The position information security analyst is a great opportunity for a security professionals to expand their skill set.
There are many types of information security analysts. Some information security analysts examine the security features of a system, while others might be responsible for analyzing the security features of an entire organizations infrastructure.
Analysts are usually professionals with enough security to provide guidance on security incidents, security features and/or risks in a given information systems environment.
That being said, the term information security analyst is used in many different ways by many different organizations. For example, sometimes organizations call their security professionals “analysts” when they actually do “engineering”. And sometimes they will call security analysts engineers. So take the description below with a grain of salt.
Essentially, an Analyst studies, monitors, computes, considers, contemplates and provides reports, incident handling, responses on existing systems. Or they check on designs proposed developed by others. While engineers, create, design, manipulate install, configure existing and/or proposed systems. There is a lot of overlap so you should always examine the description of the specific job you plan on doing.
Analysts analyze. Engineers build stuff. But of course there can be lots of overlap.
Prerequisites for Typical Information Security Analyst:
If you have a solid understanding of networking, TCP/IP, subnetting, a little bit of server administration, malware identification and lots of system security experience than Information Security Analyst is for you. Organization dealing with the federal government usually desire a BS degree or specific IT certifications.
Basic Job Description of Typical Information Security Analyst:
The Information Security Analyst responsibilities can sometimes include ensuring that system Information Security requirements are reached. Another task might be to provide support for systems engineering life cycle from the specification through the design oof hardware or software, procurement, development, to integration, test, operations and maintenance. Provide analysis, definition, and the recommendation of information assurance and security requirements for advancing Information Security technologies of computing and network infrastructure.
Responsibilities may include but are not limited to:
• Ensure compliance with Configuration Management (CM), Information Security governance, policy, directives, and guidance are followed.
Ensure compliance with certain security policies / standards such as:
- Federal Information Security Management Act (FISMA)
- NIST Special Publications (SP) 800 Series
- Security Technical Implementation Guides (STIGs)
- Sarbanes-Oxely Act
- Risk Management Framework for DoD IT
- ISO/IEC 27000
- Health Insurance Portability and Accountability Act (HIPA)
• Conduct Information System Security Engineering activities at the subsystem and system level of design
• Complete Vulnerability scans, Information System Security audits, analysis, risk assessments, vulnerability assessments, intrusion detection/prevention and log monitoring of computing resources
• Computer Network Defense:
- Analyze TCP/IP traffic
- Continuous monitoring of information system security
- Incident handling
- SIEM Analyst
- Data Loss prevention .
- Coordination with computer emergency response team (CERT)
• Certification & Accreditation / Risk Management Framework analysis
• Support C&A Security Test and Evaluation processes