NOC-standart 2171 - Information Systems Analysts and
Consultants:
Example Titles
computer consultant
computer systems analyst
informatics consultant
informatics security analyst
information systems business analyst
information systems
quality assurance analyst
IT (information technology)
consultant
management information systems (MIS) analyst
systems
auditor
systems consultant
systems security analyst
Main duties
The following is a summary of the main duties for some
occupations in this unit group:
Information systems business analysts and consultants confer with clients to identify and document requirements, conduct business and technical studies, design, develop and implement information systems business solutions, and provide advice on information systems strategy, policy, management and service delivery.
Systems security analysts assess physical and technical security risks to data, software and hardware, and develop policies, procedures and contingency plans to minimize the effects of security breaches.
Information systems quality assurance analysts develop and implement policies and procedures throughout the software development life cycle to maximize the efficiency, effectiveness and overall quality of software products and information systems.
Systems auditors conduct independent thirdparty reviews to assess quality assurance practices, software products and information systems.
Employment requirements
A bachelor's degree in computer science, computer systems engineering,software engineering, business administration or a related discipline
or
Completion of a college program in computer science is usually required.
Experience as a computer programmer is usually required.
Real Employment requirements
Diploma or Degree in Computer Science, or equivalent work experience
Recognized certification in Information Security (CISSP, SSCP, MCSE Security, etc.)
Eight to ten years IT experience and five years IT security administration experience
Five years Windows NT/2000 experience
In-depth knowledge of the security requirements and industry best
practices
Knowledge of security industry practices and standards, specifically ISO 17799 and other leading standards, e.g. NIST, COBIT, ITIL
Solid understanding of information security including network (e.g. VPN, firewalls, wireless), protection and countermeasures (e.g. IDS, Penetration Testing) along with sound knowledge of computing and networking infrastructures
Knowledge of current and evolving information security, audit and legal standards, and requirements, e.g. ISO17799, GASSP, COBIT, PIPEDA
Expert knowledge in security threats associated with system and network exploits, process deficiency, denial of service, and malicious program code.
Solid understanding of information security aspects, options and challenges in a modern processing environment, such as confidentiality,
integrity, privacy, inter-networking
Broad hands-on knowledge of firewalls, intrusion detection systems,
anti-virus software, data encryption, and other industry-standard echniques and practices
Strong knowledge of LAN/WAN configuration and design, Windows Active Directory, and TCP/IP
Strong knowledge of IP, TCP/IP, and other network administration protocols, including their vulnerabilities and solutions
Strong analytical and problem solving skills
Skills in written and oral communication, and teamwork