Refit
Career overview · SOC 15-1299

Information Security Engineers

Develop and oversee the implementation of information security procedures and policies. Build, maintain and upgrade security technology, such as firewalls, for the safe use of computer networks and the transmission and retrieval of information. Design and implement appropriate security controls to identify vulnerabilities and protect digital files and electronic infrastructures. Monitor and respond to computer security breaches, viruses, and intrusions, and perform forensic investigation. May oversee the assessment of information security systems.

Also called: BISO (Business Information Security Officer) · Cloud Engineer · Engineer · Information Security Auditor · Information Security System Engineer · Infrastructure Security Engineer

Median pay (national)
$108,970
$52,650–$176,800 (10th–90th)
Employed (US)
439,380
BLS OEWS, May 2024
Outlook 2024–34
+8.2%
~31,300 openings/yr
Typical entry
Bachelor's degree

What the numbers say

Refit analysis ·Pay for information security engineers shows an unusually wide range: the top 10% earn $176,800 versus $52,650 at the bottom 10% — 3.4x. The median of $108,970 leaves roughly 62% of headroom to the 90th percentile, which is where seniority, specialization, and the skills below tend to pay off.
Refit analysis ·Employment is projected to change +8.2% from 2024 to 2034 — much faster than the 3% average for all occupations. Even so, BLS projects about 31,300 openings a year, mostly to replace workers who retire or change careers.
Refit analysis ·Where you work moves the number a lot. Across the 53 states with released data, Virgin Islands pays the most for this role (median $179,830, +65% vs the national median), while Puerto Rico sits lowest at $42,250 — a 326% spread for the same job title.
Refit analysis ·O*NET rates Reading Comprehension, Critical Thinking, Active Listening as the highest-importance skills here — so a resume aimed at this role should lead with evidence of those, not a generic skills list. On the tools side, O*NET flags Amazon Web Services AWS software, Bash, Firewall software, IBM Terraform as in-demand technologies for this role.

Tailor your resume to Information Security Engineers

Honest tailoring

See how your resume lines up with Information Security Engineers

Refit re-angles your real experience toward this role using the skills above — and never invents skills you don't have. A no-fabrication gate checks every change before you see it.

Free. No account needed to see your first re-fit.

Top skills employers ask for

Ranked by O*NET importance for this occupation.

  • Reading Comprehension
  • Critical Thinking
  • Active Listening
  • Writing
  • Monitoring
  • Speaking
  • Active Learning
  • Learning Strategies
  • Mathematics
  • Science

What they actually do

Core O*NET tasks for this role.

  • Identify security system weaknesses, using penetration tests.
  • Coordinate monitoring of networks or systems for security breaches or intrusions.
  • Assess the quality of security controls, using performance indicators.
  • Train staff on, and oversee the use of, information security standards, policies, and best practices.
  • Scan networks, using vulnerability assessment tools to identify vulnerabilities.
  • Develop response and recovery strategies for security breaches.
  • Conduct investigations of information security breaches to identify vulnerabilities and evaluate the damage.
  • Develop or install software, such as firewalls and data encryption programs, to protect sensitive information.
  • Oversee development of plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure or to meet emergency data processing needs.
  • Identify or implement solutions to information security problems.

Tools & technology

  • Amazon Web Services AWS software
  • Bash
  • Firewall software
  • IBM Terraform
  • Kubernetes
  • Linux
  • Microsoft Active Directory
  • Microsoft Azure software
  • Microsoft PowerShell
  • Oracle Java
  • Python
  • Single sign-on SSO
  • Splunk Enterprise
  • Amazon Web Services AWS CloudFormation
  • Ansible software
  • Apple iOS

Knowledge areas

  • Computers and Electronics
  • Engineering and Technology
  • English Language
  • Telecommunications
  • Customer and Personal Service
  • Design
  • Mathematics
  • Education and Training