Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior IT Security Analyst

Institute of Nuclear Power Operations

Summary of Purpose:

The Senior IT Security Analyst serves as INPO's primary cybersecurity risk authority, providing oversight and guidance to protect the organization's mission-critical operations in the nuclear power industry. The position, a combination of strategic and hands-on, is responsible for managing and maturing INPO's cybersecurity strategy and program to protect the organization's digital assets and ensure alignment with enterprise risk management objectives, by translating complex technical and regulatory risks into clear actions that reduce risk to INPO.

Essential Functions
  • Matures INPO's cybersecurity program, aligning governance, controls, and reporting with NIST Cybersecurity Framework 2.0 and NIST AI Risk Management Framework by setting the standard for security at INPO
  • Refines and maintains IT and security policies, standards, and procedures that operationalize DOE/DOC 810, NRC, and ISO requirements within INPO's compliance environment
  • Maintains the IT risk register and applies assessment and maturity methods to drive consistent identification, analysis, and mitigation tracking across IT
  • Ensures IT integrates risk considerations into technology initiatives, architecture decisions, and change management processes
  • Translates technical risks into executive-level insights that inform prioritization, investment and strategic decisions for the CFO, IT Director, and Senior Leadership Team
  • Produces monthly metrics and quarterly reports on risk posture, trends, maturity, and recommended actions
  • Oversees third-party risk across SaaS, service providers, and supply chain to ensure external relationships meet risk tolerance and contractual/compliance obligations
  • Coordinates IT audits, regulatory examinations, security awareness training, penetration testing, and independent assessments; drives timely remediation and continuous compliance
  • Applies security intelligence from Security Operations Center (SOC)/Managed Detection and Response (MDR) vendors to inform actions, assessments and decision-making
  • Monitors emerging cyber and AI risks, regulatory changes, and industry best practices for nuclear and critical infrastructure, updates strategy accordingly
  • Performs hands-on configuration, monitoring and system administration of enterprise vulnerability management tools (e.g. Qualys) and Governance, Risk and Compliance (GRC) platforms (e.g. ServiceNow GRC, X-Analytics)
  • Performs other duties as assigned
Knowledge, Skills, and Abilities
  • Translates complex cybersecurity and compliance risks into executive-level insights for technical and non-technical stakeholders through advanced communication skills
  • Demonstrates mastery in IT risk management, cybersecurity frameworks, and regulatory compliance, leading strategic risk initiatives and mentoring teams on risk assessment methodologies
  • Proven ability to lead cross-functional teams in risk assessment and compliance initiatives while fostering continuous improvement in risk management practices
  • Proven ability to deliver timely completion of risk mitigating actions, regulatory assessments and compliance programs
  • Proven ability to analyze complex risk scenarios, threat intelligence, and compliance information to inform decision-making and risk mitigation strategies
  • Maintains strict confidentiality of sensitive cybersecurity intelligence, risk assessments, and regulatory examination findings
  • Demonstrates mastery in the relevant specialty area, spearheading initiatives, providing mentorship to team members, and championing innovation and strategic enhancements across the organization
  • Advanced communication skills used to drive organization change initiatives and convey complex ideas and project strategies in a clear and compelling manner to stakeholders
  • Proven ability to lead and collaborate with diverse teams to achieve common goals, while providing mentorship and guidance to team members, fostering a culture of continuous improvement and excellence
  • Demonstrated ability to strategically allocate resources to manage a portfolio of programs; prioritizing tasks, meeting deadlines, and proactively mitigating program risks to ensure successful outcomes
  • Advanced ability to use research, analysis, and stakeholder feedback to influence and execute program strategies while remaining up-to-date with industry regulations and compliance standards
  • Advanced proficiency in solving complex and multifaceted problems using data, trend, and problem analysis to inform decision making improvements to the program portfolio
  • Exemplifies exceptional ability to seek out learn from feedback, coaching, and new experiences. Anticipates challenges and leverages learnings to drive strategic innovation and mentor cross-functional teams
  • Lead cross-departmental collaboration efforts to strategically harness collective creativity and drive significant innovation within the organization. Exhibit exceptional communication skills to effectively convey complex ideas and facilitate high-level discussions. Demonstrate a proven track record of impactful cross-functional projects, ensuring alignment and synergy among diverse teams
  • Ability to work and maintain confidentiality of highly sensitive/private information
Education, Licenses, and Certifications

