Job Description

Signal Hill Technologies is seeking a highly skilled Theater Vulnerability Analyst to join our PACAF Defensive Cyber Operations and Mission Assurance Branch team at Joint Base Pearl Harbor-Hickam (JBPHH), Hawaii. This role is critical to advancing PACAF’s vulnerability management program across a vast and strategically significant Area of Responsibility (AOR), supporting mission owners and cyber defenders at Main Operating Bases (MOBs) and Geographically Separated Units (GSUs) throughout the Pacific.

About Signal Hill Technologies:

Founded and led by veteran cyber operators, Signal Hill Technologies delivers advanced cybersecurity solutions to DoD, Intelligence Community, financial services and critical infrastructure clients, with many years of experience defending both US Government and commercial clients against sophisticated, well-funded, motivated adversaries. We are relentless about real results and operationally proven expertise. Our mission is to provide the best technical solutions and hands-on support to address each customer’s unique cyber risks.

Position Responsibilities:

• Analyze PACAF-wide cybersecurity posture reports, generate theater-level vulnerability metrics, and provide clear, actionable fix guidance to PACAF cyber units.
• Serve as a subject matter expert for base-level cyber teams on vulnerability scanning (ACAS/Tenable.sc), patch management (SCCM/MECM), and DoD-mandated endpoint security solutions (HBSS/ESS, Defender for Endpoint, Trelix).
• Maintain current knowledge and operational proficiency with evolving endpoint security tools, ensuring accurate asset identification and health status reporting for all NIPRNet/SIPRNet systems.
• Develop and deliver vulnerability management (VM) training (virtual and on-site) for PACAF base personnel, maintaining up-to-date documentation and supporting compliance with the latest DoD and Air Force directives.
• Act as a key interface between PACAF headquarters, base cyber technicians/ISSMs, and leadership—ensuring compliance, situational awareness, and rapid coordination of patching and mitigation activities.
• Prepare and present command-wide cybersecurity status briefs, compliance updates, and risk assessments to the PACAF Director of Air and Cyberspace Operations and other senior leadership.
• Support the development and revision of vulnerability management processes and standards, recommending improvements for adoption command-wide.
• Track labor, deliverables, travel, and provide administrative assistance to the Cybersecurity SME team (badging, CAC renewals, security processing, etc.).
• Travel up to 40% to PACAF bases and GSUs across the Pacific AOR to execute duties, conduct assessments, and deliver training.

Minimum Qualifications:

• Active Top Secret (TS) / SCI clearance (U.S. citizenship required)
• Certifications: DoD 8570 IAT Level III or CISM or CISSO or CPTE or CySA+ or FITSP-A or GCSA or CISA or CISSP or CISSP-ISSEP or GSLC or GSNA
• One of the following: CASP+ CE, CISA, CISSP (or Associate), CCSP
• 3-4 years’ experience in conducting network vulnerability functions
• Operational expertise with DoD-approved vulnerability scanning tools (ACAS/Tenable.sc) and patch management platforms (SCCM/MECM)
• In-depth experience with DISA STIGs, vulnerability reporting, and by-product analysis
• Strong working knowledge of endpoint security point products (HBSS/ESS, Defender, Trelix)
• Demonstrated proficiency with Microsoft Office Suite and SharePoint collaboration tools
• Ability to analyze scan results, identify vulnerabilities, and drive remediation and mitigation efforts
• Experience developing and delivering cybersecurity training and documentation
• Skilled in briefing technical and non-technical audiences, including senior military leadership

Preferred Qualifications:

• Direct experience supporting PACAF, USAF MAJCOMs, or large, geographically dispersed DoD organizations.
• Familiarity with SIPRNet/NIPRNet operational environments, compliance requirements, and reporting.
• Experience coordinating with multiple mission stakeholders (e.g., ISSMs, field support, command leadership).
• Knowledge of current threat intelligence, MITRE ATT&CK framework, and DoD cyber risk management processes.

Benefits:

• Competitive compensation
• Company health plan
• 401(k) plan with employer match
• Paid holidays and paid time off
• Education reimbursement

How to Apply:

Submit a detailed resume (including complete work history with month/year for each role and all certifications) directly through LinkedIn. Please account for any gaps in employment and specify all relevant training and degrees with the year and month earned.

Job Tags

Similar Jobs