Information Security Engineers
15-1299.05
Bright Outlook Updated 2025

Develop and oversee the implementation of information security procedures and policies. Build, maintain and upgrade security technology, such as firewalls, for the safe use of computer networks and the transmission and retrieval of information. Design and implement appropriate security controls to identify vulnerabilities and protect digital files and electronic infrastructures. Monitor and respond to computer security breaches, viruses, and intrusions, and perform forensic investigation. May oversee the assessment of information security systems.

Sample of reported job titles: BISO (Business Information Security Officer), Cloud Engineer, Engineer, Information Security Auditor, Information Security System Engineer, Infrastructure Security Engineer, Security Analyst, Security Data Scientist, Security Engineer, Systems Engineer

Occupation-Specific Information

Tasks

  • Identify security system weaknesses, using penetration tests.
  • Coordinate monitoring of networks or systems for security breaches or intrusions.
  • Assess the quality of security controls, using performance indicators.
  • Train staff on, and oversee the use of, information security standards, policies, and best practices.
  • Scan networks, using vulnerability assessment tools to identify vulnerabilities.
  • Develop response and recovery strategies for security breaches.
  • Conduct investigations of information security breaches to identify vulnerabilities and evaluate the damage.
  • Develop or install software, such as firewalls and data encryption programs, to protect sensitive information.
  • Oversee development of plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure or to meet emergency data processing needs.
  • Identify or implement solutions to information security problems.
  • Develop information security standards and best practices.
  • Recommend information security enhancements to management.
  • Oversee performance of risk assessment or execution of system tests to ensure the functioning of data processing activities or security measures.
  • Coordinate vulnerability assessments or analysis of information security systems.
  • Review security assessments for computing environments or check for compliance with cybersecurity standards and regulations.
  • Troubleshoot security and network problems.
  • Coordinate documentation of computer security or emergency measure policies, procedures, or tests.
  • Develop or implement software tools to assist in the detection, prevention, and analysis of security threats.
  • Write reports regarding investigations of information security breaches or network evaluations.
  • Provide technical support to computer users for installation and use of security products.
Find occupations related to multiple tasks

Technology Skills

  • Access software — IBM Tivoli software
  • Application server software — Docker Hot technology ; GitHub Hot technology ; Kubernetes In-Demand Hot technology
  • Authentication server software — Single sign-on SSO In Demand
  • Cloud-based data access and sharing software — Platform as a service PaaS
  • Cloud-based management software — Amazon Web Services AWS CloudFormation Hot technology ; Google Cloud software
  • Configuration management software — Chef Hot technology ; IBM Terraform In-Demand Hot technology ; Puppet Hot technology
  • Content workflow software — Atlassian JIRA Hot technology
  • Data base management system software — Elasticsearch Hot technology ; MongoDB Hot technology ; NoSQL Hot technology
  • Data base reporting software — Microsoft SQL Server Reporting Services SSRS Hot technology ; Reporting software
  • Data base user interface and query software — Amazon Web Services AWS software In-Demand Hot technology ; IBM DB2 Hot technology ; Microsoft SQL Server Hot technology ; ServiceNow Hot technology ; 2 more
  • Development environment software — Go Hot technology ; Microsoft Azure software In-Demand Hot technology ; Microsoft PowerShell In-Demand Hot technology ; Ruby Hot technology ; 3 more
  • Document management software — Microsoft SharePoint Hot technology
  • Electronic mail software — Microsoft Outlook Hot technology
  • Enterprise application integration software — Enterprise application integration EAI software; Jenkins CI Hot technology ; Microsoft SQL Server Integration Services SSIS Hot technology
  • Enterprise resource planning ERP software — Management information systems MIS
  • Enterprise system management software — Splunk Enterprise In-Demand Hot technology ; Tanium software
  • Expert system software — Ansible software Hot technology
  • File versioning software — Git Hot technology
  • Geographic information system — Geographic information system GIS systems
  • Graphics or photo imaging software — Microsoft Visio Hot technology
  • Internet directory services software — Active directory software; Microsoft Active Directory In-Demand Hot technology ; Network directory services software; Oracle Unified Directory
  • Network monitoring software — IBM QRadar SIEM; Microsoft Azure Sentinel; Snort; Wireshark; 1 more
  • Network security and virtual private network VPN equipment software — Firewall software In Demand
  • Network security or virtual private network VPN management software — IBM Resource Access Control Facility RACF; Intrusion detection system IDS
  • Object or component oriented development software — C# Hot technology ; Oracle Java In-Demand Hot technology ; Perl Hot technology ; R Hot technology ; 2 more
  • Office suite software — Microsoft Office software Hot technology
  • Operating system software — Apple iOS Hot technology ; Microsoft Windows Server Hot technology ; Red Hat Enterprise Linux Hot technology ; UNIX Shell Hot technology ; 7 more
  • Presentation software — Microsoft PowerPoint Hot technology
  • Project management software — Atlassian Confluence Hot technology ; Microsoft Teams Hot technology
  • Risk management data and analysis software — ArcSight Enterprise Threat and Risk Management; McAfee Enterprise Security Manager
  • Spreadsheet software — Microsoft Excel Hot technology
  • Switch or router software — Border Gateway Protocol BGP Hot technology
  • Transaction security and virus protection software — Microsoft Defender Antivirus; Microsoft Security Esssentials; Tenable Nessus
  • Transaction server software — IBM Middleware
  • Web platform development software — JavaScript Hot technology ; JavaScript Object Notation JSON Hot technology ; PHP Hot technology ; React Hot technology ; 2 more
  • Word processing software — Collaborative editing software
Hot technology
Hot Technologies are requirements most frequently included across all employer job postings.
In demand
In Demand skills are frequently included in employer job postings for this occupation.

