We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Po'okela jobs

Defense Assessment Analyst

Po'okela
life insurance, paid time off, paid holidays, tuition reimbursement, 401(k)
United States, Hawaii, Honolulu
1600 Kapiolani Boulevard (Show on map)
Jul 12, 2025

The Alaka`ina Foundation Family of Companies (FOCs) is looking for a Defense Assessment Analyst (Penetration Tester) to support our government customer located in Honolulu, HI.

The Defense Assessment Analyst (Penetration Tester) shall plan for and conduct Operational Tests and Evaluation (OT&E) cyber survivability assessments on the customer networks throughout the Pacific Area of Operations. The Defense Assessment Analyst will perform Test and Evaluation planning, execution, data collection, analysis, and reporting in an effort to enhance the Defense-In-Depth posture of customer networks. This position is 100% on-site in a government facility.

DESCRIPTION OF RESPONSIBILITIES:

Primary Responsibilities:

  • Conduct cooperative Vulnerability and Penetration Assessment (CVPA) performed with the objective of identifying and providing a comprehensive characterization of the cybersecurity status of the SUT in an operational context for purposes of helping to mitigate the cybersecurity risks associated with that system. The Defense Assessment Analyst shall review applicable system RMF information to identify the residual risks to be verified through the CVPA process.

  • Conduct network penetration testing by simulating cyberattacks on a network to identify vulnerabilities before malicious hackers can exploit them. This process helps customer organizations strengthen their security posture by uncovering weaknesses in firewalls, applications, endpoints, end users, and other network components.

  • Responsible for conducting both local and remote penetration testing designed to emulate current threat models to the customer network to execute an assessment of the defensive security posture.

  • Evaluate for acceptance new penetration testing procedures as required for inclusion on approved penetration tools list.

  • Organize and conduct Cyber Defense Assessment Program missions consisting of both NAV and PPT mission areas based on customer prioritization and direction.

  • Organize and conduct NDA missions. This includes validating suspected compromises and identifying the depth of intrusions to gain knowledge for use in mitigation, recovery, and future prevention of possible compromises.

  • Execute web assessments of all registered public facing web sites, within the customer's area of responsibility.

Key Responsibilities:

  • Plan and execute controlled cyber adversary attacks to test security defenses, monitoring capabilities, and incident response effectiveness.

  • Develop and refine attack tools, scripts, and exploit payloads to simulate real-world cyber threats.

  • Conduct network and web application penetration testing using manual and automated techniques.

  • Perform adversarial assessments to evaluate CSSP security effectiveness against Advanced Persistent Threats (APTs).

  • Leverage social engineering tactics such as phishing, spear-phishing, and pretexting to assess user awareness and susceptibility to attacks.

  • Exploit vulnerabilities in network, cloud, and endpoint environments to gain persistence and escalate privileges.

  • Use Red Team frameworks and tools.

  • Test the effectiveness of detection mechanisms and provide recommendations for improved security monitoring.

  • Develop and document Tactics, Techniques, and Procedures (TTPs) based on MITRE ATT&CK and industry best practices.

  • Create after-action reports and remediation guidance for CSSP stakeholders to strengthen defenses.

  • Participate in team exercises to enhance threat detection and response collaboration.

  • Train and mentor junior team members on attack methodologies and ethical hacking techniques.

REQUIRED DEGREE/EDUCATION/CERTIFICATION:

  • BA/BS from an accredited university required

  • Must meet DoD 8140 DCWF 612 requirements (CCISO, CISA, CISM, CISSO, CISSP, CISSP-ISSEP, CPTE, CySA+, FITSP-A, GCSA, GSLC)

DESIRED CERTIFICATIONS:

  • OffSec Experienced Penetration Tester (OSEP)

  • OffSec Certified Professional (OSCP)

  • GIAC Penetration Tester (GPEN)

  • Cloud Penetration Tester (GCPN)

  • Web Application Penetration Tester (GWAPT)

  • Certified Professional Penetration Tester (eCPPT)

  • Web Application Penetration Tester (eWPT)

  • Junior Penetration Tester (eJPT)

REQUIRED SKILLS AND EXPERIENCE:

  • Minimum of 5+ years of related IT experience

  • Excellent written and verbal communication and customer service skills.

  • Ability to work independently and as a team member.

  • Ability to handle large, complex workloads, effectively coordinate multiple resources, and multi-task in a fast-paced environment.

  • Knowledge and skill in applying analytical and evaluation methods and techniques.

  • Ability to handle controversial situations with tact and diplomacy.

  • Knowledge of cybersecurity and privacy principles.

  • Knowledge of computer networking concepts and protocols, and network security methodologies.

  • Knowledge of DoD regulations, policies, and ethics as they relate to cybersecurity and privacy.

REQUIRED CITIZENSHIP AND CLEARANCE:

Top Secret /SCI clearance required.

The Alaka`ina Foundation Family of Companies (FOCs) is a fast-growing government service provider. Employees enjoy competitive salaries. Eligible employees enjoy a 401K plan with company match; medical, dental, disability, and life insurance coverage; tuition reimbursement; paid time off; and 11 paid holidays.

We are an Equal Opportunity/Affirmative Action Employer of individuals with disabilities and veterans. We are proud to state that we do not illegally discriminate in employment decisions on the basis of any protected categories. If you are a person with a disability and you need an accommodation during the application process, please click here to request accommodation. We E-Verify all employees

"EOE, including Disability/Vets" OR "Equal Opportunity Employer, including Disability/Veterans"

The Alaka`ina Foundation Family of Companies (FOCs) is comprised of industry-recognized government service firms designated as Native Hawaiian Organization (NHO)-owned and 8(a) certified businesses. The Family of Companies (FOCs) includes Ke`aki Technologies, Laulima Government Solutions, Kpono Government Services, and Kapili Services, Po`okela Solutions, Kkaha Solutions, LLC, and Pololei Solutions, LLC. Alaka`ina Foundation activities principally benefit the youth of Hawaii through charitable efforts which includes providing innovative educational programs that combine leadership, science & technology, and environmental stewardship.

For additional information, please visit www.alakainafoundation.com

#LI-JS1

#ClearanceJobs

Applied = 0
MORE JOBS LIKE THIS

(web-8588dfb-6jkxz)