Cybersecurity Analyst - Digital Fraud Specialist
POSITION OVERVIEW:
Southern Company seeks an experienced Cybersecurity Analyst / Digital Fraud Specialist to protect the organization and its customers from financial loss and reputational damage by detecting, investigating, and preventing fraudulent activity. The analyst serves as the escalation point for cybersecurity incidents involving digital fraud. The successful applicant will partner with internal teams (customer service, telecom, physical security, and application developers) to identify, contain, and remediate threat activity. For example, cases may involve impersonated Internet domains, unattributed phone numbers, fraudulent customer accounts, and other tactics used to exploit our customers, employees, systems, and processes.
The analyst documents cases, evaluates evidence, and leads mitigation efforts. These efforts may include domain takedowns or takeovers, phone number and carrier blacklisting, and coordination with external partners such as law enforcement to disrupt fraudulent activity.
This role requires strong attention to detail, analytical judgment, and the ability to assess emerging threat information. The ideal candidate connects related information, preserves details for future attribution or corroboration, and brings a blend of cybersecurity, investigative analysis, and project management experience.
This position falls under the company’s Insider Threat Program and will have access to, and control over sensitive data, systems or assets. Enhanced personnel screening, which includes a background review, drug screen and psychological assessment, will be required if you are selected for this position
ResponsibilitiesJOB RESPONSIBILITIES:
- Investigating and containing suspected digital fraud activities
- Performing investigations in concert with other operational cybersecurity teams
- Tracking emerging threat patterns and recommending detections
- Coordinating remediation tasks with stakeholders and supporting teams
- Communicating with management on incident updates
- Documenting analytical steps and findings associated with cybersecurity fraud investigations
- Reviewing indicators to determine how to implement protective measures
- Identifying when additional resources are required during an incident
- Establishing and maintaining partnerships with internal and external teams
- Maintaining, updating and providing program metrics
- Initiating Internet domain takedowns or takeovers
- Interrupting the use of fraudulent phone numbers
REQUIREMENTS AND QUALIFICATIONS:
- Prior experience working in cybersecurity operations
- Investigation and analysis experience
- Task management experience, to include IT projects and deployments
- Excellent written and verbal communication skills
- Proven experience owning cybersecurity incidents and their outcomes
- Ability to articulate business impact associated with findings
- Prior success collaborating with various internal and external teams
- Experience mentoring and training other cybersecurity professionals
- Skills in analyzing large amounts of data to identify patterns of fraud
- Preferred certifications across fraud and cyber: CFE, CFCI, CISM, Security+, CISSP, or similar
About Southern Company
Southern Company (NYSE: SO) is a leading energy provider serving 9 million customers across the Southeast and beyond through its family of companies. Providing clean, safe, reliable and affordable energy with excellent service is our mission. The company has electric operating companies in three states, natural gas distribution companies in four states, a competitive generation company, a leading distributed energy solutions provider with national capabilities, a fiber optics network and telecommunications services. Through an industry-leading commitment to innovation, resilience and sustainability, we are taking action to meet customers' and communities' needs while advancing our goal of net-zero greenhouse gas emissions by 2050. Our uncompromising values ensure we put the needs of those we serve at the center of everything we do and are the key to our sustained success. We are transforming energy into economic, environmental and social progress for tomorrow. Our corporate culture has been recognized by a variety of organizations, earning the company awards and recognitions that reflect Our Values and dedication to service. To learn more, visit www.southerncompany.com.
Southern Company invests in the well-being of its employees and their families through a comprehensive total rewards strategy that includes competitive base salary, annual incentive awards for eligible employees and health, welfare and retirement benefits designed to support physical, financial, and emotional/social well-being. This position may also be eligible for additional compensation, such as an incentive program, with the amount of any bonus/awards subject to the terms and conditions of the applicable incentive plan(s). A summary of the benefits offered for this position can be found here https://seo.nlx.org/southernco/pdf/SOCO-Benefits.pdf. Additional and specific details about total compensation and benefits will also be provided during the hiring process.
Skills Required
- Prior experience working in cybersecurity operations
- Investigation and analysis experience
- Task management experience, including IT projects and deployments
- Excellent written and verbal communication skills
- Proven experience owning cybersecurity incidents and their outcomes
- Ability to articulate business impact associated with findings
- Prior success collaborating with internal and external teams
- Experience mentoring and training other cybersecurity professionals
- Skills in analyzing large amounts of data to identify patterns of fraud
- Enhanced personnel screening (background review, drug screen, psychological assessment) as part of Insider Threat Program
- Preferred certifications: CFE, CFCI, CISM, Security+, CISSP, or similar
What We Do
Southern Company Services, Inc., headquartered in Birmingham, Alabama, is the shared services division of Southern Company.






