×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security

Cybersecurity – Fusion Center Analyst II

Job in Atlanta, Fulton County, Georgia, 30383, USA
Listing for: Southern Company
Full Time position
Listed on 2026-01-17
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

Cybersecurity - Fusion Center Analyst II

POSITION SUMMARY:

Is curiosity your primary talent?

Do you have a passion for finding bad guys?

Is your ideal career at the intersection of technology and people that use it?

Southern Company is seeking an inquisitive expert to join our Insider Threat Fusion Center (FC) in a technical analyst role. The candidate will directly support the company’s efforts to address potential insider threats to the company’s facilities, personnel, technology, operations, and brand.

The successful applicant will leverage analytical skills to identify and track potential insider threat activity, conduct research on behalf of the team, and help ensure that capabilities are effectively implemented and applied. The Analyst will use statistical techniques, machine learning capabilities and artificial intelligence tools to identify and analyze suspicious behavior.

The candidate will need to understand operational risks at the corporate level and develop relationships across the company that will support coordinated response strategies.

RESPONSIBILITIES:
  • Triage alerts by conducting limited inquiry to classify activity for further investigation and resolution
  • Interpret relevant data sets, use techniques, and manipulate tools to identify potential insider threat behavior and risks
  • Monitor and track activity that crosses risk thresholds and conduct inquiries to classify activity for further investigation and resolution
  • Handle confidential situations and data with appropriate discretion
  • Compare analytic results against known tactics, techniques and procedures historically associated with advanced insider threats.
  • Support definition, monitoring and reporting of effectiveness metrics on an ongoing basis, implement continuous improvement.
  • Leverage data loss prevention (DLP) capabilities to mitigate risk.
  • Communicate alerts on potential insider activity to cross-functional teams.
  • Support the implementation of data correlation practices and capabilities related to next generation technology used to detect insider threat activity
  • Support the hand-off from and to the Security Operations Center
  • Implement best practices for tuning analytic technologies to maximize probability of detection while minimizing false positives
  • Improve existing methodologies for technical threat assessment
  • Train other Fusion Center analysts on developed analytical processes
  • Support day-to-day operations related to the Insider Threat Program
  • Stay current on relevant technologies as assigned
  • Perform all other duties as assigned
REQUIREMENTS:
Minimum
  • BA/BS in computer science, technology, or security related field or equivalent experience
  • Understanding of best practices for detecting, identifying and classifying insider or cyber threats
  • Intellectual curiosity to find solutions
  • Independent thinker with strong problem solving and analytical skills; ability to solve complex technical issues
  • Familiarity using multiple analytic methodologies, programs, and tools in support of cyber and human threat analysis
  • Familiarity with behaviors and indicators (both physical and information systems-related) historically associated with insider-related threats.
  • 2-3 years of prior experience working in an operational environment such as a Security Operations Center
  • Strong communication skills; ability to successfully communicate analytic results
  • Ability to prioritize work and complete assignments under minimal supervision
Preferred
  • Industry certification (ITPM, Splunk, GIAC, CISSP).
  • Experience with Splunk User Behavioral Analytics (UBA) and Splunk Enterprise Security (ES.
  • Proficient at on-boarding data from a variety of data sources
  • Experience developing custom dashboards
  • Ability to use Splunk content to find and correlate event information to assist in detecting insider threats.
  • Experience building content, alerts, and workflows utilizing the Splunk toolset
  • Proficient in Splunk Language (SPL).
  • Familiarity with global threats to energy sector.
  • Experience in a Security Operations Center (SOC).
  • Experience with insider threat-focused tool sets as well as best practices for tuning supporting technologies to maximize probability of detection and identification while minimizing false positives.
WHAT WE OFFER YOU:
  • A world-class team whose foundational values are collaboration and excellence
  • Endless challenges at the cutting edge of insider threat detection and mitigation
  • The freedom and independence to let your talents shine
#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search