- Plan, implement and upgrade security measures and controls
- Establish plans and protocols to protect digital files and information systems against unauthorized access, modification and/or destruction
- Maintain data and monitor security access
- Perform vulnerability testing, risk analyses and security assessments
- Conduct internal and external security audits
- Anticipate security alerts, incidents and disasters and reduce their likelihood
- Manage network, intrusion detection and prevention systems
- Analyze security breaches to determine their root cause
- Recommend and install appropriate tools and countermeasures
- Define, implement and maintain corporate security policies
- Train fellow employees in security awareness and procedures
- Coordinate security plans with outside vendors
Confused about the difference between a Security Analyst and a Security Administrator? Analysts and Administrators are peers, but they do not have the same job responsibilities.
- Security Analysts are responsible for analyzing data and recommending changes to higher ups. But they are usually not the ones responsible for authorizing and implementing changes. Their main job is keeping attackers out.
- Security Administrators ensure that systems are working as designed. Unlike analysts, they make changes, apply patches and set up new admin users. Their main job is keeping systems up.
Consider honing your technical skills in:
- IDS/IPS, penetration and vulnerability testing
- DLP, anti-virus and anti-malware
- TCP/IP, computer networking, routing and switching
- Firewall and intrusion detection/prevention protocols
- Windows, UNIX and Linux operating systems
- Network protocols and packet analysis tools
- C, C++, C#, Java or PHP programming languages
- Cloud computing
- SaaS models
- Security Information and Event Management (SIEM)
Security certifications look good on résumés, but they’re not always necessary for certain positions – check the job requirements. In addition, some of these certifications (e.g. CISSP) require a number of years of experience:
- CEH: Certified Ethical Hacker
- ECSA: EC-Council Certified Security Analyst
- GSEC / GCIH / GCIA: GIAC Security Certifications
- CISSP: Certified Information Systems Security Professional