INSIDER THREAT ANALYST
POSITION SUMMARY:
Is curiosity your primary talent?
Do you have a passion for finding bad guys?
Is your ideal career at the intersection of technology and people that use it?
A leading U.S. energy company seeks an inquisitive teammate to join our Insider Threat analysis cell in an associate-level technical analyst role. The candidate will directly support the company's efforts to address potential insider threats to the company's facilities, personnel, technology, operations, and brand. This position reports to the Manager of the Insider Threat Analysis Center.
The successful applicant will leverage analytical skills to identify and track potential insider threat activity, develop content specific to technical sabotage against critical systems, conduct research on behalf of the team, and help ensure that capabilities are effectively implemented. The analyst will learn to use correlation, statistical techniques, machine learning capabilities and artificial intelligence tools to identify and analyze suspicious behavior.
RESPONSIBILITIES:
Triage alerts by conducting limited inquiry to classify activity for further investigation and resolution
Interpret relevant data sets, use techniques, and manipulate tools to identify potential insider threat behavior and risks
Handle confidential situations and data with appropriate discretion
Implement best practices for tuning analytic technologies to maximize probability of detection while minimizing false positives
Improve existing methodologies for technical threat assessment
Create and document methods to identify or prevent insider threats
Support day-to-day operations related to the Insider Threat Program
Stay current on relevant technologies as assigned
REQUIREMENTS:
Minimum
BA/BS in computer science, data science, engineering, mathematics, or security-related field or equivalent background and experience
Desire to become an expert at detecting and classifying insider threats
Intellectual curiosity to find solutions
Excellent problem solving and analytical skills
Strong written and oral communication skills; ability to successfully communicate analytic results
Ability to prioritize work and complete assignments under supervision
Preferred
Prior experience building content, alerts, and workflows utilizing the Splunk toolset
Beginner skills in Splunk Language (SPL)
Familiarity using multiple analytic methodologies, programs, and tools in support of cyber and human threat analysis
Familiarity with global threats to energy sector
WHAT WE OFFER YOU:
A world-class team whose foundational values are collaboration and excellence
Endless challenges at the cutting edge of insider threat detection and mitigation
The freedom and independence to let your talents shine
Southern Company (NYSE: SO) is a leading energy provider serving 9 million residential and commercial customers across the Southeast and beyond through its family of companies. Providing clean, safe, reliable and affordable energy with excellent service is our mission. The company has electric operating companies in three states, natural gas distribution companies in four states, a competitive generation company, a leading distributed energy infrastructure company with national capabilities, a fiber optics network, and telecommunications services. Through an industry-leading commitment to innovation, resilience, and sustainability, we are taking action to meet our customers' and communities' needs while advancing our commitment to net zero emissions by 2050. Our uncompromising values ensure we put the needs of those we serve at the center of everything we do and are the key to our sustained success. We are transforming energy into economic, environmental and social progress for tomorrow. Our corporate culture and hiring practices have earned the company national awards and recognition from numerous organizations, including Forbes, Military Times, DiversityInc, Black Enterprise, J.D. Power, Fortune, Human Rights Campaign and more. To learn more, visit www.southerncompany.com .
Southern Company invests in the well-being of its employees and their families through a comprehensive total rewards strategy that includes competitive base salary, annual incentive awards for eligible employees and health, welfare and retirement benefits designed to support physical, financial, and emotional/social well-being. This position may also be eligible for additional compensation, such as an incentive program, with the amount of any bonus/awards subject to the terms and conditions of the applicable incentive plan(s). A summary of the benefits offered for this position can be found here https://seo.nlx.org/southernco/pdf/SOCO-Benefits.pdf . Additional and specific details about total compensation and bene?ts will also be provided during the hiring process.
Southern Company is an equal opportunity employer where an applicant's qualifications are considered without regard to race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity or expression, or any other basis prohibited by law.
Job Identification: 10219
Job Category: Cybersecurity
Job Schedule: Full time
Company: Southern Company Services
S:SKINTIAGP2
