and quantifying cybersecurity risks managing vulnerabilities and effectively utilizing analytical and research skills effectively to develop unique cybersecurity solutions.
• Strong understanding of cybersecurity principles best practices and frameworks such as NIST Risk Management Framework Command Cyber Readiness Inspection or ISO 27001.
• Proficiency in monitoring and/or hardening technical operations such as firewalls intrusion detection systems and operating systems environments.
• Proficiency in scripting languages (e.g. Python Bash Powershell) for automation of cybersecurity tasks.
• Knowledge of cloud security tools and best practices.
• Proficient verbal and written communication skills necessary to collaborate in a team environment and document present and explain technical information.
• Demonstrated ability to effectively manage concurrent technical tasks with conflicting priorities to approach difficult problems with enthusiasm and creativity and to change focus when necessary with experience working independently.

Additional qualifications at the SES.3 level

• Advanced knowledge of and technical expertise with cyberrelated tools for continuous monitoring such as Splunk STIG/SCAP and Tenable.
• Advanced analytical problemsolving and decisionmaking skills necessary to develop creative solutions for complex problems.
• Significant experience in computer and network technologies and knowledge of cybersecurity requirements.

Qualifications We Desire

• Experience leading and conducting internal audits participating in Government assessments and inspections and investigating and mitigating areas of risk or noncompliance.
• Expert knowledge of multiple cybersecurity disciplines including network/protocol analysis intrusion detection cryptography reverse engineering incident response malware analysis and/or secure architectures.
• Experience with security monitoring and endpoint detection and response tools such as SCAP Splunk Tenable and SentinelOne

Additional Information :

#LIOnsite

Position Information

This is a Career Indefinite position open to Lab employees and external candidates.

Why Lawrence Livermore National Laboratory

• Included in 2025 Best Places to Work by Glassdoor!
• Flexible Benefits Package
• 401(k)
• Relocation Assistance
• Education Reimbursement Program
• Flexible schedules *depending on project needs)
• Our values visit  Clearance

  This position requires a Department of Energy (DOE) Qlevel clearance.  If you are selected we will initiate a Federal background investigation to determine if you meet eligibility requirements for access to classified information or matter. Also all L or Q cleared employees are subject to random drug testing.  Qlevel clearance requires U.S. citizenship. 

  PreEmployment Drug Test

  External applicant(s) selected for this position must pass a postoffer preemployment drug test. This includes testing for use of as Federal Law applies to us as a Federal Contractor.

  Wireless and Medical Devices

  Per the Department of Energy (DOE) Lawrence Livermore National Laboratory must meet certain restrictions with the use and/or possession of mobile devices in Limited Areas. Depending on your job duties you may be required to work in a Limited Area where you are not permitted to have a personal and/or laboratory mobile device in your possession.  This includes but not limited to cell phones tablets fitness devices wireless headphones and other Bluetooth/wireless enabled devices.  

  If you use a medical device which pairs with a mobile device you must still follow the rules concerning the mobile device in individual sections within Limited Areas.  Sensitive Compartmented Information Facilities require separate approval. Hearing aids without wireless capabilities or wireless that has been disabled are allowed in Limited Areas Secure Space and Transit/Buffer Space within buildings.

  How to identify fake job advertisements

  Please be aware of recruitment scams where people or entities are misusing the name of Lawrence Livermore National Laboratory (LLNL) to post fake job advertisements. LLNL never extends an offer without a personal interview and will never charge a fee for joining our company. All current job openings are displayed on the Career Page under Find Your Job of our website. If you have encountered a job posting or have been approached with a job offer that you suspect may be fraudulent we strongly recommend you do not respond.

  To learn more about recruitment scams:  Employment Opportunity

  We are an equal opportunity employer that is committed to providing all with a work environment free of discrimination and harassment. All qualified applicants will receive consideration for employment without regard to race color religion marital status national origin ancestry sex sexual orientation gender identity disability medical condition pregnancy protected veteran status age citizenship or any other characteristic protected by applicable laws.

  Reasonable Accommodation

  Our goal is to create an accessible and inclusive experience for all candidates applying and interviewing at the Laboratory.  If you need a reasonable accommodation during the application or the recruiting process please use our online form to submit a request. 

  California Privacy Notice

  The California Consumer Privacy Act (CCPA) grants privacy rights to all California residents. The law also entitles job applicants employees and nonemployee workers to be notified of what personal information LLNL collects and for what purpose. The Employee Privacy Notice can be accessed here.

  
  

  Remote Work :

  No

  
  

  Employment Type :

  Fulltime