Cybersecurity Analyst 2 (Vulnerability) (GTA)

Start your career in public service - JOIN OUR TEAM

Georgia Technology Authority (GTA) a Great Place to Work® certified!

The Georgia Technology Authority (GTA) is currently seeking a Cybersecurity Analyst 2- in the Office of Information Security (OIS) Department

The Georgia Technology Authority (GTA) currently manages the delivery of IT infrastructure services to 89 Executive Branch agencies and managed network services to more than 1,200 state and local government entities. IT infrastructure services encompass mainframes, servers, service desk, end user computing, disaster recovery and security. Managed network services include the state's wide and local area networks, voice, cable and wiring, and conferencing services.

Want to know more about our AWARD-WINNING Authority visit:

JOB SUMMARY:

Cybersecurity Vulnerability Analyst 2 performs mid-level cybersecurity functions supporting the State of Georgia's enterprise vulnerability management program. This role is responsible for identifying, analyzing, prioritizing and tracking security vulnerabilities across statewide information systems, networks, applications and cloud environments.

The position reports to the Section Director of Security Operations and collaborates closely with the State Security Operations Center (SOC) and cybersecurity intelligence analysts and managed security service providers to align vulnerability management activities with active threats, incident response efforts and emerging risk trends. The analyst independently conducts vulnerability assessments, evaluates risk using established frameworks and works with state agency vulnerability teams to support timely remediation and risk reduction.

This role contributes to compliance with state and federal cybersecurity standards and supports enterprise security reporting requirements and helps strengthen the overall cybersecurity posture of Georgia's Executive Branch agencies.

RESPONSIBILITIES:
• Perform routine and ad hoc vulnerability and compliance scanning across statewide networks, servers' endpoints, applications and cloud environments using industry standard security tools.
• Evaluate systems against approved security baselines and compliance requirements including CIS benchmarks, STIGs, NIST standards, CJIS Security Policy and State of Georgia cybersecurity policies.
• Analyze scan results to assess severity, exploitability, compliance gaps and overall enterprise risk, incorporating threat intelligence and asset critically.
• Validate findings to eliminate false positives and ensure accuracy, consistency and reliability of vulnerability data.
• Produce, maintain, and present vulnerability and compliance reports, including technical findings, remediation tracking trend analysis, and executive level metrics.
• Prioritize vulnerabilities and compliance findings and track them through remediation, mitigation, exception or formal risk acceptance processes.
• Collaborate with the State Security Operations Center (SOC) to align vulnerability data with incident response, threat hunting and active exploitation activity.
• Coordinate with cybersecurity intelligence analysts to evaluate emerging threats, zero-day vulnerabilities and adversary tactics relevant to state IT systems.
• Work with managed security service providers to oversee scanning activities, validate results and ensure service delivery requirements align with enterprise requirements.
• Partner with state agency IT teams, systems owners and shared service providers to support remediation efforts and promote secure configuration practices.
• Provide risk-based guidance and recommend mitigation or compensating controls to technical, operational and executive stakeholders.
• Support enterprise8 patch management, configuration management, and change management processes to reduce systemic risk.
• Assist with audits, security assessments, and reporting related to state and federal cybersecurity compliance obligations.
• Maintain accurate documentation, dashboards and vulnerability lifecycle records in accordance with enterprise governance and reporting requirements.
• Escalate critical, high risk or actively exploited vulnerabilities to the Director of Security Operations and appropriate stakeholders in a timely manner.
• Performs other duties as assigned.

CORE COMPETENCIES
• Strong written and verbal communication skills, including the ability to explain technical risk in layman's terms.
• Ability to work independently, manage multiple priorities and meet established deadlines in a regulated environment.
• Ability to produce clear, accurate vulnerability and compliance reports for technical and nontechnical stakeholders.

AGENCY SPECIFIC QUALIFICATIONS:

Minimum Qualifications:
• BS/BA degree in Cybersecurity, Information Technology, Computer Science or a related field AND Three (3) or more years of experience in cybersecurity, vulnerability management, security operations or IT enterprise IT security WITH :

o Demonstrated experience performing vulnerability and compliance scanning using industry standard security tools in an enterprise environment.

o Working knowledge of vulnerability management concepts, including identification and reduction of false positives.

o Familiarity with security configurations standards and frameworks such as NIST, CIS Benchmarks, STIGs, or CIS requirements.

o Experience collaborating with multiple stakeholders, including IT teams, security operations personnel, or external service providers.
• Currently holds an intermediate cyber certification per state guidelines or achieves within 12 months of start date: (GCFE, CCNA-S, CASP, GCIH*, CEH) *any GIAC intermediate level certification accepted
• Must hold or be able to qualify for a US Department of Homeland Security (DHS) clearance
• The ability to successfully pass GBI and FBI background investigation for purposes of obtaining a Top-Secret SCI clearance

o Pass a polygraph exam
• Must be flexible: available after core business hours and travel to/from incidents throughout the State of Georgia

Comfortable working in restricted environment with limited connectivity


Note: An equivalent combination of education and job-specific experience that provided the knowledge, experience, and competencies required to successfully perform the job at the level listed may be substituted on a year-over-year basis.

Preferred Qualifications: (Preference will be given to candidates who, demonstrate some or all of the following skills/experience):
• Experience working with various cybersecurity best practices, frameworks, and regulations such as: NIST Special Publications documents (SP 800-30, 800-37, 800-50, 800-53A, 800-53, 800-60, 800-61, and 800-64), NIST FIPS (FIPS-199, 200, 140-2), IT Security frameworks - (NIST Special Pubs 800 Series, NIST Cybersecurity Framework, ISO 27000 Series), CIS CSC, and regulations (FISMA, HIPAA, CJIS, SSA, PCI-DSS).
• Experience supporting statewide enterprise, or multi-agency cybersecurity environments.
• Hands-on experience with enterprise vulnerability management platforms (e.g., CrowdStrike, Tenable Qualys Rapid7, or equivalent).
• Knowledge of cloud security within AWS, Azure, or Google Cloud environments.
• One or more industry recognized cybersecurity certifications such as:

o CompTIA Security+

o CEH

o GSEC

o CISSP

o CISM
• Working knowledge of the cyber incident handling process and experience in its execution.
• Experience in network traffic analysis and threat indicator identification

COMPENSATION/WORKER TYPE/ADDITIONAL DETAILS:

Office Location: 47 Trinity Ave, Atlanta GA

Worker Type: Hybrid - (in-office: 2-3 days per week)

Target Hiring Salary Range: *$70,800 - $91,000

*Current Georgia state government employees will be subject to SPB rule provisions.

EARN MORE THAN A SALARY! In addition to a competitive salary, the Georgia Technology Authority offers a generous benefits package, which includes employee retirement plan; paid holidays annually; vacation and sick leave; health, dental, vision, legal, disability, accidental death and dismemberment, health and childcare spending account; in addition to telework opportunities depending upon position. More information on Benefits:

Due to the volume of applications received, we are unable to provide information on application status by phone or e-mail. All qualified applicants will be considered but may not necessarily receive an interview. Selected applicants will be contacted by the hiring agency for next steps in the selection process. Applicants who are not selected will not receive notification.

Georgia Technology Authority does not discriminate in employment on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factor.