Information Security Analyst

Overview

Hybrid
Depends on Experience
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - 8 Month(s)
No Travel Required

Skills

Auditing
CISM
Configuration Management
Documentation
Information Security
NIST SP 800 Series
Patch Management
Recovery
SIEM
Root Cause Analysis
System Security
Splunk
Security Controls
Regulatory Compliance
Vulnerability Management
Security Awareness
SSP

Job Details

We have a position for a Information Security Analyst with one of our clients in Atlanta, GA for an initial contract duration of 8 months. s and all those authorized to work in the US are encouraged to apply.

The Information Security Analyst will play a key role in safeguarding the organizations information assets, including systems that process and store Controlled Unclassified Information (CUI). This role is responsible for monitoring, detecting, analyzing, and responding to security events, managing vulnerabilities, and ensuring compliance with federal, agency, and organizational security requirements (NIST, FISMA, IRS Pub 1075, CMS, SSA). The analyst will also support audit readiness, maintain the System Security Plan (SSP), and lead targeted security awareness initiatives.

Key Responsibilities

  • Security Operations & Monitoring
  • Conduct continuous monitoring of enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management).
  • Detect, investigate, and respond to potential threats and incidents impacting CUI and overall system security.
  • Maintain dashboards, alerts, and reports to ensure proactive detection and escalation of risks.
  • Vulnerability & Risk Management
  • Perform ongoing vulnerability assessments with Tenable, track remediation efforts, and validate closure of findings.
  • Support patch management and configuration management processes to reduce the attack surface.
  • Deliver metrics and risk posture updates to leadership.
  • Compliance & Documentation
  • Maintain and update System Security Plans (SSPs) to document the implementation of security controls.
  • Support external and internal audits (IRS, CMS, SSA, NIST, FISMA) by providing required evidence, documentation, and remediation tracking.
  • Assist in compliance with evolving frameworks (e.g., NIST SP 800-53 Rev. 5).
  • Incident Response
  • Triage, analyze, and document security incidents across enterprise systems.
  • Coordinate with IT and business stakeholders on containment, eradication, and recovery efforts.
  • Deliver incident reports, root cause analysis, and lessons learned documentation.
  • Security Awareness & Training
  • Develop and deliver security awareness programs, emphasizing CUI handling, phishing defense, and insider threat mitigation.
  • Conduct specialized training for privileged users and administrators.
  • Track participation and report effectiveness of awareness initiatives.
  • Reporting & Communication
  • Provide leadership with actionable insights through Splunk dashboards, Tenable vulnerability reports, and CrowdStrike incident summaries.
  • Deliver executive-level updates highlighting risks, compliance status, and incident trends.
  • Track remediation activities and ensure timely closure of findings.
<>Required Skills</>

Cyber Security, splunk, Tenable

<>Preferred Skills</>

CMS, vulnerability management, Crowdstrike, Risk assessments, CUI, cism, CySA+

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.