Ryan Steele
August 1, 2024
The term cybersecurity has been used more frequently in recent years throughout the world, but what exactly is it? Why is this term so relevant? One may specifically ask “how does the cybersecurity field affect me directly? For one to understand why cybersecurity is useful or important one must first know what cybersecurity is. By definition cybersecurity is being used globally to protect different systems, networks, and programs from being attacked. Although this process may sound pretty simple and straight forward to some, yet in actuality is very complex. Being a protected organization requires a lot of time and expensive resources. With the constant advancement of technology, the cyber field is on a constant search to find strong, motivated, and most importantly trusted individuals to hire within the field to protect an organization from being potentially destroyed.
Cybersecurity can be thought of as a 1000-piece puzzle with several different systems and roles required to function effectively. Many different jobs and positions in the cybersecurity, some may be more important than others but still demanding diligent and trustworthy employees in the building. One specific career I would highlight would be an information security analyst. An information security analyst is an entry level cybersecurity position that relates to the NIST Framework principles. The NIST Framework is used to help businesses understand, manage and reduce cybersecurity risk protecting networks and organizations using its five core functions: Identify, Protect, Detect, Respond, and Recover. Information security analyst utilize all five core functions to include social science principles to effectively work and provide protection against individuals with malicious intentions toward an organization.
Information security analyst is responsible for managing and documenting data, hardware, and software. One primary role being maintenance of inventories and properly assessing assets within an organization, identifying what would be the most detrimental to an organization if lost. Meaning that in the event your organization is hacked, the most important or critical information within a network is protected leaving a company less vulnerable. Protection is critical and possibly the most important aspect of information security analysist. Analyst construct and apply access control that ensures that the individuals within the network are authorized so have access to sensitive information. The main goal of cybersecurity is to keep information protected, which is half the battle. Once a network becomes unprotected, they become vulnerable to many different negative variables that put an organization at risk. Additionally, protection is something that has to be constantly trained to workers to develop a understanding of what to be mindful of and educate them on the best practices. Granted you would never want to overlook other steps within the NIST Framework, but keeping your network protected should be the first line of defense for an organization.
Information security analyst must not only have a solid understanding of their position, but they should also be able to apply various different social science principles. They must mostly understand how humans operate. For example, what might an attacker be seeking both physically and mentally to attack an organization. They must understand that attackers can present themselves not only as an outsider but one that is working within an organization seeking ways to manipulate a network for their own personal gain. Analyst must understand the culture of the organization, gathering an understand of the organizations culture. Lastly have effective communication skills to operate effectively with others.
Resources
Information Security analysts at my next move. (n.d.). https://www.mynextmove.org/profile/summary/15-1212.00
What is an Information Security Analyst? Skills, Salary, Certifications & More. (n.d.). Digital Guardian. https://www.digitalguardian.com/blog/what-security-analyst-responsibilities-qualifications-and-more