Information Security Analyst

Dalton Lewis II

The career I chose that depends on social science research and social science principles was Information Security Analyst. The job description for this career is to protect computer systems and networks for cyber threats. This means that they are monitoring and assessing threats, responding to threats, creating security protocols to prevent / mitigate the threats and conduct risk assessments. Boise State University states, “This position conducts vulnerability scans and penetration tests on campus systems, operates and monitors network and host-based intrusion detection/prevention systems, recommends security solutions, advises on systems and application-level security configurations, and investigates and mitigates security risks as required.” (2024)

Social Science Research

The reason professionals in the Information security analysts career depend on social science research is to understand and study the human factors of cybersecurity. In a recent article SecurityScoreCard (2024), states, “Humans are susceptible to cognitive biases, such as the tendency to prioritize convenience over security or to underestimate risks when they perceive a task as familiar. By recognizing these biases, cybersecurity professionals can tailor their approach to mitigate human error effectively.”(2024). Therefore, one of the reasons the professionals depend on studying the human factors of cybersecurity is to mitigate as many risks of a breach as possible, especially if it can be avoided by following their companies’ procedures and guidelines. SecurityScoreCard (2024), also states, “Another critical aspect of the human factor in cybersecurity is the insider threat. While external threats often dominate headlines, insider threats—whether intentional or unintentional—pose a significant risk to organizations. Employees with access to sensitive information can inadvertently leak data through negligent actions or intentionally exploit their privileges for personal gain or malicious purposes.” (2024).

Social Science Studies

The reason professionals in the Information security analysts career depends on social science studies is to study human behaviors and social interactions. In a recent article, Columbia Southern University state (2021), “An important concept when learning about behavioral analysis in cybersecurity is understanding both how individuals create risk to organizations and how to mitigate those risks. This begins with the understanding that hackers will always seek the easiest possible path into a network, which is often through employees and other individuals.”(2021). In addition, Columbia (2021) states, “By understanding the complexities of human behavior, organizations can develop more effective strategies for mitigating risks and safeguarding digital assets. From raising awareness and fostering a culture of security consciousness to addressing insider threats and combating social engineering tactics, integrating the human element into cybersecurity initiatives is essential for protecting against evolving threats in an increasingly digital world” (2021). Furthermore, this study not only helps them understand the risks that can come from human errors, but to also raise awareness on how easily humans can become a critical key factor in a breach of an organization. Therefore, in the information Security Analyst job, these professionals constantly follow their guidelines to mitigate these risks, and frequently scan for vulnerabilities to ensure the companies security.

Relates to Class

In our Cybersecurity Social Sciences class, we learn about social sciences and phycological behavior of humans, and why they commit nefarious acts, and how it affects another person or group. Therefore, the material from class relates to the cybersecurity professional’s daily routines by studying these behaviors and creating strategies to mitigate the risks that come with these behaviors. The behaviors consist of phishing attacks, weak passwords, clicking unknown links, sharing information, and not acknowledging policies and guidelines. Furthermore, these risks can be both critical to the company and essential to a hacker, so that why it is extremely important for these guidelines and procedures to be followed.

Conclusion

In conclusion, Information Security Analyst, depends on Social Science studies and research because it helps them understand human behaviors to also help them develop effective security practices to secure their data. It is also important to know that these professionals are getting targeted everyday by hackers waiting for them to make mistakes because they are the easiest way for the hackers to breach their systems. Therefore, regardless if a person is a professional or not it is important to take the necessary precautions to prevent a cyberattack.

References

Boise State University. (2024, November 22). Job standard for IT information security analyst 1. Job Levels and Standards. https://www.boisestate.edu/hrs-job-levels-job-standards/job-standard-for-it-information-security-analyst-1/

Columbia Southern University. (2021, February 5). How human behavior affects cybersecurity. An Online University with Unlimited Possibilities | Columbia Southern University. https://www.columbiasouthern.edu/blog/blog-articles/2021/february/human-aspects-of-cyber-security/

SecurityScorecard. (2024, February 16). The human factor in cybersecurity. https://securityscorecard.com/blog/the-human-factor-in-cybersecurity/