Overview
Skills
Job Details
Job Title: Information Security Analyst (Hybrid)
Location: Atlanta, GA (Webcam Interview)
Job Type: Long-Term Contract
Job Overview:
We are seeking a skilled Information Security Analyst to support critical security operations, compliance, and risk management functions. This role focuses on protecting information systems particularly those handling Controlled Unclassified Information (CUI) through proactive monitoring, vulnerability management, incident response, and compliance activities.
The ideal candidate will have hands-on experience with leading security tools, a solid understanding of federal security frameworks (NIST, FISMA, etc.), and a proactive approach to mitigating security threats in a hybrid environment.
Key Responsibilities:
Security Operations & Monitoring
- Monitor enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management).
- Investigate and respond to potential security threats and incidents.
- Maintain alert systems, dashboards, and reports for real-time risk detection.
Vulnerability & Risk Management
- Conduct regular vulnerability scans using Tenable, and track remediation efforts.
- Support patching and configuration management initiatives.
- Provide risk posture updates to leadership through metrics and analysis.
Compliance & Documentation
- Maintain System Security Plans (SSPs) and document control implementations.
- Assist in internal and external audits (e.g., NIST, FISMA, IRS Pub 1075, etc.).
- Stay up-to-date with evolving security frameworks (NIST SP 800-53 Rev. 5).
Incident Response
- Triage and analyze security incidents.
- Collaborate with stakeholders on containment, eradication, and recovery.
- Provide incident documentation, root cause analysis, and after-action reports.
Security Awareness & Training
- Deliver security awareness training on CUI, phishing, and insider threats.
- Conduct specialized training for privileged users.
- Track and report training participation and effectiveness.
Reporting & Communication
- Generate and present reports via Splunk, Tenable, and CrowdStrike.
- Share compliance status, trends, and risk summaries with executives.
- Track and report remediation activities for audit and compliance tracking.
Required Qualifications:
- Bachelor's degree in Information Security, Cybersecurity, IT, or related field or equivalent experience.
- Experience using Splunk, CrowdStrike Falcon, and Tenable NessTenable.sc.
- Knowledge of federal compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA).
- Proven experience with incident response, risk assessments, and vulnerability management.
- Excellent communication, documentation, and analytical skills.
Preferred Qualifications:
- Previous experience supporting government or public sector clients.
- Experience managing System Security Plans (SSPs) and supporting audit readiness.
- Familiarity with cloud and endpoint security solutions.
- Experience delivering user and privileged access training.
- Professional certifications such as Security+, CySA+, CISSP, CISM, or GIAC (Anyone is fine).
Candidates must upload relevant certifications.
Required Skills Matrix:
Skill Area | Requirement |
Bachelor's in Cybersecurity or related field | Required |
Splunk, CrowdStrike Falcon, Tenable | Required |
Federal compliance experience (NIST, FISMA, IRS Pub 1075, CMS, SSA) | Required |
Incident Response & Risk Management | Required |
Documentation & Communication Skills | Required |
Professional Security Certifications | Required (Upload Proof) |
SSP Management & Audit Support | Preferred |
Security Awareness Training Experience | Preferred |
Cloud and Endpoint Security Familiarity | Preferred |