From time-to-time, Ashling Team will 'decode' some of the job titles in the industry. Let's start with the role of an Information Assurance Specialist.
Job Title: Information Assurance Specialist (IAS)
a.k.a.: Information Assurance Manager or Information Assurance Advisor.
About: An Information Assurance Specialist is charged with conducting regulatory compliance and security framework audits to identify and mitigate risk to a company’s digital assets— at both the network and endpoint levels.
This includes not only finding vulnerabilities and creating plans to avoid them, but also developing (and testing) disaster recovery plans.
And considering people pose an inherent risk to security— an IAS also typically implements employee awareness training and education.
- Security+: CompTIA’s base-level security certification
- CCNA: Cisco Certified Network Associate – Routing and Switching
- ECSA: EC-Council Certified Security Analyst
- CISSP*: Certified Information Systems Security Professional (*requires several prior years of experience)
- CISM: Certified Information Security Manager
- CISA: Certified Information Systems Auditor
Stepping Stone Job(s): Risk Analyst, Security Risk Associate, and Identity Management Associate.
‘Springboard’ Area(s) of Expertise: Risk management, compliance, incident response and disaster recovery; data protection and privacy; penetration testing and vulnerability assessments; security system architecture, security standards and best practices.
Most Sought-After Skill Sets: An undergraduate degree in information security, information assurance or technology. A thorough understanding of information security regulations and frameworks, including HIPAA, GDPR, PCI-DSS, HITRUST, NIST, ISO and SOX. And, a strong understanding of firewall technologies, as well as intermediate to expert IDS/IPS knowledge.
LATERAL Growth Opportunities: Security Auditor, Security Analyst, Security Consultant, Risk Consultant, and Senior Risk Analyst.
VERTICAL Growth Opportunities: Security Manager, Information Systems Security Officer, Security Director, and CISO.
Ashling Team Insight
Ashling Team senior recruiter Olivia Byrne explains that “infosecurity professionals who have experience with risk remediation, gap analysis and vulnerability scanning are in demand.”
And if you're aspiring to grow into an information assurance role in the healthcare or financial industry, then Byrne recommends being well-versed in GDPR, HIPAA and related compliance, PCI, HITRUST, and NIST to uniquely position yourself for such an advancement opportunity.
Peruse current cybersecurity opportunities available through Ashling Team on the Jobs page here in the community.