Assists with risk assessments, and development of security architecture solutions and technologies ... Use of network analysis tools to identify vulnerabilities (e.g., fuzzing, nmap, etc.). * Reviewing ...
Assists with risk assessments, and development of security architecture solutions and technologies ... Use of network analysis tools to identify vulnerabilities (e.g., fuzzing, nmap, etc.). * Reviewing ...
Carries out DoW Risk Management Framework (RMF) in accordance with DoW 8510 to ascertain ... Perform Security Impact Analysis based on organizational requirements. * Communicates alerts to ...
Carries out DoW Risk Management Framework (RMF) in accordance with DoW 8510 to ascertain ... Perform Security Impact Analysis based on organizational requirements. * Communicates alerts to ...
Lead and conduct senior-level policy analysis of any new or revised regulatory requirements related ... In collaboration with the Kakaako Campus Shared Administrative Services (KCCAS) HIPAA/Data Security ...
Lead and conduct senior-level policy analysis of any new or revised regulatory requirements related ... In collaboration with the Kakaako Campus Shared Administrative Services (KCCAS) HIPAA/Data Security ...
Information Security Analyst 4 with Security Clearance
Aiea, HI · On-site
$53K - $106K/yr
Information Security Analyst 4 Job Category: Information Technology Time Type: Full time Minimum ... Assess system vulnerabilities for security risks and propose and implement risk mitigation ...
Information Security Analyst 4 with Security Clearance
Aiea, HI · On-site
$53K - $106K/yr
Information Security Analyst 4 Job Category: Information Technology Time Type: Full time Minimum ... Assess system vulnerabilities for security risks and propose and implement risk mitigation ...
Must have foundational knowledge across key risk disciplines including information security ... Directs the design and enhancement of vendor risk systems, tools, and analytics platforms. Ensures ...
Must have foundational knowledge across key risk disciplines including information security ... Directs the design and enhancement of vendor risk systems, tools, and analytics platforms. Ensures ...
Director Vendor Risk Management
Honolulu, HI · On-site
$142K - $255K/yr
Directs the design and enhancement of vendor risk systems, tools, and analytics platforms. Ensures ... Must have foundational knowledge across key risk disciplines including information security ...
Director Vendor Risk Management
Honolulu, HI · On-site
$142K - $255K/yr
Directs the design and enhancement of vendor risk systems, tools, and analytics platforms. Ensures ... Must have foundational knowledge across key risk disciplines including information security ...
Lead and conduct senior-level policy analysis of any new or revised regulatory requirements related ... In collaboration with the Kakaako Campus Shared Administrative Services (KCCAS) HIPAA/Data Security ...
Lead and conduct senior-level policy analysis of any new or revised regulatory requirements related ... In collaboration with the Kakaako Campus Shared Administrative Services (KCCAS) HIPAA/Data Security ...
Risk Management Framework Validator
Wahiawa, HI · On-site
$125K - $140K/yr
Perform security control assessments on RMF packages before submission to Echelon II, Security ... Provide analysis, updates, and reports via eMASS in support of the command Assessment ...
Quick apply
Risk Management Framework Validator
Wahiawa, HI · On-site
$125K - $140K/yr
Perform security control assessments on RMF packages before submission to Echelon II, Security ... Provide analysis, updates, and reports via eMASS in support of the command Assessment ...
... Analyst will evaluate information assurance compliance and coordinate program security ... Oversee the execution of the DoDI 8510.01 Risk Management Framework (RMF) for PMRF Information ...
... Analyst will evaluate information assurance compliance and coordinate program security ... Oversee the execution of the DoDI 8510.01 Risk Management Framework (RMF) for PMRF Information ...
Prepare information papers and reports to inform Flag and General Officers (FO/GO) on risk to ... Gather and analyze cyber threat intelligence from a variety of sources, including Open-Source ...
Prepare information papers and reports to inform Flag and General Officers (FO/GO) on risk to ... Gather and analyze cyber threat intelligence from a variety of sources, including Open-Source ...
Cyber Security Analyst 3 with Security Clearance
Waimea, HI · On-site
$118K - $128K/yr
... Analyst will evaluate information assurance compliance and coordinate program security ... Oversee the execution of the DoDI 8510.01 Risk Management Framework (RMF) for PMRF Information ...
Cyber Security Analyst 3 with Security Clearance
Waimea, HI · On-site
$118K - $128K/yr
... Analyst will evaluate information assurance compliance and coordinate program security ... Oversee the execution of the DoDI 8510.01 Risk Management Framework (RMF) for PMRF Information ...
Data Scientist (Hawaii)
Wahiawa, HI · On-site
$98K - $215K/yr
Security Risk Analysis, Mitigation & Training All delivered by highly talented and focused team members that are supported by an unmatched professional and family-oriented culture that leverages and ...
