Security Analyst Position Available In Fulton, Georgia

• Security AnalystContract/Contract to HireAtlanta, GA

• Qualifications:

• Top 5 Must-Have Skillsets
• Proven experience as a security third-party risk analyst with a solid understanding of general security practices.
• Ability to conduct due diligence for onboarding new vendors into a vendor management system and determine appropriate review requirements based on risk ratings and program guidelines.
• Familiarity with third-party tools for submitting and receiving security questionnaires, and the ability to analyze vendor responses.
• Strong communication skills with the ability to engage vendors to gain deeper insights.
• Capable of managing high-pressure situations and urgent requests effectively.
• Experience required: 2-6 years
• 5+ years of experience in IT security programs, audits, controls, and/or third-party risk management
• Ability to assess IT security controls against internal policies, industry standards, and federal/state regulatory requirements
• Excellent written and verbal communication skills
• Strong proficiency with Microsoft Office Suite and other business-related software
• Proven time management skills and ability to handle multiple priorities in a fast-paced, team-oriented environment
• Strong analytical and problem-solving skills, with the ability to collaborate across functions
• High School Diploma, GED, or High School Equivalency
• Commitment to diversity, equity, and inclusion in the workplace
• Prioritizes the safety and security of self and others
• “`{=html}“

• Preferred Qualifications:

• Bachelors Degree or equivalent (5+ years) experience in Computer Science, Engineering, Information Systems, or a related field
• Professional certifications such as

CISA, CISM, CISSP, CRISC

• Familiarity with frameworks like NIST Cybersecurity Framework, ISO 27001, NIST 800-30
• Knowledge of third-party attestations/certifications:

SOC I/II, ISO, PCI-DSS, SOX

• In-depth understanding of third-party risk management concepts, governance, and assessment methodologies
• Experience across multiple Information Security domains (e.g., governance, incident response, IAM, forensics)
• Exposure to IT operations including application development, cloud computing, infrastructure, and business continuity
• Experience with RSA Archer or similar GRC platforms

• Responsibilities:

• Analyze the security environment and help develop measures to protect information from unauthorized access, modification, or destruction
• Collaborate with stakeholders (management, developers, auditors, facilities, and security staff) to ensure appropriate security planning and execution
• Define and enforce security policies for various resources including software, hardware, telecommunications, and installations
• Maintain a high level of trust and credibility with users regarding system security concerns
• Lead and coordinate information security tasks and projects
• Develop and maintain project plans, timelines, and cost estimates
• Ensure alignment of business processes with security requirements
• Create, update, and deliver information security awareness programs
• Work with IT teams to evaluate and configure secure hardware and software systems
• Support incident response by helping to identify, report, and analyze security breaches
• Maintain documentation of security policies and procedures
• Present security status updates and training to stakeholders as needed
• Proactively safeguard the confidentiality, integrity, and availability of information assets
• Support disaster recovery planning and participate in audits and compliance activities
• Research and recommend new security tools and enhancements
• Provide training and guidance to information owners on implementing security controls

•