Information security analysts
Clear pressure on routine tasks. Composition of the role will shift within the decade.
SOC 15-1212 · Computer And Information Technology
Signal composition
how the 0-100 score is assembled
By seniority
multiplicative adjustment from category curve
Entry-level roles carry the brunt because they concentrate the most automatable subset of tasks. Senior work is insulated by judgment, relationships, and accountability.
Task-level analysis
scored 0-100 for current-generation AI feasibility, weighted by BLS-stated importance
Prepare reports documenting metrics, attempted attacks, and security breaches
AI can automatically aggregate security metrics from logs, generate visualizations of attack attempts, compile breach timelines, and produce structured reports from templates with minimal human input. This is primarily data synthesis and formatting work that current AI handles well with light human review.
BLS evidence: Information security analysts prepare reports that document general metrics, attempted attacks, and security breaches.
Research latest IT security trends and emerging attack methods
AI excels at aggregating threat intelligence feeds, summarizing security research papers, identifying emerging attack patterns from multiple sources, and synthesizing trends. Analysts still add value in contextualizing findings for their specific organization, but the research gathering itself is highly automatable.
BLS evidence: Analysts research the latest information technology security trends and must stay up to date on the latest methods attackers are using to infiltrate computer systems.
Check for vulnerabilities in computer and network systems
Automated vulnerability scanning tools powered by AI can identify known vulnerabilities, misconfigurations, and common weaknesses across networks with high accuracy. Human review is needed primarily for prioritization and false positive filtering, but the core detection work is highly automatable.
BLS evidence: Analysts check for vulnerabilities in computer and network systems as a primary duty.
Monitor organization networks for security breaches and investigate incidents
AI can automate anomaly detection, pattern recognition, and initial triage of security events, but investigating complex incidents requires contextual judgment about business impact, attacker intent, and coordinating human responses across teams that AI cannot fully handle autonomously.
BLS evidence: Information security analysts typically monitor their organization's networks for security breaches and investigate when one occurs.
Recommend security enhancements to management or senior IT staff
AI can analyze security gaps and generate enhancement recommendations based on best practices and threat data, but effectively recommending to management requires understanding budget constraints, organizational politics, competing priorities, and translating technical risks into business language that requires human judgment.
BLS evidence: Information security analysts recommend security enhancements to management or senior IT staff.
Develop security standards and best practices for the organization
AI can draft security policies based on frameworks like NIST or ISO 27001 and suggest best practices, but creating standards requires understanding organizational culture, risk appetite, compliance requirements, and stakeholder buy-in that necessitates substantial human judgment and negotiation.
BLS evidence: Information security analysts develop security standards and best practices for their organization.
Create and test disaster recovery plans for IT operations
AI can generate disaster recovery plan templates and suggest recovery procedures based on infrastructure documentation, but testing plans requires coordinating real systems and people, validating recovery time objectives in practice, and making judgment calls about acceptable risk that humans must lead.
BLS evidence: Information security analysts are heavily involved with creating their organization's disaster recovery plan, and analysts continually test the steps in their recovery plans.
Use and maintain security software such as firewalls and data encryption programs
AI can assist with configuration recommendations and automated policy updates, but deploying, maintaining, and troubleshooting security software in production environments requires hands-on technical work, understanding organizational constraints, and making judgment calls about security-usability tradeoffs.
BLS evidence: Analysts use and maintain software, such as firewalls and data encryption programs, to protect sensitive information.
Help computer users install and learn new security products and procedures
AI chatbots and interactive tutorials can handle routine questions about security products, but helping users with installation troubleshooting, addressing their specific concerns, and teaching procedures in ways that stick requires adaptive human interaction, especially for non-technical users resistant to change.
BLS evidence: Analysts help computer users when they need to install or learn about new security products and procedures.
Task heatmap
automation score by task, sorted by weighted contribution
Unlock with Jobpocalypse Pro
Career pivot paths, wage impact analysis, AI tool recommendations, and task heatmaps for every occupation. $9/month, cancel anytime.
See plansor
Downloadable PDF for this occupation only. One-time payment, yours forever.
External signals and sources
category-level priors and BLS fields that feed the four non-task signals
- Karpathy/BLS Digital AI Exposure (0-10 scale rescaled to 0-100)
- BLS projected outlook: Much faster than average (29%)
- Indeed demand signal (monthly refresh pending)
- BLS typical entry-level education: Bachelor's degree
- Credential trend signal (annual refresh)
Related in Computer And Information Technology
closest AOI neighbors in the same category