Data Scientist (Hawaii)
Wahiawa, HI · On-site
$98K - $215K/yr
Security Risk Analysis, Mitigation & Training All delivered by highly talented and focused team members that are supported by an unmatched professional and family-oriented culture that leverages and ...
Data Scientist (Hawaii)
Wahiawa, HI · On-site
$98K - $215K/yr
Security Risk Analysis, Mitigation & Training All delivered by highly talented and focused team members that are supported by an unmatched professional and family-oriented culture that leverages and ...
Data Scientist (Hawaii)
Wahiawa, HI · On-site
$98K - $215K/yr
Security Risk Analysis, Mitigation & Training All delivered by highly talented and focused team members that are supported by an unmatched professional and family-oriented culture that leverages and ...
... risk assessments of equipment and systems for compliance with cybersecurity standards and ... analyzing information security systems. • Develop information security standards and best ...
... risk assessments of equipment and systems for compliance with cybersecurity standards and ... analyzing information security systems. • Develop information security standards and best ...
Enterprise AI Solutions Architect
$175K - $230K/yr
... advanced analytics solutions in an enterprise environment inclusive of: * Strong hands-on ... security, risk, and regulatory expectations.
Enterprise AI Solutions Architect
$175K - $230K/yr
... advanced analytics solutions in an enterprise environment inclusive of: * Strong hands-on ... security, risk, and regulatory expectations.
Enterprise AI Solutions Architect
Honolulu, HI · On-site
$175K - $230K/yr
... security, risk, and regulatory expectations. Qualifications The ideal candidate will have ... advanced analytics solutions in an enterprise environment inclusive of: * Strong hands-on ...
Enterprise AI Solutions Architect
Honolulu, HI · On-site
$175K - $230K/yr
... security, risk, and regulatory expectations. Qualifications The ideal candidate will have ... advanced analytics solutions in an enterprise environment inclusive of: * Strong hands-on ...
Key Management Specialist
Honolulu, HI · On-site
... Risk Analyst, Secure Storage Engineer, Threat Intelligence Analyst, Security Systems Administrator, etc. DEGREE (Level Desired) Bachelor's Degree DEGREE (Focus) Cybersecurity, Computer Science ...
Key Management Specialist
Honolulu, HI · On-site
... Risk Analyst, Secure Storage Engineer, Threat Intelligence Analyst, Security Systems Administrator, etc. DEGREE (Level Desired) Bachelor's Degree DEGREE (Focus) Cybersecurity, Computer Science ...
Senior Cyber Defense Analyst with Security Clearance
Camp H M Smith, HI · On-site
$97K - $125K/yr
As a Night Shift Senior Cyber Defense Analyst Lead within SOSi's INDOPACOM Network Security ... specific risk indicators. * Ensure incidents, investigations, shift notes, case updates, and ...
Senior Cyber Defense Analyst with Security Clearance
Camp H M Smith, HI · On-site
$97K - $125K/yr
As a Night Shift Senior Cyber Defense Analyst Lead within SOSi's INDOPACOM Network Security ... specific risk indicators. * Ensure incidents, investigations, shift notes, case updates, and ...
Audit Support Financial Analyst with Security Clearance
Honolulu, HI · On-site
$52K - $108K/yr
You will support the client in responding to internal and external audits, perform risk analysis on ... Applicants selected will be subject to a security investigation and may need to meet eligibility ...
Audit Support Financial Analyst with Security Clearance
Honolulu, HI · On-site
$52K - $108K/yr
You will support the client in responding to internal and external audits, perform risk analysis on ... Applicants selected will be subject to a security investigation and may need to meet eligibility ...
SAP Security Specialist with Security Clearance
Joint Base Pearl Habor Hickam, HI · On-site
$115K - $175K/yr
Strong analytical, problem-solving, and risk-assessment capabilities; ability to interpret complex regulations and design effective security programs. Communication: Excellent written and verbal ...
SAP Security Specialist with Security Clearance
Joint Base Pearl Habor Hickam, HI · On-site
$115K - $175K/yr
Strong analytical, problem-solving, and risk-assessment capabilities; ability to interpret complex regulations and design effective security programs. Communication: Excellent written and verbal ...
Security Risk Analyst information
See Hawaii salary details
$10.74 - $16.37
2% of jobs
$16.37 - $22
0% of jobs
$22 - $27.63
1% of jobs
$27.63 - $33.26
1% of jobs
$33.26 - $38.89
1% of jobs
$43.12 is the 25th percentile. Wages below this are outliers.
$38.89 - $44.52
26% of jobs
$44.52 - $50.15
11% of jobs
The median wage is $52.17 / hr.
$50.15 - $55.78
22% of jobs
$55.78 - $61.42
9% of jobs
$61.86 is the 75th percentile. Wages above this are outliers.
