Job description
Information security analysts are in charge of installing, monitoring, operating and protecting computer networks at private companies, public agencies and non-profit organisations to ensure security breaches and a wide array of other cybersecurity incidents do not happen. This position can work with computer systems in any industry, from finance to marketing to government departments.
Duties
- Perform security assessments to determine digital risk and vulnerability
- Conduct internal and external security audits
- Investigate security infiltrations and any other cybersecurity breach
- Monitor computer networks for many security issues
- Update the company’s incident response protocol
- Install security measures to protect computer systems and networks
- Operate software, including data encryption and firewalls, as part of the information infrastructure
- Verify the security of third-party merchants to ensure they meet company requirements
- Collect, analyse and report data to establish evidence of a crime
- Reverse-engineer software to patch a bug
- Help colleagues better understand information security management and install the software
- Train employees about the best corporate digital security practices
- Stay current on information technology trends, IT news and industry standards
- Recommend to management about security improvements and products to purchase
Skills and qualities
Job outlook
Projected growth
28%
New jobs
28.5k
Automation risk
21%
Career progression
There is plenty of room for advancement in this field. You will start off as an information security analyst, but you will quickly climb through the ranks with your problem-solving abilities, acumen and hard work. After improving your qualifications and gaining more experience, you can go from analyst to officer to manage to executive.
Working conditions
Average hours
51h/ week
Typical schedule
Full Time
On call for emergencies
An information security analyst will work full time, but many times these positions require you to be on call outside of normal business hours in the event of an emergency. Moreover, these jobs may consist of travelling from one location to another, especially if the company operates several locations.
At the same time, information security analysts maintain an advanced home office that makes working outside of business hours a bit easier.
As the years go by, information security will demand higher hours because you are constantly learning, spending time in meetings and training hours. Ultimately, entry-level will begin with seven- or eight-hour days, Monday to Friday. The more experience you attain and the more responsibility you are given, the more hours you will work throughout your seven-day workweek.
Salary
Bottom 10%
$57k
Median
$98k
Top 10%
$160k
Annual salary estimates are based on percentile wage data collected through the Occupational Employment Statistics (OES) survey of US workers.
Qualifications and training
Education level
Undergraduate
BA in a IT-related subject
Study time
4 years
Information security analysts need a bachelor’s degree in computer engineering, computer information systems, computer programming or any similar field. Sometimes, though, a position may require advanced degrees, including a Master of Business Administration in Information Systems.
Moreover, since technology has become more advanced, companies are looking for candidates with specialised expertise. This can be earned in a wide variety of certification programmes, such as Certified Information Systems Security Professional (CISSP) and Certified Information Security Manager (CISM).
Sources
(ISC)2 Bureau of Labor Statistics Information Systems Audit and Control Association (ISACA) Oxford Martin SchoolLast Updated: Wednesday, November 2, 2022
