Information Security Analyst

Cook SystemsAtlanta, Georgia, United States

job_description.job_card.variable_days_ago

serp_jobs.job_preview.job_type

serp_jobs.job_card.full_time

job_description.job_card.job_description

Launch Your Career with Cook Systems

Ready to elevate your career? Cook Systems , a certified veteran-owned IT consulting firm, has been transforming businesses and careers since 1990. Whether you’re aiming to work with a Fortune 500 company or a small business, we’ve got you covered.

Our core values—integrity, investment, and innovation—drive everything we do, ensuring you grow and succeed in a dynamic, supportive environment. We understand the importance of work-life balance and personal growth. Our cutting-edge IT consulting partners and FastTrack talent program are designed to help you excel.

Join our forward-thinking team where excellence and creativity are valued every day. Check out what our associates have to say on Glassdoor . Ready to take your career to new heights? Cook Systems is where your journey to success begins!

This role is responsible for monitoring, detecting, analyzing, and responding to security events, managing vulnerabilities, and ensuring compliance with federal, agency, and organizational security requirements. The analyst will also support audit readiness, maintain the System Security Plan (SSP) , and lead targeted security awareness initiatives.

Key Responsibilities

Security Operations & Monitoring

Conduct continuous monitoring of enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management) .
Detect, investigate, and respond to potential threats and incidents impacting CUI and overall system security.
Maintain dashboards, alerts, and reports to ensure proactive detection and escalation of risks.

Vulnerability & Risk Management

Perform ongoing vulnerability assessments with Tenable , track remediation efforts, and validate closure of findings.

Support patch management and configuration management processes to reduce the attack surface.

Deliver metrics and risk posture updates to leadership.

Compliance & Documentation

Maintain and update System Security Plans (SSPs) to document the implementation of security controls.

Support external and internal audits (IRS, CMS, SSA, NIST, FISMA) by providing required evidence, documentation, and remediation tracking.

Assist in compliance with evolving frameworks

Incident Response

Triage, analyze, and document security incidents across enterprise systems.

Coordinate with IT and business stakeholders on containment, eradication, and recovery efforts.

Deliver incident reports, root cause analysis, and lessons learned documentation.

Security Awareness & Training

Develop and deliver security awareness programs, emphasizing CUI handling, phishing defense, and insider threat mitigation .

Conduct specialized training for privileged users and administrators.

Track participation and report effectiveness of awareness initiatives.

Reporting & Communication

Provide leadership with actionable insights through Splunk dashboards, Tenable vulnerability reports, and CrowdStrike incident summaries .

Deliver executive-level updates highlighting risks, compliance status, and incident trends.

Track remediation activities and ensure timely closure of findings.

Required Qualifications

Bachelor’s degree in information security, Cybersecurity, IT, or related field; or equivalent 1 year;

Hands-on experience with Splunk, CrowdStrike Falcon, and Tenable Nessus / Tenable.sc .

Strong understanding of CUI protection requirements and compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA).

Experience with incident response, vulnerability management, and risk assessments.

Strong analytical, documentation, and communication skills.

Summary

The role is responsible for monitoring, detecting, analyzing, and responding to security events, managing vulnerabilities, and ensuring compliance with federal, agency, and organizational security requirements. The analyst will support audit readiness, maintain the System Security Plan (SSP), and lead targeted security awareness initiatives.

Responsibilities

Conduct continuous monitoring of enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management).

Detect, investigate, and respond to potential threats and incidents impacting CUI and overall system security.

Maintain dashboards, alerts, and reports for proactive detection and escalation of risks.

Perform ongoing vulnerability assessments with Tenable, track remediation efforts, and validate closure of findings.

Support patch and configuration management processes to reduce the attack surface.

Deliver metrics and risk posture updates to leadership.

Maintain and update System Security Plans (SSPs) for documenting security controls.

Support audits (IRS, CMS, SSA, NIST, FISMA) by providing required documentation and remediation tracking.

Assist in compliance with evolving frameworks (e.g., NIST SP 800-53 Rev. 5).

Triage, analyze, and document security incidents across enterprise systems.

Coordinate with IT and business stakeholders on containment, eradication, and recovery efforts.

Deliver incident reports, root cause analysis, and lessons learned documentation.

Develop and deliver security awareness programs emphasizing CUI handling, phishing defense, and insider threat mitigation.

Conduct specialized training for privileged users and administrators.

Track participation and report the effectiveness of awareness initiatives.

Provide leadership with actionable insights through Splunk dashboards, Tenable vulnerability reports, and CrowdStrike incident summaries.

Deliver executive-level updates highlighting risks, compliance status, and incident trends.

Track remediation activities and ensure timely closure of findings.

Required Qualifications

Bachelor’s degree in information security, Cybersecurity, IT, or related field; or equivalent experience. Preference for candidates with relevant State of Georgia experience.

Hands-on experience with Splunk, CrowdStrike Falcon, and Tenable Nessus / Tenable.sc.

Strong understanding of CUI protection requirements and compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA).

Experience with incident response, vulnerability management, and risk assessments.

Excellent analytical, documentation, and communication skills.