Senior Security Analyst (Hybrid - Kennesaw, GA)

Company Overview

Headquartered in suburban Atlanta, Georgia, Artivion, Inc. is a medical device company focused on developing simple, elegant solutions that address cardiac and vascular surgeons' most difficult challenges in treating patients with aortic diseases. Artivion has over 1,400 employees worldwide with sales representation in over 100 countries. The Company has manufacturing facilities located in Atlanta, Georgia, Austin, Texas and Hechingen, Germany. Additionally, it has sales and distribution offices in various countries throughout Europe, Asia, and South America. For additional information about Artivion, visit our website, www.artivion.com.

Position Overview:

The objective of the Senior Security Analyst position is to lead the design, implementation, and continuous improvement of enterprise security controls that protect the organization's digital assets, systems, and data. Reporting to the Cybersecurity Team Lead, the role is responsible for proactively identifying threats, mitigating risks, and ensuring the organization's cybersecurity posture aligns with business objectives and regulatory requirements. The Senior Security Engineer acts as a technical expert and key contributor to the development of a resilient, scalable, and secure IT environment while mentoring junior team members and collaborating with cross-functional teams.

Responsibilities:

• Proactively identify and analyze unauthorized activity (e.g., misuse, malware, intrusion attempts, phishing) on the global network and provide incident documentation.
• Perform analysis of security alerts to evaluate true positive malicious risk to the business, determine containment action, and identify required preventative measures.
• Perform regular vulnerability scans on network devices & web applications, provide technical & executive reports and assist with the remediation process.
• Monitor identity and access management, including monitoring for abuse of permissions by authorized system users.
• Assist in the completion of due diligence information security audits from third parties and clients.
• Conduct regular vulnerability assessments and penetration tests.
• Collaborate with IT and DevOps teams to remediate identified vulnerabilities.
• Support audits and assessments related to frameworks such as ISO 27001, NIST, PCI DSS, or SOX.
• Ensure security controls align with business objectives, regulatory requirements, and risk management practices.
• Contribute to projects that enhance the security posture of the enterprise.
• Operationalize actionable Threat Intelligence reports from internal and external sources.
• Remain knowledgeable of changes in security technology, industry practices, and state & federal regulatory requirements and serve as an Information Security Subject Matter Expert (SME).
• Provide technical assistance to IT staff in the detection and resolution of security incidents.
• Manage end-user communication related to security awareness and manage security awareness platform.
• Develop and maintain reports and dashboards for reporting on KPIs on security awareness, threats, and events.
• Promote activities to foster information security awareness throughout the organization.
• Creates and maintains security specific documentation.
• Provides additional IT infrastructure support and project assistance as required

Qualifications:

• Minimum 5-7 years of experience in the field of Cybersecurity
• Security Operations Center (SOC) work experience with a Bachelor's degree in computer science, information systems, or related technical discipline.
• CompTIA Security+, CEH, CISSP, SSCP, CCSP or equivalent certification required.
• Excellent IT skills, including knowledge of computer networks, operating systems, software, and hardware.
• Web and email security systems experience required.
• Nessus & Tenable.io or equivalent vulnerability management system experience required.
• Anti-virus, Endpoint Detection and Response experience required.
• Broad knowledge of technical security controls required.
• Good oral and written communication skills.
• Can effectively translate and accurately communicate security and risk implications at the most senior levels across technical and non-technical stakeholders.
• This is a hybrid position that will report to our corporate headquarters in Kennesaw, GA