Occupational Requirements

Work Activities

  • Working with Computers — Using computers and computer systems (including hardware and software) to program, write software, set up functions, enter data, or process information.
  • Getting Information — Observing, receiving, and otherwise obtaining information from all relevant sources.
  • Identifying Objects, Actions, and Events — Identifying information by categorizing, estimating, recognizing differences or similarities, and detecting changes in circumstances or events.
  • Updating and Using Relevant Knowledge — Keeping up-to-date technically and applying new knowledge to your job.
  • Analyzing Data or Information — Identifying the underlying principles, reasons, or facts of information by breaking down information or data into separate parts.
  • Communicating with Supervisors, Peers, or Subordinates — Providing information to supervisors, co-workers, and subordinates by telephone, in written form, e-mail, or in person.
  • Documenting/Recording Information — Entering, transcribing, recording, storing, or maintaining information in written or electronic/magnetic form.
  • Making Decisions and Solving Problems — Analyzing information and evaluating results to choose the best solution and solve problems.
  • Processing Information — Compiling, coding, categorizing, calculating, tabulating, auditing, or verifying information or data.
  • Evaluating Information to Determine Compliance with Standards — Using relevant information and individual judgment to determine whether events or processes comply with laws, regulations, or standards.
  • Training and Teaching Others — Identifying the educational needs of others, developing formal educational or training programs or classes, and teaching or instructing others.
  • Interpreting the Meaning of Information for Others — Translating or explaining what information means and how it can be used.
  • Organizing, Planning, and Prioritizing Work — Developing specific goals and plans to prioritize, organize, and accomplish your work.
  • Communicating with People Outside the Organization — Communicating with people outside the organization, representing the organization to customers, the public, government, and other external sources. This information can be exchanged in person, in writing, or by telephone or e-mail.
  • Providing Consultation and Advice to Others — Providing guidance and expert advice to management or other groups on technical, systems-, or process-related topics.
  • Thinking Creatively — Developing, designing, or creating new applications, ideas, relationships, systems, or products, including artistic contributions.
  • Monitoring Processes, Materials, or Surroundings — Monitoring and reviewing information from materials, events, or the environment, to detect or assess problems.
  • Developing and Building Teams — Encouraging and building mutual trust, respect, and cooperation among team members.
  • Coaching and Developing Others — Identifying the developmental needs of others and coaching, mentoring, or otherwise helping others to improve their knowledge or skills.
  • Coordinating the Work and Activities of Others — Getting members of a group to work together to accomplish tasks.
  • Developing Objectives and Strategies — Establishing long-range objectives and specifying the strategies and actions to achieve them.
  • Establishing and Maintaining Interpersonal Relationships — Developing constructive and cooperative working relationships with others, and maintaining them over time.
  • Monitoring and Controlling Resources — Monitoring and controlling resources and overseeing the spending of money.
  • Guiding, Directing, and Motivating Subordinates — Providing guidance and direction to subordinates, including setting performance standards and monitoring performance.

