The concepts of “information assurance” and “information security” are often used interchangeably, but while workers in these fields share certain skill sets and cooperate in many areas, they are different occupational areas. Information security professionals help organizations develop systems and protocols to avoid cyberattacks, but, most significantly, respond in real-time to cyberattacks. On the other hand, information assurance analysts are much more involved in “big picture” thinking—developing risk management assessments of security threats and procedures, strategies to protect data before attacks, and plans to recover data if a cyberattack, natural disaster, or terrorist attack occurs, rather than responding to cyberattacks.
Job duties for information assurance analysts can be organized into the areas of planning/assessment, education, and threat response.
In regard to planning/assessment, analysts analyze the vast range of information (text, audio, videos, etc.) that their organization produces or uses to create various levels of protection—ranging from open access to highly classified; assess information system security requirements, functionality, and the effectiveness of security solutions against current and projected threats; and conduct risk assessments of information systems, and data usage, transmission, and processing practices. They also ensure conformity of password policies and security countermeasures; execute various risk management framework methodologies, including the National Institute of Standards and Technology’s cybersecurity framework; prepare disaster recovery plans that provide a guide for recovering data after a natural disaster or terrorist attack; ensure that all equipment and storage devices are properly marked with the appropriate security designation (confidential, secret, top-secret, etc.); conduct periodic reviews to ensure compliance with established policies and procedures; and ensure outmoded information systems are disposed of correctly based on organizational security policies and procedures.
In the area of education, analysts develop and lead training programs that teach employees about their information assurance responsibilities (e.g., what materials may or may not be removed from the work site, rules about using Flash drives that contain top-secret information on unclassified computers, etc.)
In response to threats, analysts investigate security incidents and implement protective and corrective measures to reduce incidents and risk; work with team members to remediate and mitigate findings; and respond in real-time to cyberattacks (although at many organizations, this is handled by cybersecurity analysts).
- Accountants
- Agile Coaches or Trainers
- App Services Workers
- Artificial Intelligence Specialists
- Audit and Assurance Accountants
- Auditors
- Augmented Reality Developers
- Automation Engineers
- Back-End Developers
- Big Data Developers
- Billing Clerks
- Biometrics Systems Specialists
- Blockchain Developers
- Bookkeeping and Accounting Clerks
- Business Continuity Planners
- Business Development Managers and Directors
- Business Intelligence Analysts
- Business Managers
- Chief Customer Officers
- Chief Executive Officers
- Chief Financial Officers
- Chief Information Officers
- Chief Information Security Officers
- Clinical Data Managers
- Cloud Engineers
- Compliance Managers
- Computer and Office Machine Service Technicians
- Computer Network Administrators
- Computer Programmers
- Computer Support Service Owners
- Computer Support Specialists
- Computer Systems Programmer/Analysts
- Computer Trainers
- Credit Analysts
- Cryptocurrency Specialists
- Customer Service Representatives
- Customer Success Managers
- Cybersecurity Architects
- Data Processing Technicians
- Data Scientists
- Data Warehousing Specialists
- Database Specialists
- Deepfake Professionals
- Digital Agents
- Digital Designers
- Digital Workplace Experience Engineers
- Document Management Specialists
- Electrical Engineering Technologists
- Electrical Engineers
- Electronics Engineering Technicians
- Electronics Engineers
- Electronics Service Technicians
- Embedded Systems Engineers
- Enterprise Architects
- ETL Developers
- Fiber Optics Technicians
- Financial Analysts
- Financial Consultants
- Financial Institution Officers and Managers
- Financial Institution Tellers, Clerks, and Related Workers
- Fraud Examiners, Investigators, and Analysts
- Full Stack Developers/Engineers
- Futurists
- Geospatial Analytics Specialists
- Graphic Designers
- Graphics Programmers
- Hardware Engineers
- Health Informaticists
- Help Desk Representatives
- Information Brokers
- Information Security Analysts
- Information Technology Consultants
- Information Technology Infrastructure Engineers
- Information Technology Project Managers
- Information Technology Security Consultants
- Internet Consultants
- Internet Developers
- Internet Executives
- Internet Marketing and Advertising Consultants
- Internet of Things Developers
- Internet Quality Assurance Specialists
- Internet Security Specialists
- Internet Store Managers and Entrepreneurs
- Internet Transaction Specialists
- JavaScript Developers
- Loss Prevention Managers
- Machine Learning Engineers
- Mathematicians
- Microelectronics Technicians
- Mobile Software Developers
- Model View Controller Developers
- Network Operations Center Engineers
- Network Operations Center Technicians
- Office Administrators
- Online Gambling Specialists
- Online Journalists
- Online Producers
- Personal Privacy Advisors
- Product Owners
- Professional Hackers
- Project Managers
- Sales Representatives
- Salesforce Developers
- Scrum Masters
- Search Engine Optimization Specialists
- Semiconductor Technicians
- Site Reliability Engineers
- Social Media Workers
- Software Application Developers
- Software Designers
- Software Engineers
- Software Quality Assurance Testers
- Solutions Architects
- Systems Setup Specialists
- Technical Support Specialists
- Technical Writers and Editors
- Technology Ethicists
- User Experience Designers
- Webmasters
- Wireless Service Technicians