Information Systems Security Engineer Roles

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
5 hours 58 minutes
Difficulty
Intermediate
CEU/CPE
6
Video Transcription
00:00
>> Welcome back to Cybrary's course,
00:00
I'm your instructor, Brad Rhodes.
00:00
Let's talk about information
00:00
system security engineer roles.
00:00
In this lesson, we're
00:00
going to look at potential roles you can
00:00
hold once you achieve the ISSEP concentration.
00:00
Then we're going to look at
00:00
an example ISSEP job posting because they're out there.
00:00
If you're interested in
00:00
doing this kind of work in this floats your boat,
00:00
you probably should know what to look for.
00:00
Potential is abroad. Well obviously,
00:00
you could be a Senior Systems Engineer.
00:00
This is a Systems Engineering concentration.
00:00
You want to get this concentration
00:00
to hopefully become a systems engineer
00:00
for information security.
00:00
You could be on the assurance side.
00:00
Information assurance still exists.
00:00
We sometimes forget about
00:00
the fact that we have to secure our data.
00:00
This is one of the biggest problems we
00:00
see in the industry today
00:00
because so many breaches are about Cloud problems.
00:00
Really when I say Cloud problems,
00:00
these are misconfigurations where somebody
00:00
left an S3 bucket exposed from say,
00:00
Amazon Web Services or pick a storage solution Azure,
00:00
Google Cloud, IBM has got it, Oracle.
00:00
Any Cloud solution that you're using,
00:00
you have to assure and make sure
00:00
that you are actually configuring those correct.
00:00
That's what ISSEPs do.
00:00
They go back and look at
00:00
all the requirements for securing
00:00
data on the information assurance side
00:00
and they help to do that.
00:00
You could be an analyst,
00:00
you could be looking at security analysts as
00:00
senior security analysts' role
00:00
in information assurance analyst.
00:00
Those analysts' roles are great
00:00
because they allow you to get into the meat and
00:00
potatoes and the nuggets of
00:00
the security controls for both data
00:00
and actual systems security
00:00
from a defense in-depth perspective.
00:00
You definitely want to look at
00:00
all these different potential roles
00:00
and where this fits in because
00:00
demonstrating subject matter expertise as
00:00
a Information Systems Security Engineer is a really rare.
00:00
There's not a lot of ISSEPs out there and you definitely
00:00
are showing a great skill
00:00
set by achieving this concentration.
00:00
Here's an actual job listing for an ISSE,
00:00
an Information System Security Engineer.
00:00
I would like to note a couple of things here.
00:00
One, it's great because here's what a job looks like.
00:00
Here's the things that you would do.
00:00
If you notice security planning,
00:00
assessment, risk analysis, risk management,
00:00
all of the stuff we've talked about in
00:00
the ISSEP domains are literally
00:00
listed in this particular job posting,
00:00
which is really unique.
00:00
You'll note that this is dealing
00:00
with requirements and needs statements.
00:00
We're going to talk a lot about
00:00
needs statements when we get to
00:00
the SE process module
00:00
for the Department of Defense
00:00
and the Intelligence Community.
00:00
Obviously, this is related
00:00
to the US federal government and that's okay.
00:00
But you're starting to see
00:00
these types of job postings available in industry because
00:00
folks realize that
00:00
systems engineering and information systems,
00:00
security engineering in particular is
00:00
not just a thing that we do in the government,
00:00
it is also stuff that we need to do at
00:00
a top-level to build secure systems.
00:00
The Internet today from
00:00
a business perspective is reputation-based.
00:00
If you continually get breached,
00:00
people aren't going to buy your product.
00:00
It's pretty straightforward, but this is again,
00:00
an idea of an actual job posting.
00:00
The other thing I'll note on here is that a lot
00:00
of times ISSE tend to have a lot of experience.
00:00
If you don't have a lot of experience, that's okay.
00:00
You are obviously going to continue to
00:00
grow in this field if you're here
00:00
taking this course from cyber,
00:00
and this is a great place to get started.
00:00
What did we cover in this lesson?
00:00
We reviewed potential roles you could hold with
00:00
an ISSEP concentration or do
00:00
as an Associate Information System Security Engineer.
00:00
Then we looked at an example
00:00
ISSEP-related or SE-related job posting so that you
00:00
get a feel for what kind
00:00
of jobs you might be applying for
00:00
after you achieve this concentration.
00:00
We'll see you next time.
Up Next