Detailed Work Activities

Find occupations related to multiple detailed work activities

Work Context

Experience Requirements

Job Zone

Title
Job Zone Four: Considerable Preparation Needed
Education
Most of these occupations require a four-year bachelor's degree, but some do not.
Related Experience
A considerable amount of work-related skill, knowledge, or experience is needed for these occupations. For example, an accountant must complete four years of college and work for several years in accounting to be considered qualified.
Job Training
Employees in these occupations usually need several years of work-related experience, on-the-job training, and/or vocational training.
Job Zone Examples
Many of these occupations involve coordinating, supervising, managing, or training others. Examples include real estate brokers, sales managers, database administrators, graphic designers, conservation scientists, art directors, and cost estimators.
SVP Range
(7.0 to < 8.0)

Training & Credentials

State training
Local training
Certifications
Find certifications nationwide

Apprenticeship Opportunities

Example apprenticeship titles for this occupation:

  • Cyber Defense Incident Responder

Specific title(s) listed above are vetted by industry and approved by the U.S. Department of Labor for use in a Registered Apprenticeship Program.

Start your career and build your skillset. Visit Apprenticeship.gov to learn about opportunities related to this occupation.

Worker Requirements

Skills

  • Reading Comprehension — Understanding written sentences and paragraphs in work-related documents.
  • Critical Thinking — Using logic and reasoning to identify the strengths and weaknesses of alternative solutions, conclusions, or approaches to problems.
  • Active Listening — Giving full attention to what other people are saying, taking time to understand the points being made, asking questions as appropriate, and not interrupting at inappropriate times.
  • Monitoring — Monitoring/Assessing performance of yourself, other individuals, or organizations to make improvements or take corrective action.
  • Writing — Communicating effectively in writing as appropriate for the needs of the audience.
  • Speaking — Talking to others to convey information effectively.
  • Quality Control Analysis — Conducting tests and inspections of products, services, or processes to evaluate quality or performance.
  • Systems Analysis — Determining how a system should work and how changes in conditions, operations, and the environment will affect outcomes.
  • Systems Evaluation — Identifying measures or indicators of system performance and the actions needed to improve or correct performance, relative to the goals of the system.
  • Active Learning — Understanding the implications of new information for both current and future problem-solving and decision-making.
  • Complex Problem Solving — Identifying complex problems and reviewing related information to develop and evaluate options and implement solutions.
  • Judgment and Decision Making — Considering the relative costs and benefits of potential actions to choose the most appropriate one.
  • Instructing — Teaching others how to do something.
  • Operations Monitoring — Watching gauges, dials, or other indicators to make sure a machine is working properly.
  • Programming — Writing computer programs for various purposes.
  • Coordination — Adjusting actions in relation to others' actions.
  • Social Perceptiveness — Being aware of others' reactions and understanding why they react as they do.

Knowledge

  • Computers and Electronics — Knowledge of circuit boards, processors, chips, electronic equipment, and computer hardware and software, including applications and programming.
  • Engineering and Technology — Knowledge of the practical application of engineering science and technology. This includes applying principles, techniques, procedures, and equipment to the design and production of various goods and services.
  • English Language — Knowledge of the structure and content of the English language including the meaning and spelling of words, and rules of composition and grammar.
  • Telecommunications — Knowledge of transmission, broadcasting, switching, control, and operation of telecommunications systems.
  • Customer and Personal Service — Knowledge of principles and processes for providing customer and personal services. This includes customer needs assessment, meeting quality standards for services, and evaluation of customer satisfaction.

