Cybersecurity Program Analyst (Technical Lead)

The Cybersecurity Program Analyst (Technical Lead) holds a pivotal senior technical position, overseeing the management, maintenance, and protection of the specialized Information Technology (IT) and cyber infrastructure that powers the

DOE-SR EM

Cybersecurity Team. As the leading technical expert, this role is entrusted with the smooth operation of key facilities, including the Cyber Lab (730-B), the Cyber Security Operations Center (CSOC) in 730-2B, and critical assets housed within the Central Computing Facility (CCF) in 703-44A. In addition, this position serves as the trusted backup to the Cybersecurity Program Analyst (Team Lead), playing a vital role in safeguarding the availability, integrity, and confidentiality of the hardware and software systems essential for cybersecurity assessments, incident response, and forensic analysis. Requirements Manage the complete lifecycle of network infrastructure, including firewalls, switches, and routers, that support the cybersecurity team's facilities. Administer server hardware, including physical installation, configuration, and ongoing maintenance. Oversee the virtualization environment, including the creation, management, and security of virtual machines and hosts. Manage and maintain all workstation hardware and associated peripherals within the Cyber Lab and CSOC. Ensure all infrastructure components are patched, hardened, and configured in accordance with DOE policies, NIST guidelines, and vendor best practices. Develop and maintain comprehensive documentation for all managed infrastructure, including network diagrams, configuration guides, and asset inventories. Serve as the designated backup for the Cybersecurity Program Analyst (Team Lead), assuming leadership duties as required. Provide advanced technical support and troubleshooting for all cybersecurity team infrastructure and systems. Lead technical projects related to infrastructure upgrades, technology refresh cycles, and the implementation of new tools or capabilities. Collaborate with other IT and security teams to ensure proper integration and interoperability of systems. Implement and manage security controls for the team's infrastructure to prevent unauthorized access and ensure compliance with security policies. Conduct regular vulnerability scanning and configuration audits of all managed assets. Assist the CSAT by providing technical expertise on infrastructure security during assessments and audits. Maintain the operational readiness of the Cyber Lab and CSOC to support forensic analysis, incident response, and malware analysis activities. Provide technical recommendations to leadership for future technology investments and architectural improvements. Stay current on emerging trends and advancements in infrastructure technology, virtualization, and network security. Assist in developing technical training materials and mentoring junior team members on infrastructure management and security. Take direction from the assigned team lead and government tasking as a member of the Cyber Security team. Maintain accountability and security of assigned government equipment. Perform additional responsibilities and tasks, as directed, to support team objectives and organizational goals. Clearance Must possess (or be able to obtain) a "Q" level security clearance. Education Bachelor's Degree in Information Technology, Computer Science, Cybersecurity, or a related field; or an equivalent combination of education and experience. Experience Minimum of 7 years of hands-on experience in IT infrastructure management, network administration, or systems engineering. Demonstrated experience managing enterprise-level firewalls (e.g., Palo Alto, Cisco, Fortinet), including rule-set management, traffic analysis, and policy enforcement. Proven expertise in managing and maintaining server hardware (e.g., Dell, HP) and virtualization platforms (e.g., VMware vSphere). Strong background in network administration, including configuring and managing switches, routers, and VLANs. Experience with system administration for both Windows and Linux-based operating systems. Experience implementing and managing security tools such as vulnerability scanners (e.g., Tenable Nessus) and log management solutions (e.g., Splunk). Up-to-date knowledge of cybersecurity threats and mitigation strategies. Certifications Networking certifications such as CompTIA Network+ or Cisco Certified Network Associate (CCNA). Security certifications such as CompTIA Security+, GIAC Certified Incident Handler (GCIH), or Certified Information Systems Security Professional (CISSP). Vendor-specific certifications such as VMware Certified Professional (VCP),

Microsoft Certified:

Azure Administrator Associate, or similar vendor credentials. Benefits Covers 100% of employee benefit premiums, including Medical (PPO or HDHP Option), Vision, Dental Matching 401K Short- and Long-Term Disability Pet Insurance Professional Development/Education Reimbursement Parking and Transit Benefits for NY, NJ, ATL, and DC Metro areas

Other Duties:

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.