Apply on Employer Site

Nakupuna Companies · 1 week ago

Information / Cybersecurity Analyst

Hampton, VA

Full-time

Onsite

Entry Level

1+ years exp

Nakupuna Companies is a Native Hawaiian Organization-owned family of companies focused on providing solutions to government challenges. They are seeking an Information / Cybersecurity Analyst to support PACAF via ACC, focusing on the operational and functional aspects of an integrated information security program while ensuring compliance with DoD regulations.

Environmental ConsultingInformation TechnologyManagement Consulting

Comp. & Benefits

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Execute and enforce compliance with operational, functional and mission assurance components of an integrated information security program aligned with PACAF/ACC objectives

Interpret DoD and federal regulations, policies, practices and procedures pertaining to information security, and apply them appropriately within the organization

Implement established security policies, practices, procedures and techniques across organization segments that differ in kind and level of security, complexity, conditions or circumstances requiring adjustment or modification of standard approaches

Assist with risk assessments, vulnerability scans, system audits, configuration reviews, security controls verification, and continuous monitoring of information systems

Support the development and maintenance of documentation including System Security Plans (SSPs), Plans of Action & Milestones (POA&Ms), security assessment reports, accreditation packages and change-management impact analyses

Work collaboratively with system owners, program managers, network operations, and other stakeholders to ensure information system compliance, security posture and aligned mission readiness

Support incident response activities, security event monitoring, and escalation processes as required

Maintain awareness of cyber threat landscape, emerging tools and techniques, DoD cybersecurity frameworks (e.g., RMF, STIGs, DISA guidance) and ensure timely incorporation of relevant updates into procedures and controls

Participate in training and awareness initiatives, mentor newer staff (as applicable) and support program-wide initiatives to enhance cybersecurity maturity

Qualification

CybersecurityDoD cybersecurity policiesRisk assessmentsMicrosoft OfficeVulnerability managementSecurity certificationsAnalytical skillsChange managementIncident responseContinuous monitoringOrganizational skillsCommunication skillsTeam collaboration

Required

Bachelor's degree from an accredited institution in Information Technology, Computer Science, Cybersecurity or related field (or equivalent combination of education and experience)

1-3 years of hands-on experience in cybersecurity, information assurance or related role supporting DoD/large organization (or equivalent entry level experience)

Demonstrated understanding of DoD cybersecurity policies, frameworks and processes (e.g., RMF, DISA STIGs, vulnerability management, secure configuration baselines)

Strong analytical, organizational, communication (both verbal and written) skills and ability to work collaboratively in a team environment

Proficiency with Microsoft Office and ability to learn new planning, collaboration or cybersecurity tools/systems

Active TS/SCI security clearance required

Must be a U.S. citizen

Ability to perform repetitive motions with the hands, wrists, and fingers

Ability to engage in and follow audible communications in emergencies

Ability to sit for prolonged periods at a desk and work on a computer

Preferred

Prior military or DoD experience, especially in an Air Force or joint environment

Familiarity with network and system scanning tools (e.g., ACAS, Nessus), endpoint security solutions (e.g., HBSS), and security information and event management (SIEM) platforms

Experience with change management processes, system authorization packages, and continuous monitoring in a DoD environment

Certifications such as CompTIA Security+, CISSP (or working towards), or equivalent DoD IAM/IA certifications

Experience supporting operations, exercises or mission assurance in a dynamic, multi‐domain environment