Security Analyst (Splunk, CrowdStrike, Tenable, NIST/FISMA – State of GA, CUI Compliance)

Job Title: Security Analyst (Splunk CrowdStrike Tenable NIST/FISMA State of GA CUI Compliance)

Location: Atlanta GA (Hybrid)

We are currently seeking candidates who meet the following qualification

• Bachelors degree in Information Security Cybersecurity IT or a related field; or equivalent experience. Preference will be given to candidates with relevant State of Georgia experience.
• Hands-on experience with the following security tools and platforms:
  • Splunk (SIEM)
  • CrowdStrike Falcon (EDR)
  • Tenable Nessus / (Vulnerability Management)
• Strong understanding of Controlled Unclassified Information (CUI) protection requirements and compliance frameworks including:
  • National Institute of Standards and Technology (NIST)
  • Federal Information Security Modernization Act (FISMA)
  • IRS Publication 1075
  • Centers for Medicare & Medicaid Services (CMS)
  • Social Security Administration (SSA)
• Experience with incident response vulnerability management and risk assessments.
• Strong analytical documentation and communication skills.

• Professional security certifications such as:
  • CompTIA Security
  • CompTIA CySA
  • CISSP
  • CISM
  • GIAC
    (Candidates must upload valid certification credentials)
• Experience managing System Security Plans (SSPs) and supporting audit readiness efforts.
• Familiarity with cloud and endpoint security technologies.
• Prior experience delivering security awareness training to staff and privileged users.

Security Operations & Monitoring

• Conduct continuous monitoring of enterprise systems using CrowdStrike Splunk and Tenable.
• Detect investigate and respond to potential security threats and incidents impacting CUI.
• Maintain security dashboards alerts and reports to ensure proactive detection and escalation of risks.

Vulnerability & Risk Management

• Perform ongoing vulnerability assessments and track remediation efforts.
• Support patch management and configuration management processes to reduce the attack surface.
• Deliver risk posture and metrics updates to leadership.

Compliance & Documentation

• Maintain and update System Security Plans (SSPs) to document the implementation of security controls.
• Support internal and external audits (Internal Revenue Service Centers for Medicare & Medicaid Services Social Security Administration National Institute of Standards and Technology Federal Information Security Modernization Act) by providing evidence and documentation.
• Assist in ensuring compliance with evolving security frameworks such as NIST SP 800-53 Rev. 5.

Incident Response

• Triage analyze and document security incidents across enterprise systems.
• Coordinate with IT and business stakeholders on containment eradication and recovery efforts.
• Deliver incident reports root cause analysis and lessons learned documentation.

Security Awareness & Training

• Develop and deliver targeted security awareness programs (CUI handling phishing defense insider threat mitigation).
• Conduct specialized training for privileged users and administrators.
• Track participation and report the effectiveness of awareness initiatives.

Reporting & Communication

• Provide leadership with actionable insights using Splunk dashboards Tenable vulnerability reports and CrowdStrike incident summaries.
• Deliver executive-level updates highlighting risks compliance status and incident trends.
• Track remediation activities and ensure timely closure of findings.
  
  If you meet these qualifications please submit your application via link provided in Linkedin.
  Kindly do not call the general line to submit your application.