$61.42 - $67.05
17% of jobs
$67.05 - $72.68
9% of jobs
$10
$52
$72
How much do security risk analyst jobs pay per hour?
Can I make $200,000 a year in cyber security?
What does a Security Risk Analyst do?
What are the key skills and qualifications needed to thrive as a Security Risk Analyst, and why are they important?
What are some common challenges Security Risk Analysts face when collaborating with other departments?
Can you make $500,000 a year in cyber security?
Is SOC an entry-level job?
What is the difference between Security Risk Analyst vs Security Analyst?
| Aspect | Security Risk Analyst | Security Analyst |
|---|---|---|
| Certifications | CompTIA Security+, CISSP, CISA | CompTIA Security+, CISSP, CEH |
| Work Environment | Risk assessment, vulnerability analysis, policy development | Monitoring security systems, incident response, security audits |
| Employer & Industry Usage | Financial, healthcare, government sectors focusing on risk mitigation | IT departments across various industries focusing on security operations |
While both roles focus on cybersecurity, Security Risk Analysts primarily assess and manage potential security threats and vulnerabilities, emphasizing risk mitigation strategies. Security Analysts tend to monitor security systems, respond to incidents, and ensure ongoing security measures. Both roles often require similar certifications and work environments but differ in their core responsibilities within cybersecurity teams.
What is a security risk analyst?

Information Assurance Analyst - Oahu (Honolulu, Hawaii (HI), US, 96840)
Honolulu, HI • On-site
Full-time
Posted 8 days ago
Job description
Our employees are committed to the company's foundational values: integrity, excellence, teamwork, environmental stewardship, and community commitment. In turn, we invest in our employees, providing opportunities for challenge and advancement and offering a competitive compensation package.
Applications will be screened based on the information provided; in order to assist us in determining qualifications, please upload a current resume and take some time to update your employment information, certifications, etc. The information will flow over to your profile.
Posting End Date: This position will remain open until filled. Early applications are highly encouraged.
BRIEF POSTING DESCRIPTION:
The P EJ INFORMATION ASSURANCE Department of the P INFORMATION ASSURANCE Division at Hawaiian Electric Company has 2 Management vacancies available. (Role: Professional)
JOB FUNCTION:
- Performs assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, policies, or guidance. Measures effectiveness of defense-in-depth architecture against known vulnerabilities.
- Assists with risk assessments, and development of security architecture solutions and technologies.
- Supports development of detailed proposals and plans for new information security systems and controls to enhance or enable new capabilities for network or hosted applications.
- Conducts ongoing compliance reviews; assists in developing practices to ensure adequate information security and IT controls.
ESSENTIAL FUNCTIONS:
- Performs information security risk assessments and recommends mitigating controls and solutions for IT and Operations Technology (OT) projects and applications, including proposals for externally hosted applications and new utility technology projects.
- Assists with the system assessments for conformance with configuration control, policy, and guidance.
- Assists with program development and management for privacy, e-discovery, security awareness training, digital forensics, vulnerability remediation, and other security and compliance programs.
- Performs miscellaneous administrative roles such as schedule development, information tracking, updating deliverables and other work assigned.
- Supports the Company's business continuity planning, IT disaster recovery planning, cybersecurity incident response planning and team (CS-IMT), with occasional on-call support.
- Participates in Company emergency response activities as assigned, including any activities required to prepare for such emergency response.
BASIC QUALIFICATIONS:
Knowledge Requirements
- Computer networking concepts and protocols, and network security methodologies.
- Risk management processes (e.g., methods for assessing and mitigating risk).
- Cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
- Laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
- Cyber threats and vulnerabilities.
- Cryptography and cryptographic key management concepts.
- Data backup and recovery concepts.
- Host/network access control mechanisms (e.g., access control list, capabilities list).
- Network access, identity, and access management (e.g., public key infrastructure, Oauth, OpenID, SAML, SPML).
- Traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).
- Programming language structures and logic.
- System and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).
- Network attacks and a network attack's relationship to both threats and vulnerabilities.
- System administration, network, and operating system hardening techniques.
- Different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks).
- Different cyber attackers (e.g., script kiddies, insider threat, non-nation state sponsored, and nation sponsored).
- Different cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks, etc.).
- Network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
- Specific operational impacts of cybersecurity lapses.
- Security models (e.g., Bell-LaPadula model, Biba integrity model, Clark-Wilson integrity model).
- Ethical hacking principles and techniques.
- Penetration testing principles, tools, and techniques.
Skills Requirements
- Conducting vulnerability scans and recognizing vulnerabilities in security systems.
- Assessing the robustness of security systems and designs.
- Detecting host and network-based intrusions via intrusion detection technologies (e.g., Snort).
