The Nakupuna Companies are a Native Hawaiian Organization (NHO)-owned family of companies comprising large and 8(a) small businesses. Our mission is to create and implement elegant solutions to the government’s most challenging problems while increasing economic opportunities for the Native Hawaiian community.  Over the past 10 years, Nakupuna has become a leader among NHOs and through our successes, the Nakupuna Foundation has given over $15MM to the Native Hawaiian community.   

Nakupuna Consulting is seeking an Information / Cybersecurity Analyst to support PACAF via ACC. This role will work on the operational, functional and mission-assurance aspects of an integrated information security program. The individual will interpret Department of Defense (DoD) and other federal regulations for information security processes, implement established security policies and techniques, and adjust for varying levels of security complexity, conditions or circumstances requiring modification of standard approaches. 

The following reflects management’s definition of essential functions for this job but does not restrict the tasks that may be assigned. Management may assign additional duties and responsibilities to this job at any time due to reasonable accommodation or other reasons.  

• Execute and enforce compliance with operational, functional and mission assurance components of an integrated information security program aligned with PACAF/ACC objectives. 
• Interpret DoD and federal regulations, policies, practices and procedures pertaining to information security, and apply them appropriately within the organization. 
• Implement established security policies, practices, procedures and techniques across organization segments that differ in kind and level of security, complexity, conditions or circumstances requiring adjustment or modification of standard approaches. 
• Assist with risk assessments, vulnerability scans, system audits, configuration reviews, security controls verification, and continuous monitoring of information systems. 
• Support the development and maintenance of documentation including System Security Plans (SSPs), Plans of Action & Milestones (POA&Ms), security assessment reports, accreditation packages and change-management impact analyses. 
• Work collaboratively with system owners, program managers, network operations, and other stakeholders to ensure information system compliance, security posture and aligned mission readiness. 
• Support incident response activities, security event monitoring, and escalation processes as required. 
• Maintain awareness of cyber threat landscape, emerging tools and techniques, DoD cybersecurity frameworks (e.g., RMF, STIGs, DISA guidance) and ensure timely incorporation of relevant updates into procedures and controls. 
• Participate in training and awareness initiatives, mentor newer staff (as applicable) and support program-wide initiatives to enhance cybersecurity maturity. 

Education/Experience:

Required: 

• Bachelor’s degree from an accredited institution in Information Technology, Computer Science, Cybersecurity or related field (or equivalent combination of education and experience). 
• 1-3 years of hands-on experience in cybersecurity, information assurance or related role supporting DoD/large organization (or equivalent entry level experience). 
• Demonstrated understanding of DoD cybersecurity policies, frameworks and processes (e.g., RMF, DISA STIGs, vulnerability management, secure configuration baselines). 
• Strong analytical, organizational, communication (both verbal and written) skills and ability to work collaboratively in a team environment. 
• Proficiency with Microsoft Office and ability to learn new planning, collaboration or cybersecurity tools/systems. 

Preferred: 

• Prior military or DoD experience, especially in an Air Force or joint environment. 
• Familiarity with network and system scanning tools (e.g., ACAS, Nessus), endpoint security solutions (e.g., HBSS), and security information and event management (SIEM) platforms. 
• Experience with change management processes, system authorization packages, and continuous monitoring in a DoD environment. 
• Certifications such as CompTIA Security+, CISSP (or working towards), or equivalent DoD IAM/IA certifications. 
• Experience supporting operations, exercises or mission assurance in a dynamic, multi‐domain environment. 

Work Location: Work is performed in Hampton, Virginia.

Clearance:  Active TS/SCI security clearance required. Must be a U.S. citizen. 

Physical Requirements: The ideal candidate must at a minimum, be able to meet the following physical requirements of the job with or without a reasonable accommodation: 

• Ability to perform repetitive motions with the hands, wrists, and fingers.
• Ability to engage in and follow audible communications in emergencies.
• Ability to sit for prolonged periods at a desk and work on a computer.