7 classifications of security careers

The security industry is growing at a great pace. In December 2015, Forbes reported that worldwide spending on information security would reach $75 billion for 2015, and the global cybersecurity market was expected to be worth $170 billion by 2020. As the industry expands, so does the demand for security professionals and the number of jobs.

NIST’s Cybersecurity Workforce Framework gives the security industry a way to classify specific specialty areas and work roles and identify a path for career growth.

1. Securely provision

These are the professionals who conceptualize, design and build secure information technology systems. Most of these IT professionals are responsible for some aspect of a security system’s development and typically operate at a high level.

NIST-defined specialty areas and work roles:

• Risk management (authorizing official, security control assessor)
• Software development (software developer, secure software assessor)
• Systems architecture (enterprise architect, security architect)
• Technology R&D (research and development specialist)
• Systems requirement planning (requirements planner)
• Test and evaluation (testing and evaluation specialist)
• Systems development (information systems security developer, systems developer)

2. Operate and maintain

These professionals run the tools that operate an organization’s network, according to NIST’s framework. They are very hands-on and provide the support, administration and maintenance required to ensure both effective and efficient IT system’s performance and security.

NIST-defined specialty areas and work roles:

• Data administration (database administrator, data analyst)
• Knowledge management (knowledge manager)
• Customer service and technical support (technical support specialist)
• Network services (network operations specialist)
• Systems administration (systems administrator)
• Systems analysis (systems security analyst)

3. Oversee and govern

These professionals are responsible for providing leadership, management, direction and advocacy so the organization may effectively conduct cybersecurity work.
NIST-defined specialty areas and work roles:

• Legal advice and advocacy (legal advisor)
• Training, education and awareness (instructional curriculum developer, cyber instructor)
• Cybersecurity management (information systems security manager, COMSEC manager)
• Strategic planning and policy (cyber workforce developer and manager, cyber policy and strategy planner)
• Executive cyber leadership (office of chief information security officer)
• Acquisition and program/project management (program manager, IT project manager, product support manager, IT investment/portfolio manager, IT program auditor)

4. Collect and operate

These professionals are responsible for specialized denial and deception operations, as well as the collection of cybersecurity information that can be used to develop intelligence.

NIST-defined specialty areas and work roles:

• Collection operations (all-source collection manager, all-source collection requirements manager)
• Cyber operational planning (cyber intel planner, cyber ops planner, interagency/international integration planner)

5. Protect and defend

These are some of the organization’s high-level technical people. They identify, analyze and mitigate threats to internal IT systems or networks. People with these skills are in high demand and some of the toughest employees to attract and retain.

NIST-defined specialty areas and work roles:

• Cyber defense analysis (cyber defense analyst)
• Cyber defense infrastructure support (cyber defense infrastructure support specialist)
• Incident response (cyber defense incident responder)
• Vulnerability assessment and management (vulnerability analyst)

6. Analyze

This specialty area and work roles were developed by the intelligence and defense community, but after the past few years, they now apply to the financial sector, healthcare and manufacturing. Threat intelligence and analysis were topics rarely talked about, however, since the Target security breach, these topics and roles are now essential.

NIST-defined specialty areas and work roles:

• Threat analysis (warning analyst)
• Exploitation analysis (exploitation analyst)
• All-source analysis (all-source analyst, mission assessment specialist)
• Targets (target developer, target digital network analyst, target analyst reporter) Language analysis (multidisciplined language analyst)

7. Investigate

Many of these specialty areas and work roles are filled by law enforcement professionals, but many organizations find they need people to investigate cybersecurity events or crimes related to IT systems, networks and digital evidence.

NIST-defined specialty areas and work roles:

• Cyber investigation (cyber crime investigator)
• Digital forensics (forensics analyst, cyber defense forensics analyst)

Do you agree with these 7 classifications of security careers? This guide may be helpful for students who are trying to determine which direction they would like to go with their IT or security degree. It is also helpful for individuals who are looking to change their current career within the field. For students looking for more resources and direction in choosing their IT path, consider attending our Student360 event in February 2017!