Home > United States > Georgia > Atlanta > mining resources energy

Cyber Security Analyst Lead

Cyber Security Analyst Lead

Cyber Security Analyst Lead

Southern Company
Atlanta, GA 30308

Job details

Job Type

Cyber Security Analyst Lead



A Southern Company Team Lead leads a team of Cyber Security Analyst and assist them in their daily operations as they proactively seek out adversaries. The Team Lead is an escalation point for Cyber Security Analyst and a Liaison between Cyber Security Analyst and Incident Response Analyst. A Southern Company Team Lead must possess various technical skill sets and experience to assure security events are analyzed and managed appropriately from the Detection phase to the Lessons Learned phase of an Incident. Below are the Responsibilities, Characteristics and Qualifications for this role.


  • Ensure daily operational processes and procedures are effective and support cyber monitoring and analysis operations objectives and modify as needed
  • Assist Cyber Security Analyst with security events
  • Develop and measure ing initiatives to discover potential breaches or undiscovered cyber threats
  • Develop actionable use cases based on new and emerging threats
  • Assists with patching recommendations and workarounds for zero-day threats
  • Coordinate after action items or various levels of awareness with stakeholders or supporting teams
  • Communicates challenges and opportunities to SOC management
  • Assist content development team with tuning false positive security events
  • Document analytical steps and findings associated with security events or incidents
  • Represent Security Operations Center at internal/external meetings
  • Liaison with the Incident Response team
  • Leads weekly Security Analyst meetings
  • Drafts weekly updates and situational awareness items for SOC Management
  • Reports metrics and KPI’s to SOC Management


  • 6 years IT security experience
  • 3 years Cyber Security monitoring experience within a SOC utilizing a SIEM
  • 2 years Incident Response experience
  • Minimum 2 years of experience in performing analysis on Windows and LINUX/UNIX systems
  • Minimum 2 years of experience and/or familiarity in the following areas:
  • Network/Endpoint: analysis tools
  • Scripting languages
  • Windows/Unix command line utilities
  • Reputation analysis associated with IP’s, Domains, Email Addresses
  • Ticketing Systems
  • Ability to work various hours based on incident call outs
  • Required to submit to a thorough background examination
  • Exposure investigating security events associated with cloud applications
  • Developed and tuned use cases for alerting in a SIEM
  • Experience drafting Security Analyst procedures
  • Experience working with an Incident Response team during a Cyber Security event/incident
  • Familiar with and have worked within Cyber Security Frameworks such as:
  • NIST 800 – 61
  • Attack Life Cycle
  • SANS Security Controls
  • SANS Security 500 Series or other industry standard equivalent
  • Experience with PCAP analysis
  • Experience investigating endpoint and network security events
  • Experience investigating user reported Phishing events (specifically investigating suspicious links and attachments)
  • Experience analyzing security events utilizing sandbox technology
  • Experience operating within a security application such as Kali, Metasploit, and etc.
  • Oral and written communication skills
  • Experience taking ownership of incidents from acknowledgement to resolution
  • Ability to identify and mitigate security events by recommending and/or implementing defensive/preventive strategies
  • Experience self-initiating security event investigations aka ing

Desired certifications

  • GIAC Security Essentials (GCIH)
  • GIAC Certified Intrusion Analyst (GCIA)
  • IT Security Tool Vendor Certifications
  • Offensive Security

Characteristics of a Southern Company Cyber Analyst

  • Self-Motivated – Cyber Analysts do not only act when security tools trigger alerts, we are suspicious by nature and can generate security events based on self-initiated task
  • Perseverance - Cyber Analysts identify resources that allow us to move through or around barriers as we analyze cyber security events
  • Dependable – Cyber Analysts work within a team environment and thus, we rely on one another for knowledge-sharing and dependence
  • Integrity - As Cyber Analysts, our reputation is our code of ethics. We are not perfect. We admit our mistakes. We do the right thing
  • Sense of Humor – Although this may vary, just have one; I promise we can work with it. We have a lot of fun in what we do, so you will need a sense of humor to keep up



This information describes the general nature and level of work performed by employees in this job. The description is not designed to be a comprehensive inventory of duties, responsibilities and qualifications required in the job. Reasonable accommodations may be made to qualified disabled individuals for performance of essential duties and responsibilities

Southern Company (NYSE: SO ) is America's premier energy company, with 46,000 megawatts of generating capacity and 1,500 billion cubic feet of combined natural gas consumption and throughput volume serving 9 million customers through its subsidiaries . The company provides clean, safe, reliable and affordable energy through electric operating companies in four states, natural gas distribution companies in seven states, a competitive generation company serving wholesale customers across America and a nationally recognized provider of customized energy solutions, as well as fiber optics and wireless communications . Southern Company brands are known for excellent customer service, high reliability and affordable prices that are below the national average. Through an industry-leading commitment to innovation, Southern Company and its subsidiaries are inventing America's energy future by developing the full portfolio of energy resources, including carbon-free nuclear, 21st century coal, natural gas, renewables and energy efficiency, and creating new products and services for the benefit of customers. Southern Company has been named by the U.S. Department of Defense and G.I. Jobs magazine as a top military employer, recognized among the Top 50 Companies for Diversity by DiversityInc, listed by Black Enterprise magazine as one of the 40 Best Companies for Diversity and designated a Top Employer for Hispanics by Hispanic Network. The company has earned a National Award of Nuclear Science and History from the National Atomic Museum Foundation for its leadership and commitment to nuclear development and is continually ranked among the top energy companies in Fortune's annual World's Most Admired Electric and Gas Utility rankings. Visit our website at .

Southern Company is an equal opportunity employer where an applicant's qualifications are considered without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity or expression, or any other basis prohibited by law.

Job Type: Standard

Primary Location: Georgia-Metro Atlanta-Atlanta

Operating Company: Southern Company Services

Job Type: Standard

Travel (Up to...): Yes, 25 % of the Time

Work Location(s):

Georgia Power Headquarters - 241 Ralph McGill Blvd. NE (241ATLANTA)

241 Ralph McGill Blvd. NE

Atlanta, 30308

Req ID: SCS2010182

Hiring Insights

Hiring for this role

• Mobile: NA

• Location: NA

• Post ID: 21462429

Home | My Account | Contact | Privacy | Terms | Free Classifieds | Free ads
bedpage is an interactive computer service that enables access by multiple users and should not be treated as the publisher or speaker of any information provided by another information content provider. © 2022  bedpage