Required
  • High School Diploma or GED
Preferred
  • Bachelor's degree in cybersecurity, computer science, information technology, information assurance, network engineering or network security, or a related field of study
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Security Professional (CISSP)
Experience

Required
  • Six or more years of professional work experience
  • Four or more years of experience in risk management, audit, or cybersecurity governance in regulated industries
Preferred
  • Six or more years of experience in risk management, audit, or cybersecurity governance in regulated industries
  • Experience developing, implementing, and maturing GRC program maturity
  • Nuclear industry or critical infrastructure experience with regulatory compliance requirements
  • Third-party risk management experience including vendor assessments and supply chain risk analysis
  • Executive reporting and stakeholder management experience with C-suite and Board-level presentations
Additional Requirements

Work Context
  • Must be able to work prolonged periods of sitting at a desk and working on a computer
  • Must be able to work under minimal supervision
  • Must be able to sit, stand, walk, stoop, kneel, crouch, climb, and crawl
  • Must be able to lift 25 pounds
  • Must have a US state or territory issued Real ID compliant driver's license or identification card
Behaviors and Assessments/Additional Requirements
  • All INPO employees are expected to abide by behavioral expectations as outlined in INPO's Core Values, Team Effectiveness Attributes, and Leadership Effectiveness Attributes
  • Employment is dependent upon successfully completing a pre-employment background check and drug and alcohol test
  • This position may require obtaining unescorted access status
  • This position requires direct or indirect access to certain export-controlled technology, for which INPO may be required to obtain an export license in accordance with applicable U.S. export control laws and regulations. If an export license is required, any offer of employment at INPO for this position is contingent upon receipt of the export license or authorization

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.
Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the Senior IT Security Analyst in Atlanta, GA vacancy
  •  ...Job Description MUST HAVE CISSP, GIAC, or other security certifications Degree in Computer Science, Management Information Systems, or related field McAfee IPS experience 5+ years’ experience in computing and information security including: Internet technology and security... 
    Suggested

    Arete Technologies Inc

    Atlanta, GA
    1 day ago
  •  ...IT Security Analyst Arete Technologies, Inc. offers a set of innovative consulting and outsourcing services, bridging the gap between requirements and outputs of various dexterous and facile companies worldwide. The thrust of providing global deliverables with focus... 
    Suggested
    Local area
    Worldwide

    Arete Technologies Inc

    Atlanta, GA
    2 days ago
  •  ...Vulnerability Analyst Our client is a global manufacturing firm that partners with their customers to provide differentiated paper and...  ..., managing, and remediating vulnerabilities in an enterprise IT environment. How You Will Impact The Firm Remediation, Resolution... 
    Suggested
    Work at office
    Remote work
    Relocation

    ERS Search

    Atlanta, GA
    2 days ago
  • 4p-Consulting-Inc. is hiring a Vulnerability Assessment Analyst IV to enhance container security and exposure management in cybersecurity. The successful...  ...importance of assessing security vulnerabilities across diverse IT and OT systems while collaborating with various teams.... 
    Senior

    4p-Consulting-Inc.

    Atlanta, GA
    13 days ago
  •  ...Information Security Analyst 3 Under broad supervision, plans, directs and coordinates agency...  ...hands-on technical team in administering IT security tools, automation, and compliance...  ...and projects and communicate reports to senior management and the leadership teams.... 
    Suggested
    Work experience placement
    Work at office
    Local area

    TriOptus LLC

    Atlanta, GA
    2 days ago
  •  ...professional with relevant technical experience. As the Information Security Analyst 3, reporting to the CISO, the selected candidate will perform...  ...and lead the hands-on technical team in administering IT security tools, automation, and compliance standards. Security... 