- Mimicking threat behaviors.
- Use of penetration testing tools and techniques.
- Use of social engineering techniques (e.g., phishing, baiting, tailgating, etc.).
- Use of network analysis tools to identify vulnerabilities (e.g., fuzzing, nmap, etc.).
- Reviewing logs to identify evidence of past intrusions.
- Conducting application vulnerability assessments.
- Performing impact/risk assessments.
- Developing insights about the context of an organization's threat environment.
- Collaborating with teammates and other employees.
- Communicating effectively in writing and verbally.
Experience Requirements
Entry Level:1
- 1-3 years of experience in Systems administration, basic cyber analysis/operations, cyber threats, risk management, network management, IT system design, cloud deployment or wireless networking.
- Associates Degree or equivalent work experience in Computer science, cybersecurity, information technology, software engineering, information systems, computer engineering.
- Obtain within the first six months of employment one or more of the following Certifications A+ CE, CCNA-Security, CND, Network+ CE, SSCP, CCNA Security, CySA+ (CSA+), GICSP, GSEC, Security+ CE, CND, SSCP (Other certification will be considered).
Intermediate Level:
- 4-7 years of experience in information assurance, incident handling, risk management, vulnerability management and analysis, and assistance programs.
- Bachelor's degree (or higher) in computer science, cybersecurity, information technology, software engineering, information systems, computer engineering.
- One or more of the following Certifications A+ CE, CCNA-Security, CND, Network+ CE, SSCP, CCNA Security, CySA+ (CSA+), GICSP, GSEC, Security+ CE, CND, SSCP (Other certification will be considered).
Role: Professional
Number of Vacancies: 2
Location: Honolulu - Oahu
Hiring Range: The hiring range for the Information Assurance Analyst [Req ID 10560] position is $89,100.00 to $113,700.00. The person selected will be placed according to his/her skills and qualifications.
About Hawaiian Electric Companies
Hawaiian Electric Companies provide electricity and services to 95 percent of the state's 1.4 million residents. The company is also one of the state's leading employers and a major contributor and supporter of community and educational programs.
The demand for power that has fueled the growth of the Hawaiian Islands has been met by Hawaiian Electric Companies for well over a century. And as the next millennium unfolds, the company is committed to providing quality service and seeking clean local energy sources to power generations of Hawaii families and businesses to come. Visit us at http://hawaiianelectric.com.
Interested individuals should apply online. The application must clearly indicate the demonstrated experience/knowledge/skills/abilities the candidate possesses which specifically qualifies him/her for the position.
Applicant Certification
By submitting an application for the position, candidates:
1. Authorize the Hawaiian Electric Companies to confirm all statements contained in the application and/or any materials submitted and made a part of the application as they relate to the position and to the extent permitted by law;
2. Authorize and consent to, without reservation, the Hawaiian Electric Companies sharing any and all information regarding previous or present employment, educational training or personal information from their records and from any other source with the hiring department or subsidiary company;
3. Release, discharge, and hold harmless, Hawaiian Electric Companies, from any and all liability for any damage which may be claimed as a result of furnishing such information to the hiring department or subsidiary company;
4. Authorizes release and transfer of all personnel records to be maintained by the hiring company in the event of an inter-company transfer; and
5. Authorize, direct, and consent to Hawaiian Electric Companies and/or its authorized agents to conduct investigations into candidates' background. These investigations may include, but are not limited to searches for information about applicants; record of criminal convictions to the extent permitted by law, education records, professional certifications, personal character references, and employment history.
EEO StatementHawaiian Electric Companies is an equal opportunity employer, including disability and protected veteran status. Hawaiian Electric Companies complies with all applicable laws, including Title I of the Americans with Disabilities Act. Any request for reasonable accommodation needed during the application process should be communicated by the candidate to the HR Service Center at (808) 543-4848.
Affiliate Disclaimer
The relationship between Hawaiian Electric and unregulated, energy-related affiliate companies is governed by the Affiliate Transaction Requirements (ATRs) established by the Hawaii Public Utilities Commission (PUC). The ATRs were established with the PUC's Decision and Order No. 35962 issued on December 19, 2018, and subsequently modified by Order No. 36112, issued on January 24, 2019, in Docket No. 2018-0065. With Decision and Order No. 42409, issued on March 23, 2026, in Docket No. 2025-0391, the PUC indefinitely suspended certain sections of the ATRs.
The ATRs address many issues related to Hawaiian Electric's interactions and transactions with Affiliates and Affiliate-Related Entities. If you'd like more information about these rules/regulations, you can email ATR@hawaiianelectric.com.
About Hawaiian Electric
Sourced by ZipRecruiter
Industry
Utilities
Company size
1,001 - 5,000 Employees
Headquarters location
Honolulu, HI, US
Year founded
1891