Refit
Career overview · SOC 15-1212

Information Security Analysts

Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. Assess system vulnerabilities for security risks and propose and implement risk mitigation strategies. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May respond to computer security breaches and viruses.

Also called: Information Security Officer · Information Security Specialist · Information Systems Security Analyst · Information Systems Security Officer (ISSO) · Information Technology Security Analyst (IT Security Analyst) · Network Security Analyst

Median pay (national)
$124,910
$69,660–$186,420 (10th–90th)
Employed (US)
179,430
BLS OEWS, May 2024
Outlook 2024–34
+28.5%
~16,000 openings/yr
Typical entry
Bachelor's degree

What the numbers say

Refit analysis ·Pay for information security analysts shows an unusually wide range: the top 10% earn $186,420 versus $69,660 at the bottom 10% — 2.7x. The median of $124,910 leaves roughly 49% of headroom to the 90th percentile, which is where seniority, specialization, and the skills below tend to pay off.
Refit analysis ·Employment is projected to change +28.5% from 2024 to 2034 — much faster than the 3% average for all occupations. Even so, BLS projects about 16,000 openings a year, mostly to replace workers who retire or change careers.
Refit analysis ·Where you work moves the number a lot. Across the 51 states with released data, Washington pays the most for this role (median $142,920, +14% vs the national median), while Puerto Rico sits lowest at $59,520 — a 140% spread for the same job title.
Refit analysis ·O*NET rates Reading Comprehension, Critical Thinking, Active Listening as the highest-importance skills here — so a resume aimed at this role should lead with evidence of those, not a generic skills list. On the tools side, O*NET flags Amazon Web Services AWS software, eMASS, Firewall software, Linux as in-demand technologies for this role.

Tailor your resume to Information Security Analysts

Honest tailoring

See how your resume lines up with Information Security Analysts

Refit re-angles your real experience toward this role using the skills above — and never invents skills you don't have. A no-fabrication gate checks every change before you see it.

Free. No account needed to see your first re-fit.

Top skills employers ask for

Ranked by O*NET importance for this occupation.

  • Reading Comprehension
  • Critical Thinking
  • Active Listening
  • Speaking
  • Writing
  • Monitoring
  • Active Learning
  • Learning Strategies
  • Mathematics
  • Science

What they actually do

Core O*NET tasks for this role.

  • Develop plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
  • Monitor current reports of computer viruses to determine when to update virus protection systems.
  • Encrypt data transmissions and erect firewalls to conceal confidential information as it is being transmitted and to keep out tainted digital transfers.
  • Perform risk assessments and execute tests of data processing system to ensure functioning of data processing activities and security measures.
  • Modify computer security files to incorporate new software, correct errors, or change individual access status.
  • Review violations of computer security procedures and discuss procedures with violators to ensure violations are not repeated.
  • Document computer security and emergency measures policies, procedures, and tests.
  • Confer with users to discuss issues such as computer data access needs, security violations, and programming changes.
  • Coordinate implementation of computer system plan with establishment personnel and outside vendors.
  • Train users and promote security awareness to ensure system security and to improve server and network efficiency.

Tools & technology

  • Amazon Web Services AWS software
  • eMASS
  • Firewall software
  • Linux
  • Microsoft Azure software
  • Microsoft Excel
  • Microsoft Office software
  • Microsoft PowerPoint
  • Microsoft PowerShell
  • MITRE ATT&CK software
  • Python
  • Splunk Enterprise
  • Tenable Nessus
  • UNIX
  • AJAX
  • Amazon DynamoDB

Knowledge areas

  • Computers and Electronics
  • English Language
  • Administration and Management
  • Engineering and Technology
  • Telecommunications
  • Customer and Personal Service
  • Public Safety and Security
  • Education and Training