Network Security Researcher IV

Key Skills

C++11 Programming, Cisco CCNA certification, Cyber Security, Design, Effective communication skills, Github, Python Programming

Job Description

Battelle's Cyber team is seeking an experienced Network Security Researcher to analyze, identify, and address potential vulnerabilities in computer networks and systems. The position location is in Newport, Rhode Island. Travel to the Pentagon, Columbus OH, and/or other Customer locations may be necessary based on program or customer needs. 

A Network Security Researcher at Battelle is knowledgeable on infrastructure and operation of transmission of data across the Internet and local networks. Network Security Researchers are experts in the OSI model and have knowledge of encryption. This job is right if you have a passion for understanding how machines talk to one another through packet inspection, troubleshooting anomalous network behavior, and designing solutions with a project team operating in a research environment. 

From Silicon to Systems - We are an elite, multi-disciplinary team, bringing together the brightest minds from physics, computer science, electrical engineering, and mathematics to develop unique embedded security solutions for government and industrial customers.

Battelle has been trusted by elite government clients to solve some of the world's hardest security problems. We work in small agile teams to push the bounds of computing technology. Our high-powered labs include specialized software and hardware, so our engineer have everything they need to invent new Cyber solutions.

We encourage new ideas with our large Internal Research and Development (IR&D) program where engineers work on projects they are passionate about. Inventors and innovators are rewarded by our industry-leading intellectual property compensation program. Our group works collaboratively with many parts of Battelle's larger organization on projects ranging from genomics to robotics.

Responsibilities

• As part of a project team, implement architectures to simulate and/or emulate portions of various network architectures in a lab based environment for troubleshooting and root cause analysis of misconfigurations and anomalous behaviors.
• Support analysis and result validation of the detection techniques and mitigations of anomalous behaviors.
• Research techniques used by Advanced Persistent Threats (APT) that would enable movement through, Command and Control (C2) of, and data exfiltration on a targeted network.
• Assist in determining which adversarial techniques network security controls and policies would block.
• Support simulating remaining techniques in a lab and collect data to help develop detection approaches.
• Research emerging trends in networking technology such as Software Defined Networking (SDN) and Network Function Virtualization (NFV).
• Design and develop experiments to analyze the potential impacts these technologies would have on networks and document the results.
• Assist in the development of APT detection approaches using rule-based and Machine Learning (ML) methodologies.

Provide informal technical briefings on testing or experimental results to team members.

Key Qualifications

• Bachelor’s degree in related field with 8 years of experience or mater’s degree in related field with 5 years of experience or PhD with 2 years of experience; or an equivalent combination of education and or experience in a related field.
• Hands on experience with designing and implementing network designs with Cisco, Juniper, and Palo-Alto equipment.
• Familiarity with APT techniques.
• Understanding of networking and security concepts (e.g., TCP/IP stack, routing, firewalls, intrusion detection systems, intrusion prevention systems).
• Familiarity with IP networking concepts (e.g., Quality of Service) and virtual private networks.
• Ability to capture and analyze large amounts of network traffic.
• Ability to communicate technical concepts to teammates.
• Ability to obtain and maintain a Top Secret security clearance.
• Travel may be a frequent as two weeks every two months.

Preferred Qualifications

• Experience with Linux, Microsoft Windows desktop and Server, as well as virtualization environments like VMware ESXi/vSphere.
• Hands on experience with packet capture utilities like tcpdump and WireShark as well as Network Intrusion Detection (NIDs) like Snort, Suricata, and Zeek.
• Familiarity with Python 3.x and Python libraries for machine learning such as TensorFlow and Keras.
• Familiarity with C11 and C++ 11 or later
• Experience with behavioral models like MITRE’s ATT&CK, Lockheed Martin’s “Cyber Kill Chain” that describe Advanced Persistent Threats (APT) tactics and techniques.
• Familiarity with data science techniques 

Benefits: Live an Extraordinary Life

We care about your well-being, not just on the job. Battelle offers comprehensive and competitive benefits to help you live your best life.

• Balance life through a compressed work schedule: Most of our team follows a flexible, compressed work schedule that allows for every other Friday off—giving you a dedicated day to accomplish things in your personal life without using vacation time.
• Take time to recharge: You get paid time off to support work-life balance and keep motivated.
• Prioritize wellness: Stay healthy with medical, dental, and vision coverage with wellness incentives and benefits plus a variety of optional supplemental benefits.
• Better together: Coverage for partners, gender-affirming care and health support, and family formation support.
• Build your financial future: Build financial stability with an industry-leading 401(k) retirement savings plan. For most employees, we put in 5 percent whether you contribute or not, and match your contributions on top of that. 
• Advance your education: Tuition assistance is available to pursue higher education.
• Flexible work arrangements: You have options for where you work and when you work.