Description

Position Summary

• As the Security Analyst, you will be responsible for ensuring the organization is effectivelydesigning, developing, and implementing security compliance controls and solutions. You willengage with stakeholders throughout the organization, and throughout the Product Lifecycle toensure that standard security practices are followed and implementing risk mitigations whererequired. The position will work closely with IT Operations, Information Technology, CommercialSoftware, and Engineering, along with the business to ensure there is a consistent and commonapproach to implementation of security and compliance management activities.

Responsibilities:

Security Operations and Risk Management

• Collaborate with cross-functional teams to implement compliance initiatives and securitycontrols

• Ensure security requirements are implemented within various stages of theSoftware/System/Product lifecycle process

• Working with various product management teams from design to build phases

• Work closely with teams to Pen Test new features within software, products, infrastructure

• Work with teams to validate and address vulnerability and threat findings from analysispartners and tools

• Research upcoming IT trends and make security recommendations

• Perform security reviews of software/product/infrastructure designs to assist developers inensuring quality and robustness of our software and products

• Engages in Disaster Recovery Planning/Testing to ensure all risks and potential threats havebeen mitigated

• Leads analysis and review of security events conducted throughout the company

• Leads exploration of practical security solutions to address emerging threats and compliancerequirements, including design and implementation of recommended solutions

• Supports ongoing compliance activities and monitoring efforts across applicable Regulationsand Standards

• Effectively deliver technical security issues to non-technical management

• Generally 8am-5pm workdays but some on-call rotation and after-hours work required.

RequirementsEducation/Experience:

• Typically requires a bachelor's degree (or international equivalent) and 2+ years of relevantexperience, or equivalent combined work experience.

Preferred Qualifications:

• Bachelor's degree, preferably in Cybersecurity, Computer Science, or equivalent.

• 2+ years of infrastructure/network security, application security, security assessment

• Experience in 2 or more of the following areas – Incident Response, Vulnerability and PatchManagement, AD Security, Disaster Recovery, Device/OS Hardening, Forensics, PKIencryption and authentication, Security engineering, Cloud Security, Security Standards –NIST/SOC/ISO27001, SIEM management, Security assessments

• Some IT experience - service desk, infrastructure, networking, and/or software development

• Professional certifications such as Security+, CASP+, CySA+, GIAC or ISC2 certifications.

• Ability to take ownership of your areas and actively improve our security posture

• Experience working with outsourced organizations and third-party vendors preferred

• Advanced written and verbal communication skills

• Strong problem-solving skills

• Strong analytical skills and the ability to understand and document complex technical orbusiness process data flow

Travel Requirements: Typically requires overnight travel less than 10% of the time.

Location: Duluth, GA, Tallassee, AL

#HP1

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)