    BizTek People

    Atlanta, GA
    2 days ago
  • Frontier Technologies LLC, based in Atlanta, Georgia, is looking for IT professionals specializing in security solutions. As a company formed in 2002, they provide customized staffing solutions with a focus on quality. Applicants should have knowledge in network and application... 

    Frontier Technologies

    Atlanta, GA
    1 day ago
  • IT Applications Security Engineer/Analyst Contract 360 IT Professionals is a California base Minority Business Enterprise specializing in the field of IT Consulting and Staffing. Since our Inception we have been providing industry leading IT solutions for Staffing and... 
    Contract work
    Local area
    Immediate start

    360 IT Professionals

    Atlanta, GA
    1 day ago
  • A leading IT consulting firm is seeking an IT Applications Security Engineer/Analyst for an 11-month contract in Atlanta, GA. This position focuses on identifying and mitigating security risks in client applications while ensuring secure software development practices.... 
    Contract work
    Local area
    Immediate start

    360 IT Professionals

    Atlanta, GA
    1 day ago
  • $124.2k - $186.2k

     ...About the team: The Information Security organization advances the overall state of security at Rubrik through purposeful initiatives and coordination of large security projects. Information Security builds technologies, tools, and processes to better enable teams... 
    Local area
    Remote work

    Rubrik

    Atlanta, GA
    23 hours ago
  •  ...SOC Analyst Location: New York City, Boston MA, Atlanta GA Shift: 3PM to 12AM EST Mon...  ...the first line of defense for information security operations monitoring, investigating, and...  ...the ability to collaborate with engineers, IT, and business teams to maintain and... 
    Shift work

    Axelon

    Atlanta, GA
    2 days ago
  • Dexian DISYS is seeking a Cybersecurity Analyst specialized in Kubernetes and container security. The role is based in Atlanta, GA or Birmingham, AL, and requires expertise in securing Kubernetes and Docker setups. Successful candidates will have at least 2 years of experience... 

    Dexian DISYS

    Atlanta, GA
    3 days ago
  • $76.4k - $138.6k

     ...systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 950...  ...and build client trust. Opportunity As an Offensive Security Analyst on the Vulnerability Management team, you will play a... 
    Summer holiday
    Flexible hours

    EY

    Atlanta, GA
    1 day ago
  • $76.4k - $138.6k

    A leading global professional services firm is seeking an Offensive Security Analyst to manage and evaluate digital vulnerabilities. The role involves assessing third-party risks and implementing security standards across EY's digital assets. Candidates should have a minimum... 

    EY

    Atlanta, GA
    4 days ago
  • A leading security services company is seeking an Information Security Analyst in Atlanta, Georgia. This role involves supporting the maintenance of the security program, monitoring cyber threats, and managing email security configurations. The ideal candidate will have... 

    EMCOR Group

    Atlanta, GA
    1 day ago
  •  ...seeking a cybersecurity professional to monitor and safeguard our internal information systems. This role is responsible for analyzing security configurations and implementing security solutions to protect against potential threats. Qualified candidates will have a Bachelor... 

    HD Supply

    Atlanta, GA
    4 days ago
  • 100%remote. Our direct client has an opening for a Security Analyst 4786 This position is up to 8 months with the option of extension. The client is located in Dover,DE If you are interested, please submit the following: YOUR CURRENT RESUME YOUR HOURLY RATE Zscaler... 
    Hourly pay
    Remote work

    Focused HR Solutions

    Atlanta, GA
    23 hours ago
  • Ernst & Young Oman is seeking an Offensive Security Analyst. This role involves evaluating EY's digital exposure through hands-on penetration testing and adversarial simulations. The analyst will identify vulnerabilities, assess risks, and contribute to security management... 

