CISE (Certified Information Security Expert)

Analytical

Information security analysts must have strong analytical skills. They have to be able to study computer systems, assess any potential risks, and consider possible solutions.

Communication

Information security analysts must educate users, explaining to them the importance of cybersecurity, and how to protect their data. They have to communicate this information in a clear and engaging way. Therefore, information security analysts need strong oral and written communication skills.

Creativity

Creativity is critical for information security analysts. They must be able to anticipate cyber-attacks, always thinking one step ahead of a cyber threat. This kind of forward thinking takes creativity.

Detail Oriented

Many threats to cybersecurity are hard to detect. Information security analysts have to be focused on the details of a security system, noting any minor changes, and foreseeing any potential problems, however small.

IT Knowledge

Threats to cybersecurity are always changing, as are solutions. Information security analysts have to constantly update their knowledge on the latest data-protection news, cyber-security legislation, and practices and techniques. A good information security analyst seeks out this information and uses it to shape his or her problem-solving strategies.

Analytical

Network and System Administration Experience

Communicate Up, Down, and Across All Levels of the Organization and Technical Backgrounds

Remediate Security Issues

Create, Modify, and Update Intrusion Detection Systems (IDS) 

Respond to Requests for Specialized Cyber Threat Reports

Create, Modify, and Update Security Information Event Management (SIEM) Tools

Perform Cyber and Technical Threat Analyses

Creativity

Perform Security Monitoring

Deep Understanding of Risk Management Framework

Prevent Hacker Intrusion

Define Process for Managing Network Security

Produce Situational and Incident-Related Reports

Detail Oriented

Problem-Solver

Discover Vulnerabilities in Information Systems 

Provide Host-Based Forensics

Evaluate and Deconstruct Malware Software

Provide Timely and Relevant Security Reports

Experience With Intrusion Prevention Systems

Self-Motivated

Familiar with Security Regulations and Standard

Stay One Step Ahead of Cyber Attacks

Implement and Maintain Security Frameworks for Existing and New Systems

Strong Technical Background in Data Loss Prevention

Information Technology Knowledge

Support and Manage Security Services

Install Firewall and Data Encryption Programs

Team Player

Maintain Security Records of Monitoring and Incident Response Activities

Train Organization on Security Measures

Monitor Compliance with Information Security Policies and Procedure

Up-To-Date on Relevant Technologies

Chapter 1 - Introduction

Chapter 14 - Denial of Service

Chapter 2 - Networking

Chapter 15 - Session Hijacking

Chapter 3 - Footprinting/Reconnaissance

Chapter 16 - Penetration Testing

Chapter 4 - Google Hacking

Chapter 17 - Exploit Writing & Buffer Overflow

Chapter 5 - Scanning

Chapter 18 - Cryptography & Steganography

Chapter 6 - System Hacking: Win7 and Linux

Chapter 19 - Firewalls & Honeypots

Chapter 7 - Android & iPhone Hacking

Chapter 20 - IDS & IPS

Chapter 8 - Malwares

Chapter 21 - Hacking Web Server

Chapter 9 - SQL Injection

Chapter 22 - Wireless Hacking

Chapter 10 - Cross Site Scripting

Chapter 23 - Physical Security

Chapter 11 - Sniffing

Chapter 24 - Reverse Engineering

Chapter 12 - Social Engineering

Chapter 25 - Email Hacking

Chapter 13 - Identity Theft Fraud

Chapter 26 - Security Compliance & Auditing

Chapter 27 - Incident Handling & Computer forensics

Incident Responder

An Incident Responder is one who is responsible for addressing security incidents, threats and vulnerabilities that arise in an organization.

Security Specialist

A Security Specialist is an entry- to mid-level employee who is responsible for completing a variety of duties designed to strengthen the security of an organization.

Computer Forensics Expert

A Computer Forensics Expert is responsible for analyzing evidence gathered off of computers, networks and other data storage devices in an effort to investigate incidents of computer crime.

Security Consultant

A Security Consultant is an outside expert who helps an organization implement the best solutions according to their security needs.

Malware Analyst

A Malware Analyst is responsible for helping an organization understand the viruses, worms, bots, Trojans and other malicious software that threaten its network on a daily basis.

Security Engineer

A Security Engineer is a mid-level employee who is responsible for building and maintaining the IT security solutions of an organization. In this capacity, Security Engineers configure firewalls, test new security solutions, and investigate intrusion incidents, among other duties, all while reporting to the Security Manager.

Security Manager

A Security Manager is a mid-level employee who is tasked with managing an organization’s IT security policy. Soft skills, such as leadership and strong interpersonal and communication skills, are therefore crucial for successful Security Managers.

Security Architect

A Security Architect is a senior-level employee who is responsible for building and maintaining the computer and network security infrastructure for an organization. This position requires that individuals develop a comprehensive picture of an organization’s technology and information needs, which they can then use to develop and test security structures.

Security Director

A Security Director is a senior-level employee whose task is to oversee the implementation of all IT security measures throughout an organization. 

Chief Information Security Officer (CISO)

A CISO is a C-level management executive whose primary task is to oversee the general operations of an organization’s IT security department and other related staff. The organization’s overall security is the foremost concern of the CISO. 

Apple

At the top of the list, Apple has seen several high-profile battles around the privacy and security implications of encryption and iOS—most recently, the New York district attorney's request for the company to return to operating systems that make it easier for law enforcement officials to extract data. It's possible that the company is hiring more cyber professionals to continue bolstering that work in these areas and protecting user data.

Federal Reserve,  Bank of New York

Financial organizations tend to be targeted less than institutions with more vulnerable systems, such as schools and hospitals. However, it's important to remain vigilant to protect money and financial data, of course.

Patient First

At number three, Patient First medical centers are located across the country. Healthcare organizations are particularly vulnerable to cyber-attacks such as ransomware, so it makes sense that they would be adding staff in this area.

Lockheed Martin

Global security and aerospace company Lockheed Martin employs approximately 97,000 people worldwide. Since it is involved in the research, development, manufacturing and integration of advanced technology systems and products, the company is likely adding more positions in cybersecurity to protect those offerings.

General Motors

Auto giant General Motors has made several moves into the connected cars and autonomous cars space in the past year. It invested $500 million into Lyft, in part to work on the company's plans for a driverless car fleet, and purchased Cruise Automation as part of its Autonomous Vehicle Development Team. Connected and autonomous cars pose large security risks to users, so the is probably increasing their staff in that area to address those issues.

Capital One

In recent years, Capital One has made major investments in emerging technology, including software and big data projects, which require cyber professionals to keep secure. It also holds large amounts of customer financial data.

Cisco

Cisco has reported that cyber-attacks are getting stronger, and has a number of cybersecurity efforts and products in place. As they continue researching the issue, it makes sense that they would add more of their own staff to bolster their products and research initiatives.

Intel

As Intel moves further into the Internet of Things (IoT) space with new chips and other devices, it seems that it is looking to bolster security staff to keep those devices from being hacked.

North Rop Grumman

Global security company Northrop Grumman provides systems and products to government and commercial customers. The company invests in research on identity management, cloud security, and supply chain, and is likely adding more staff to ensure high-profile systems are kept secure.

Boeing

Global security company Northrop Grumman provides systems and products to government and commercial customers. The company invests in research on identity management, cloud security, and supply chain, and is likely adding more staff to ensure high-profile systems are kept secure.