Job ID: GA-776405 (97290911)
Hybrid/Local Security Analyst (CySA+/CISSP/CISM/GIAC/copies must/12+) with Splunk, CrowdStrike Falcon, Nessus/Tenable.sc, CUI, NIST/FISMA/IRS Pub 1075/CMS/SSA and Vulnerability/Risk Management experience
Location: Atlanta, GA (DHS)
Duration: 9 Months
Position: 1 (2)
Skills:
Bachelor's degree in information security, Cybersecurity, IT, or related field; or equivalent 1 year; State of GA experience Preference. Required
Hands-on experience with Splunk, CrowdStrike Falcon, and Tenable Nessus/Tenable.sc. Required
Strong understanding of CUI protection requirements and compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA). Required
Experience with incident response, vulnerability management, and risk assessments. Required 1 Years
Strong analytical, documentation, and communication skills. Required 1 Years
Professional certifications (e.g., CompTIA Security+, CySA+, CISSP, CISM, GIAC). (MUST UPLOAD CERTIFICATION) Highly desired
Experience managing System Security Plans (SSPs) and supporting audit readiness. Highly desired
Familiarity with cloud and endpoint security technologies. Highly desired
Prior experience delivering security awareness training. Highly desired
Description:
The Information Security Analyst will play a key role in safeguarding the organization's information assets, including systems that process and store Controlled Unclassified Information (CUI).
This role is responsible for monitoring, detecting, analyzing, and responding to security events, managing vulnerabilities, and ensuring compliance with federal, agency, and organizational security requirements (NIST, FISMA, IRS Pub 1075, CMS, SSA). The analyst will also support audit readiness, maintain the System Security Plan (SSP), and lead targeted security awareness initiatives.
Key Responsibilities
Security Operations & Monitoring
Conduct continuous monitoring of enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management).
Detect, investigate, and respond to potential threats and incidents impacting CUI and overall system security.
Maintain dashboards, alerts, and reports to ensure proactive detection and escalation of risks.
Vulnerability & Risk Management
Perform ongoing vulnerability assessments with Tenable, track remediation efforts, and validate closure of findings.
Support patch management and configuration management processes to reduce the attack surface.
Deliver metrics and risk posture updates to leadership.
Compliance & Documentation
Maintain and update System Security Plans (SSPs) to document the implementation of security controls.
Support external and internal audits (IRS, CMS, SSA, NIST, FISMA) by providing required evidence, documentation, and remediation tracking.
Assist in compliance with evolving frameworks (e.g., NIST SP 800-53 Rev. 5).
Incident Response
Triage, analyze, and document security incidents across enterprise systems.
Coordinate with IT and business stakeholders on containment, eradication, and recovery efforts.
Deliver incident reports, root cause analysis, and lessons learned documentation.
Security Awareness & Training
Develop and deliver security awareness programs, emphasizing CUI handling, phishing defense, and insider threat mitigation.
Conduct specialized training for privileged users and administrators.
Track participation and report effectiveness of awareness initiatives.
Reporting & Communication
Provide leadership with actionable insights through Splunk dashboards, Tenable vulnerability reports, and CrowdStrike incident summaries.
Deliver executive-level updates highlighting risks, compliance status, and incident trends.
Track remediation activities and ensure timely closure of findings.
Required Qualifications
Bachelor's degree in information security, Cybersecurity, IT, or related field; or equivalent 1 year; or Preference will be given to candidates with relevant State of Georgia Experience
Hands-on experience with Splunk, CrowdStrike Falcon, and Tenable Nessus/Tenable.sc.
Strong understanding of CUI protection requirements and compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA).
Experience with incident response, vulnerability management, and risk assessments.
Strong analytical, documentation, and communication skills.
innoSoul, Inc. is an Information Technology company and offers technology solutions in various platforms to different business domains. More specifically, business solutions for Application Development, System integration, network or software installation support, Custom Web Development, Hosting solutions. Our value-added solutions leverage technology to enhance business performance, increase productivity and secure data.
...individuals seeking growth in the utility construction industry, and ADB is committed to... ...responsibilities will include proficient-level manual labor, equipment operations, leading... ..., setting up traffic control, operating entry-level equipment, placing fiber, loading...
...been among top brands in this category. HRI is the first privately-owned gaming company designated U.S. Best Managed Company by Deloitte Private and The Wall Street Journal for the second year. Hard Rock was also honored as one of Forbes Best Employers for Women,...
...part of our team. Job Summary Memorial Hermann TMC seeks a Medical Technologist or MLT to join our team, part time on weekends. Schedule: 6:30 a.m. to 7 p.m. every Saturday and Sunday. Benefits eligible to include: Medical/Dental 401K tuition...
...Job Description Job Description Collette is seeking a Tour Delivery Manager to join our Tour Delivery Team. This role will cover our West Coast and Canada tour regions. Candidate must reside in the US, preferably on the West Coast. About Collette: Let Us Show...
...Practice Schedule: Days Work Type: Full time Department: Neurology Division... ...caring for our patients, our members, our students, our Geisinger family and our communities... ...healthcare benefits for full time and part time positions from day one, including vision...