Fusion Center Manager
Schedule: M-F ( Onsite 4 days a week, remote 1 day )
Location: GPC HQ (Atlanta, GA), APC HQ (Birmingham, AL)
POSITION SUMMARY:
Can you lead a high-performing, high-energy team?
Do you have a passion for safety and security?
Is your ideal career at the intersection of technology and the people that use it?
A prominent U.S. energy corporation is seeking a seasoned security expert to serve within its Insider Threat Program. The successful candidate will play a critical role in supporting initiatives aimed at mitigating both actual and potential insider threats to the company’s facilities, personnel, technology, operations, and reputation. Responsibilities include managing a team of analysts by acting as the first-line manager, coordinating program activities with internal stakeholders, enhancing technical and non-technical capabilities, and supervising the analytical output of the team.
The successful candidate will deliver on the program strategy in maturing the organization. This maturation involves updating the Insider Incident Response Plan, transforming data security workflows, training the team on interviewing skills, applying agentic workflows to the analysis process, and updating program governance.
RESPONSIBILITIES: Team Leadership and Management
- Serve as the first-line manager for insider threat analysts, overseeing all aspects of personnel management including hiring, assigning roles, ensuring policy compliance, handling promotions, managing salary decisions, and conducting performance reviews.
- Supervise the day-to-day operations of the insider threat team, ensuring consistent and effective workflow.
- Enhancing individual contributor skillsets through training, practice, and certifications
Operational Excellence
- Operate and refine existing processes to quickly respond to and mitigate insider threats within the organization.
- Establish a comprehensive framework for conducting confidential insider threat investigations that go beyond basic triage.
- Lead initiatives to monitor and track activities that cross defined risk thresholds, conducting inquiries to classify events for further investigation and resolution.
- Direct the deployment of innovative data correlation tools and practices to enhance threat detection capabilities.
- Oversee IT projects designed to create new technical capabilities for the team and broader program.
- Prepare and execute the department budget, ensuring resources are allocated effectively to support operational goals.
Threat Assessment and Analysis
- Ensure the team documents and presents findings and continuously improves existing methodologies for technical threat assessment.
- Utilize relevant data sets, analytic techniques, and visualization tools to assimilate and interpret information from across the company, identifying potential insider threat behaviors.
- Compare analytic results to known tactics, techniques, and procedures historically associated with advanced insider threats.
- Communicate alerts on potential insider activity to cross-functional teams for coordinated response.
Collaboration and Communication
- Coordinate with working-level stakeholders from key organizations such as human resources, general counsel, and compliance for information sharing, situational awareness, and determination of responsive action on insider threats.
- Develop workflows for conducting insider threat evaluations, ensuring streamlined and effective processes.
- Lead the production of defined-scope threat assessments to assist in mitigating identified insider vulnerabilities.
- Provide operational and programmatic briefings to management, keeping leadership informed of insider threat trends and responses.
- Support the definition, monitoring, and reporting of effectiveness metrics on an ongoing basis to evaluate and improve program performance.
REQUIREMENTS:
- Proven experience in leading or developing comprehensive security programs encompassing both technical and human investigations and analyses.
- Strong background in interviewing, constructing investigative cases, and managing investigatory processes.
- Demonstrated leadership of teams consisting of individual contributors.
- In-depth understanding of theoretical models and industry best practices for identifying and classifying insider threats.
- Ability to articulate insights regarding insider behaviors and risk indicators affecting the organization.
- Experience in overseeing the enterprise-wide implementation of analytical tools.
- Expertise in utilizing diverse analytic methodologies, programs, and tools to support cyber and human threat analysis initiatives.
- Independent leadership capabilities complemented by excellent interpersonal, written, and verbal communication skills, as well as strong analytical and problem-solving abilities.
- Experience communicating effectively with senior stakeholders both within and outside the organization.
- Familiarity with global threats facing the energy sector.
- Possession of, or preference for, Insider Threat or Information Security certifications such as ITPM or CISSP.
This position falls under the company’s Insider Threat Program and will have access to, and control over sensitive data, systems or assets. Enhanced personnel screening, which includes a background review, drug screen and psychological assessment, will be required if you are selected for this position
About Southern Company
Southern Company (NYSE: SO ) is a leading energy provider serving 9 million customers across the Southeast and beyond through its family of companies. Providing clean, safe, reliable and affordable energy with excellent service is our mission. The company has electric operating companies in three states, natural gas distribution companies in four states, a competitive generation company, a leading distributed energy solutions provider with national capabilities, a fiber optics network and telecommunications services. Through an industry-leading commitment to innovation, resilience and sustainability, we are taking action to meet customers' and communities' needs while advancing our goal of net-zero greenhouse gas emissions by 2050. Our uncompromising values ensure we put the needs of those we serve at the center of everything we do and are the key to our sustained success. We are transforming energy into economic, environmental and social progress for tomorrow. Our corporate culture has been recognized by a variety of organizations, earning the company awards and recognitions that reflect Our Values and dedication to service. To learn more, visit www.southerncompany.com .
Southern Company invests in the well-being of its employees and their families through a comprehensive total rewards strategy that includes competitive base salary, annual incentive awards for eligible employees and health, welfare and retirement benefits designed to support physical, financial, and emotional/social well-being. This position may also be eligible for additional compensation, such as an incentive program, with the amount of any bonus/awards subject to the terms and conditions of the applicable incentive plan(s). A summary of the benefits offered for this position can be found here https://seo.nlx.org/southernco/pdf/SOCO-Benefits.pdf . Additional and specific details about total compensation and benefits will also be provided during the hiring process.
Southern Company is an equal opportunity employer where an applicant's qualifications are considered without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity or expression, or any other basis prohibited by law.
Job Identification: 19584
Job Category: Cybersecurity
Job Schedule: Full time
Company: Southern Company Services