Education

How much education does a new hire need to perform a job in this occupation? Respondents said:

  • 47%
     
    Bachelor’s degree required
  • 16%
     
    Post-secondary certificate required
  • 11%
     
    Some college, no degree required

Worker Characteristics

Abilities

  • Oral Comprehension — The ability to listen to and understand information and ideas presented through spoken words and sentences.
  • Oral Expression — The ability to communicate information and ideas in speaking so others will understand.
  • Written Comprehension — The ability to read and understand information and ideas presented in writing.
  • Deductive Reasoning — The ability to apply general rules to specific problems to produce answers that make sense.
  • Information Ordering — The ability to arrange things or actions in a certain order or pattern according to a specific rule or set of rules (e.g., patterns of numbers, letters, words, pictures, mathematical operations).
  • Speech Recognition — The ability to identify and understand the speech of another person.
  • Inductive Reasoning — The ability to combine pieces of information to form general rules or conclusions (includes finding a relationship among seemingly unrelated events).
  • Near Vision — The ability to see details at close range (within a few feet of the observer).
  • Problem Sensitivity — The ability to tell when something is wrong or is likely to go wrong. It does not involve solving the problem, only recognizing that there is a problem.
  • Speech Clarity — The ability to speak clearly so others can understand you.
  • Written Expression — The ability to communicate information and ideas in writing so others will understand.
  • Flexibility of Closure — The ability to identify or detect a known pattern (a figure, object, word, or sound) that is hidden in other distracting material.
  • Selective Attention — The ability to concentrate on a task over a period of time without being distracted.
  • Category Flexibility — The ability to generate or use different sets of rules for combining or grouping things in different ways.
  • Perceptual Speed — The ability to quickly and accurately compare similarities and differences among sets of letters, numbers, objects, pictures, or patterns. The things to be compared may be presented at the same time or one after the other. This ability also includes comparing a presented object with a remembered object.
  • Fluency of Ideas — The ability to come up with a number of ideas about a topic (the number of ideas is important, not their quality, correctness, or creativity).

Interests

Interest code: CIR
Want to discover your interests? Take the O*NET Interest Profiler.
  • Conventional — Work involves following procedures and regulations to organize information or data, typically in a business setting. Conventional occupations are often associated with office work, accounting, mathematics/statistics, information technology, finance, or human resources.
  • Investigative — Work involves studying and researching non-living objects, living organisms, disease or other forms of impairment, or human behavior. Investigative occupations are often associated with physical, life, medical, or social sciences, and can be found in the fields of humanities, mathematics/statistics, information technology, or health care service.
  • Realistic — Work involves designing, building, or repairing of equipment, materials, or structures, engaging in physical activity, or working outdoors. Realistic occupations are often associated with engineering, mechanics and electronics, construction, woodworking, transportation, machine operation, agriculture, animal services, physical or manual labor, athletics, or protective services.

Work Styles

  • Innovation — A tendency to be inventive, to be imaginative, and to adopt new perspectives on ways to accomplish work.
  • Perseverance — A tendency to exhibit determination and resolve to perform or complete tasks in the face of difficult circumstances or obstacles at work.
  • Adaptability — A tendency to be open to and comfortable with change, new experiences, or ideas at work.
  • Stress Tolerance — A tendency to cope and function effectively in stressful situations at work.
  • Achievement Orientation — A tendency to establish and maintain personally challenging work-related goals, set high work-related standards, and exert high effort toward meeting those goals and standards.
  • Intellectual Curiosity — A tendency to seek out and acquire new work-related knowledge and obtain a deep understanding of work-related subjects.
  • Cautiousness — A tendency to be careful, deliberate, and risk-avoidant when making work-related decisions or doing work.
  • Integrity — A tendency to be honest and ethical at work.
  • Attention to Detail — A tendency to be detail-oriented, organized, and thorough in completing work.
  • Dependability — A tendency to be reliable, responsible, and consistent in meeting work-related obligations.

Workforce Characteristics

Wages & Employment Trends

Median wage data for Computer Occupations, All Other.
Employment data for Computer Occupations, All Other.
Industry data for Computer Occupations, All Other.
Median wages (2024)
$52.39 hourly, $108,970 annual
State wages
Local wages
Employment (2024)
472,000 employees
Projected growth (2024-2034)
Much faster than average (7% or higher)
Projected job openings (2024-2034)
31,300
State trends
Top industries (2024)

Source: Bureau of Labor Statistics 2024 wage data and 2024-2034 employment projections . “Projected growth” represents the estimated change in total employment over the projections period (2024-2034). “Projected job openings” represent openings due to growth and replacement.

Job Openings on the Web

State job openings
Local job openings

More Information

Professional Associations

Disclaimer: Sources are listed to provide additional information on related jobs, specialties, and/or industries. Links to non-DOL Internet sites are provided for your convenience and do not constitute an endorsement.

National Associations
Regional Associations
Accreditation, Certification, & Unions