Cyber Security Analyst
Listed on 2026-07-07
-
IT/Tech
Cybersecurity, Information Security
Bering-Alaka`ina Holdings (BAH) is looking for a Cybersecurity Analyst 4 (Senior Analyst) to support our government customer on Kaua'i, Hawai'i.
We are seeking a skilled and detail‑oriented Information System Security Officer (ISSO) to support the execution of cybersecurity and risk management activities in accordance with DoD and federal standards. The ISSO will be responsible for implementing the DoDI 8510.01 Risk Management Framework (RMF), supporting Assessment & Authorization (A&A) processes, and ensuring the security posture of information systems.
This role demands a seasoned cybersecurity professional with deep knowledge of federal security standards, hands‑on experience in incident response, and the ability to mentor and guide others in best practices. The analyst will contribute to strategic cybersecurity initiatives, support system accreditation efforts, and ensure continuous monitoring and compliance across both classified and unclassified environments.
DESCRIPTION OF RESPONSIBILITIES- Execute the DoDI 8510.01 Risk Management Framework (RMF) for DoD Information Systems and assist in implementing DoD Assessment & Authorization (A&A) procedures. Support Assessment & Authorization (A&A) activities in alignment with NIST SP 800-37 and 800-53.
- Manage and respond to security events and incidents, including triage, remediation, documentation, escalation, and after‑action reporting.
- Participate in cybersecurity‑related meetings such as Cyber Security Working Groups, system ATO discussions, and IT/Cyber status updates.
- Assist in the development and maintenance of comprehensive cybersecurity programs to protect organizational data, systems, and networks.
- Perform activities related to NIST RMF A&A processes and ensure compliance with policies governing classified and unclassified information systems.
- Ensure adherence to 32 CFR Part 117 (NISPOM), NIST SP 800‑37, and DoDI 8510.01 standards.
- Provide mentorship and training to employees on cybersecurity concepts, policies, and best practices.
- Serve as a liaison with government points of contact (POCs) in a mid‑level ISSO capacity.
- Perform other duties and responsibilities as assigned.
Office conditions are varied and include physical tasks such as lifting, pushing or pulling up to 10 pounds. Physical positions will include but not be limited to walking, sitting or standing for extended periods of time, crawling, kneeling, stooping or cramped working places and work requiring repeated or frequent climbing. Environment will include customer contact, extended workdays, an office laboratory environment.
REQUIREDDEGREE/EDUCATION/CERTIFICATIONS
- Bachelor’s degree in Computer Science or related discipline (Master’s degree preferred)
- Relevant experience may be substituted for a bachelor's degree
- DoD 8570/8140: IAM II
- Ten (10) years of cybersecurity experience, with a strong background in information assurance and system security.
- Five (5) years of RMF experience, including:
- Hands‑on experience with DoD Authorization to Operate (ATO) compliance and certification processes.
- Proficiency in creating and modifying RMF packages and artifacts throughout the acquisition lifecycle.
- Ability to review and generate security documentation such as System Security Plans, POA&Ms, and Security CONOPs.
- Experience preparing and implementing accreditation and certification requirements, including FISMA and COOP documentation.
- Experience assisting Information System Owners (ISOs) with system registration, FISMA data calls, RMF documentation, and coordination with Certifying and Designated Approval Authorities.
- Experience with cybersecurity tools and platforms such as SIEM, ACAS, Trellix (ESS), eMASS, and STIGs.
- Ability to review threat and vulnerability assessments and analyze risks to information systems and networks.
- In-depth knowledge of current Government Information Assurance and Cybersecurity policies, regulations, and standards.
- Strong understanding of NIST SP 800‑53 security and privacy controls and their application within RMF processes.
- Must be a U.S. Citizen
- Secret security clearance is required. Applicants selected either…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).