Cybersecurity Analyst
Schedule: Onsite 4 days a week in Atlanta, GA (GPC HQ)
Location: This is an in-office position. The candidate will need to reside within a commutable distance of the designated work location of GPC HQ Atlanta, GA. Up to 15% travel
Southern Company is seeking a passionate and capable Endpoint Security Analyst to join our Cybersecurity Organization. This position will support the endpoint security stack leveraged by our security teams and business units across the company.
In this role, you will manage the day-to-day maintenance and operations of the endpoint security stack which includes performing upgrades, maintaining agent health, and process and policy management. This position partners with other business unit SMEs to ensure our company assets are protected at the host level. This role is a technical hands-on role that requires excellent troubleshooting, analytical, and problem-solving skills.
Job Responsibilities:
- Deploy, configure, and maintain endpoint security platforms including Anti-Virus, Anti-Malware, and EDR.
- Assist with the health, performance, stabilization and tuning of all Endpoint Security Infrastructure
- Responsible for scheduling, testing, and implementing improvements or new releases of the endpoint security stack.
- Develop creative solutions to meet business needs while ensuring appropriate security controls and best practices are implemented
- Prepare and document standard operating procedures and protocols.
- Perform security testing and audits to identify gaps and resolve weaknesses
- Research security enhancements and make recommendations to management
- Develop and maintain security reporting metrics, dashboards, and status updates to track operational health, risk posture, and initiative progress.
- Work with vendors where appropriate to escalate issues
- Engage with the Technology Organization and business units to evaluate and implement security processes for critical infrastructure and key resources
- Maintain current knowledge of information security concepts, technologies, and practices
- Effectively communicate both technical and business requirements
- Awareness of energy industry trends, opportunities, and challenges
- Establish and execute program updates as necessary to adapt to the changing threat landscape as well as local, state, and federal security requirements
Job Qualifications:
Minimum
- 2+ years’ experience operational support of endpoint security technologies (EDR, Anti-virus, Anti-malware) including hands-on experience deploying and configuring endpoint security policies and detection use cases
- 3+ years’ experience in positions directly related to cyber security and/or infrastructure support, information security, information technology, and/or consulting expertise
- Hands on system administration experience with Linux and Windows
- Previous experience with scripting languages such as PowerShell or Python
- Possess an in-depth knowledge of information security methodologies, tools, technologies, and best practices and how they relate to the organization
- Ability to perform information security risk assessments and recommend actions to leadership
- Familiar with procedures, such as change management, automation, and revision control
- Hands on experience working with AI-driven security platforms and automation to augment investigation workflows, reduce analyst effort, and improve consistency of security outcomes.
Preferred
- 3+ years’ experience as a CrowdStrike Falcon Administrator
- Experience in large (10,000+) enterprise endpoint environment
- Experience in a highly regulated environment
Additional Information
- Must be able to pass reoccurring background requirements.
- This position is a member of the Company’s Insider Threat Program.
This position falls under the company’s Insider Threat Program and will have access to, and control over sensitive data, systems or assets. Enhanced personnel screening, which includes a background review, drug screen and psychological assessment, will be required if you are selected for this position
About Southern Company
Southern Company (NYSE: SO ) is a leading energy provider serving 9 million customers across the Southeast and beyond through its family of companies. Providing clean, safe, reliable and affordable energy with excellent service is our mission. The company has electric operating companies in three states, natural gas distribution companies in four states, a competitive generation company, a leading distributed energy solutions provider with national capabilities, a fiber optics network and telecommunications services. Through an industry-leading commitment to innovation, resilience and sustainability, we are taking action to meet customers' and communities' needs while advancing our goal of net-zero greenhouse gas emissions by 2050. Our uncompromising values ensure we put the needs of those we serve at the center of everything we do and are the key to our sustained success. We are transforming energy into economic, environmental and social progress for tomorrow. Our corporate culture has been recognized by a variety of organizations, earning the company awards and recognitions that reflect Our Values and dedication to service. To learn more, visit www.southerncompany.com .
Southern Company invests in the well-being of its employees and their families through a comprehensive total rewards strategy that includes competitive base salary, annual incentive awards for eligible employees and health, welfare and retirement benefits designed to support physical, financial, and emotional/social well-being. This position may also be eligible for additional compensation, such as an incentive program, with the amount of any bonus/awards subject to the terms and conditions of the applicable incentive plan(s). A summary of the benefits offered for this position can be found here https://seo.nlx.org/southernco/pdf/SOCO-Benefits.pdf . Additional and specific details about total compensation and benefits will also be provided during the hiring process.
Southern Company is an equal opportunity employer where an applicant's qualifications are considered without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity or expression, or any other basis prohibited by law.
Job Identification: 18746
Job Category: Cybersecurity
Job Schedule: Full time
Company: Southern Company Services
