Cyber Security Analyst 4
Alaka`ina Foundation Family of Companies · Kauai County, HI · 2 wk ago
Information TechnologyFull-time
Description of Responsibilities
- Execute the DoDI 8510.01 Risk Management Framework (RMF) for DoD Information Systems and assist in implementing DoD Assessment and Authorization (A&A) procedures.
- Support Assessment & Authorization (A&A) activities in alignment with NIST SP 800-37 and 800-53.
- Manage and respond to security events and incidents, including triage, remediation, documentation, escalation, and after-action reporting.
- Participate in cybersecurity-related meetings such as Cyber Security Working Groups, system ATO discussions, and IT/Cyber status updates.
- Assist in the development and maintenance of comprehensive cybersecurity programs to protect organizational data, systems, and networks.
- Perform activities related to NIST RMF A&A processes and ensure compliance with policies governing classified and unclassified information systems.
- Ensure adherence to 32 CFR Part 117 (NISPOM), NIST SP 800-37, and DoDI 8510.01 standards.
- Provide mentorship and training to employees on cybersecurity concepts, policies, and best practices.
- Serve as a liaison with government points of contact (POCs) in a mid-level ISSO capacity.
- Perform other duties and responsibilities as assigned.
Required Degree/Education/Certifications
- Bachelor’s degree in Computer Science or related discipline (Master's degree preferred)
- Relevant experience may be substituted for a bachelor's degree
- DoD 8570/8140: IAM II
Required Skills and Experience
- Ten (10) years of cybersecurity experience, with a strong background in information assurance and system security.
- Five (5) years of RMF experience, including:
- Hands-on experience with DoD Authorization to Operate (ATO) compliance and certification processes.
- Proficiency in creating and modifying RMF packages and artifacts throughout the acquisition lifecycle.
- Experience preparing and implementing accreditation and certification requirements, including FISMA and COOP documentation.
- Experience assisting Information System Owners (ISOs) with system registration, FISMA data calls, RMF documentation, and coordination with Certifying and Designated Approval Authorities.
- Experience with cybersecurity tools and platforms such as SIEM, ACAS, Trellix (ESS), eMASS, and STIGs.
- Experience reviewing and analyzing threat and vulnerability assessments.
- In-depth knowledge of current Government Information Assurance and Cybersecurity policies, regulations, and standards.
- Strong understanding of NIST SP 800-53 security and privacy controls and their application within RMF processes.
Citizenship and Clearance
- Must be a U.S. Citizen
- Secret security clearance is required. (Applicants selected either must currently possess a Secret clearance or will be subject to a government security investigation and must meet eligibility requirements to obtain clearance prior to commencement of employment and maintain a security clearance for access to classified information or Closed/Restricted Areas throughout duration of employment.)