Cyber Security Analyst

Job Title: Cybersecurity Analyst (Top Secret Cleared)

Location: Ft Shafter, Honolulu, HI

Position Type: 6 month contract-to-hire

Pay Range: $58-63/hr. (based on experience) with $140K conversion salary

MUST HAVE: IAM Level III certification in ACTIVE status. One or more of the following certifications are acceptable:

o GSLC – GIAC Security Leadership Certification

o CISM – Certified Information Security Manager

o CISSP – Certified Information Systems Security Professional (or Associate)

Summary:

The Cyber Security Analyst is responsible for all areas of IT cybersecurity and assisting a government Program Information Systems Security Manager (P-ISSM) in managing the risk throughout the Army Pacific conglomerate of networks. The analyst will support the Army Risk Management Framework (RMF) 2.0 process, Command Operational Readiness Assessment (CORA), Organizational Inspection Program, foreign engagements, exercise support, and theater-specific policy development. The Cyber Security Analyst works with other team personnel to ensure they remain on task and assists where needed.

Responsibilities:

• Oversight and accountability of day-to-day security operations of cybersecurity tasks.
• Validate compliant security architecture through understanding and application of current policies, procedures, and standards to provide a layered approach to cybersecurity.
• Evaluate policies against applicable standards for regulatory compliance.
• Cross-reference and validate physical, personnel, facility, information systems, through policies and controls IAW Army Regulations, Department of Defense (DoD) Directives and Instructions.
• Manage information security risks and report findings to the Government.
• Work with system owners to maintain current Authorities to Operate in a manner compliant with the Federal Information Security Management Act (FISMA), DoD Risk Management Framework (RMF), and National Institute of Standards and Technology (NIST) guidance.
• Support cybersecurity requirements during Army and Joint exercises.
• Represent the customer and CG in briefings and meetings regarding the cybersecurity posture of the AOR.
• Attend technical meetings as requested by the Govt. Cybersecurity Program Manager, providing comments and recommendations where required.
• Assist in the review and drafting of policy, SOPs, and directives as required.
• Ensure appropriate Secure Technical Implementation Guidelines (STIG) are maintained through monthly POAM review.
• Review Plans of Action & Milestones (POA&M) for currency and mitigations to identify vulnerabilities.
• Provide recommendations on Cybersecurity perspectives for proposed changes, initiatives, and projects.
• Review change requests, system connection requests, and requests for exceptions to policy to the DODIN-A network. Determine associated risk and draft Memorandums for Record for all requests with recommendation to the Authorizing Official.
• Review all change requests for completeness, accuracy, and residual risk prior to providing approval Memorandum for Request to the AO.