    Ernst & Young Oman

    Atlanta, GA
    4 days ago
  •  ...as electrical, mechanical, lighting, air conditioning, heating, security, fire protection, and power generation systems—in virtually...  ...government. Job Summary EMCOR Group, Inc. seeks an Information Security Analyst – Intel and Email who will support the maintenance of EMCOR’s... 
    Work at office

    EMCOR Group

    Atlanta, GA
    23 hours ago
  • $75k - $120k

     ...Your Role at Relatient We are seeking an Information Security Analyst to join our team. This role has a preference to be located in...  ...work experience in lieu of a degree is required. ~4+ years IT/application experience required. ~ Prefer certifications or... 
    Work experience placement
    Remote work
    Flexible hours

    RELATIENT

    Atlanta, GA
    2 days ago
  • $30 per hour

     ...the Oracle Government, Defense & Intelligence team supporting Federal Compliance and Federal Sales Teams. The Information Security Compliance Analyst is expected to work with the GDI Performance Management team to ensure documentation, processes and policies up to date... 
    Hourly pay
    Temporary work
    Internship
    Flexible hours

    Oracle

    Atlanta, GA
    1 day ago
  • $1,300 per month

     ...We are a fast‑growing company seeking a skilled Information Security Analyst to join our team in Atlanta. The role requires an Indian national...  ...vulnerabilities. The analyst will work closely with the IT team to develop and execute strategies to defend our network from... 
    Full time
    Visa sponsorship
    Free visa

    PrimeDefense USA

    Atlanta, GA
    4 days ago
  •  ...Frontier Technologies LLC is an IT Services and Consulting Company, formed in 2002 that specializes in staff augmentation & customized...  ...: Preferred qualification: Certified Information Systems Security Professional (CISSP) or Certified Information Systems Auditor (CISA... 

    Frontier Technologies

    Atlanta, GA
    23 hours ago
  •  ...Assessments and Mitigations. Assist in Information Security Investigations. Assist with Office of Information Security...  ...of Safeguards and other third-party assessors. The analyst will need a 4-year degree in an IT or InfoSec related field. They will need 5 years of... 
    Work at office

    ClifyX

    Atlanta, GA
    23 hours ago
  •  ...Job Title Information Security Coordinator Job Description Assists in planning, directing, and coordinating agency activities, specifically relative to Information Security Assists in developing and enforcing the organization's security policies, standards... 

    BizTek People

    Atlanta, GA
    2 days ago
  •  ...Overview: GA DHS - Information Security Analyst (776405) Atlanta GA This role is responsible for monitoring, detecting, analyzing...  ...incidents across enterprise systems. Coordinate with IT and business stakeholders on containment, eradication, and recovery... 

    r2 Technologies, Inc.

    Atlanta, GA
    2 days ago
  • A cybersecurity firm in Atlanta is looking for an Information Security Analyst to play a key role in monitoring, detecting, and responding to security events. The ideal candidate will have a Bachelor's degree in a related field and hands-on experience with tools such as... 

    STI

    Atlanta, GA
    2 days ago
  • HD Supply Canada, Inc in Atlanta, GA is seeking an Information Security Analyst. This role involves monitoring and analyzing security systems, executing controls to prevent cyber threats, and responding to security alerts. Candidates should have a Bachelor's degree in... 
    Full time

    HD Supply Canada, Inc

    Atlanta, GA
    3 days ago
  • Information Security Analyst [CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management)] 47 Trinity Ave SW Atlanta, GA / Hybrid...  ...incidents across enterprise systems. Coordinate with IT and business stakeholders on containment, eradication, and recovery... 

    STI

    Atlanta, GA
    2 days ago
  • QGenda in Atlanta is seeking a Compliance Analyst to support operational activities within their Legal and Compliance functions. This...  ...healthcare sector. The successful candidate will manage customer security questionnaires, assist with audits, and streamline compliance... 

    QGenda

    Atlanta, GA
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior IT Security Analyst. Be the first to apply!