ABOUT SANDIA

Sandia National Laboratories is the nation’s premier science and engineering lab for national security and technology innovation, with teams of specialists focused on cutting-edge work in a broad array of areas. Some of the main reasons we love our jobs:

• Challenging work with amazing impact that contributes to security, peace, and freedom worldwide
• Extraordinary co-workers
• Some of the best tools, equipment, and research facilities in the world
• Career advancement and enrichment opportunities
• Flexible work arrangements for many positions include 9/80 (work 80 hours every two weeks, with every other Friday off) and 4/10 (work 4 ten-hour days each week) compressed workweeks, part-time work, and telecommuting (a mix of onsite work and working from home)
• Generous vacation, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance*

World-changing technologies. Life-changing careers. Learn more about Sandia at: http://www.sandia.gov

• These benefits vary by job classification.

WHAT YOUR JOB WILL BE LIKE

Are you passionate about solving complex problems and applying your expertise to develop innovative solutions? Join our dynamic team and help solve critical challenges to enhance our nation’s security!
We are seeking an experienced Software Engineer (job title: R&D S&E Cybersecurity) to design and implement cutting-edge solutions for high-consequence national security challenges. In this role, you will collaborate with U.S. government customers to develop impactful capabilities that directly support warfighters, strengthen national security, and deliver measurable results for critical missions. Your contributions will foster innovation, leverage teamwork, and cultivate creativity while addressing key mission needs.

On any given day, you may be called on to:

• Lead and collaborate with technical design teams and subject matter experts to create innovative solutions that meet mission requirements and address end-user needs.
• Utilize your skillset in software system architecture, software system implementation, technical documentation, unit and integration testing, reliability and performance assessment, and/or systematic technology insertion.
• Collaborate with Software Engineers, System Engineers, Information Technology staff, management, and customers to implement solutions that address requirements. Architect software systems, develop code, write unit tests, and create software tools to support the mission.
• Provide on-call support for software discrepancy resolution in the production environment.
• Develop and execute test plans/procedures, create reports, and write software documentation.
• Perform system integration and testing.
• Apply system design principles to architect scalable, reliable, and secure solutions for critical missions.
• Incorporate software design methodologies to proactively address cybersecurity considerations throughout the software development lifecycle.
• Develop and refine system CONOPS (Concept of Operations) to ensure technical solutions address operational needs.

Due to the nature of the work, the selected applicant must be able to work onsite 100% of the time at the Livermore, CA site.
Applicants on this requisition may be interviewed by multiple organizations at Sandia National Laboratories.
Ability and willingness to travel, up to 25%, required.

QUALIFICATIONS WE REQUIRE

• A Bachelor’s degree in a relevant discipline and five (5) years of directly relevant experience, or an equivalent combination of directly relevant education and engineering or scientific experience that demonstrates the knowledge, skills, and ability to perform independent research and development.
• Ability to obtain and maintain a DOE Q-level and SCI-level security clearance, which may require a polygraph test.

QUALIFICATIONS WE DESIRE

The ideal R&D S&E Cybersecurity candidate for Sandia National Laboratories will in addition possess the following:

• Graduate degree in Computer Science/Engineering, Electrical Engineering, Computer Information Systems, Computer Forensics, Mathematics or a directly related field where an independent research project was a graduation requirement (e.g., independent project, thesis, or dissertation).
• Experience in one or more of the following: reverse engineering, software vulnerability assessment, web application assessment, computer networking, computer architecture, compilers, or similar computer security topics.
• Proficiency in scripting or high-level programming.
• Familiarity with secure-system design principles and information assurance principles.
• Excellent communication skills and a demonstrated ability to develop technical ideas and results and present them in oral and written form in a concise manner.

Also, for this posting we are seeking individuals with the following experience:

• Demonstrated experience with object-oriented programming using Java.
• Hands-on experience with web application development using JavaScript, JQuery, or Spring MVC.
• Knowledge of secure software engineering practices, including vulnerability assessment and software supply chain management methodologies such as Nexus scanning.
• Proven experience with Tomcat, Linux, Typescript, HTML5/CSS, Angular, Dust, or Oracle Database.
• Experience with Web Services, including WSDL, SOAP, and REST.
• Proven experience with Test-driven development and testing methodologies.
• Experience with any of the following: Apache Karaf, Apache Camel, Mina/Netty, OSGI, JMX, JDBC, Apache Aries, Log4J2, Apache CXF, Docker, Hazelcast, or Apache Ignite.
• Hands-on experience with Relational Databases (e.g., Oracle PL/SQL, SQLite) and Non-Relational Databases (e.g. NoSQL, Cassandra).
• Experience designing software systems with a minimum cyber-attack surface while avoiding and mitigating Common Vulnerabilities and Exposures (CVE) risks.
• Proven ability in partnering with security stakeholders to create patching and mitigation strategies.
• Ability to analyze technology stacks to identify opportunities for optimization, security enhancements, and risk reduction.
• Demonstrated expertise in cyber risk management, including identifying, mitigating, and documenting risks associated with software systems and architectures.
• Familiarity with using defensive security principles to take proactive approaches in mitigating cybersecurity threats.
• Ability to navigate ambiguous situations, and collaborate effectively with stakeholders and internal/external mission partners.
• Active DOE Q/SCI security clearance or equivalent DOD Top Secret/SCI security clearance.

NNSA REQUIREMENTS FOR MEDPEDS

If you have a Medical Portable Electronic Device (MedPED), such as a pacemaker, defibrillator, drug-releasing pump, hearing aids, or diagnostic equipment and other equipment for measuring, monitoring, and recording body functions such as heartbeat and brain waves, if employed by Sandia National Laboratories you may be required to comply with NNSA security requirements for MedPEDs.
If you have a MedPED and you are selected for an on-site interview at Sandia National Laboratories, there may be additional steps necessary to ensure compliance with NNSA security requirements prior to the interview date

Please refer the Job description for details