Security Analyst
On this page
- What's it like to be a Security Analyst?
- How to become a Security Analyst
- Top skills and experience for Security Analysts
What's it like to be a Security Analyst?
Security Analysts (Kaitātari Whakamarumaru) are IT professionals who help keep an organisation’s data and computer networks safe by analysing and monitoring risks and implementing security systems to prevent attacks or breaches. Security breaches can have disastrous consequences for businesses and organisations—from loss of money and reputational harm to legal consequences—so Security Analysts are responsible for mitigating these risks. As well as technical computer-based work, Security Analysts may also be responsible for educating other employees and members of the public on how to keep data and networks safe. Threats to IT systems are ever-evolving, so Security Analysts must stay ahead of the curve when it comes to technical knowledge and professional development.
Tasks and duties
- Conducting internal and external security assessments and audits.
- Monitoring security access and helping to ensure networks are secure.
- Analysing security breaches to identify root causes.
- Continuously updating the company’s incident response and disaster recovery plans.
- Assessing the security of third-party vendors and suppliers, ensuring they meet security requirements.
- Maintaining firewalls and network updates.
- Creating training programs to educate employees and users on proper security protocols.
- Keeping the company's security systems up-to-date.
- Ensuring that desktops, laptops, tablets and mobile devices used by employees are patched and secure.
How to become a Security Analyst
There is no single path to becoming a Security Analyst, but a relevant diploma or degree is a starting point.
Consider completing a diploma or bachelor’s degree in network engineering, computer science, cyber security or a similar subject.
Become certified by a relevant industry body, such as Certified Information Systems Security Professional (CISSP) or Global Information Assurance Certification (GIAC). These complement university-based learning as they provide more material on up-to-date industry best-practice.
Gain experience in a more junior IT security-related role, for example as a Network or Systems Administrator. Security Analysts have a lot of responsibility so this is a senior role that often requires a number of years’ experience.
