Network Security Engineer — what you'd actually do
This maps to the ONET occupation Information Security Engineers (SOC 15-1299). The activities below are ONET occupation tasks, copied as-is and attributed to O*NET.
What you'd actually do
These are the most central day-to-day activities O*NET records for this occupation (highest-importance core tasks first):
- Identify security system weaknesses, using penetration tests. (O*NET)
- Coordinate monitoring of networks or systems for security breaches or intrusions. (O*NET)
- Assess the quality of security controls, using performance indicators. (O*NET)
- Scan networks, using vulnerability assessment tools to identify vulnerabilities. (O*NET)
- Train staff on, and oversee the use of, information security standards, policies, and best practices. (O*NET)
- Develop response and recovery strategies for security breaches. (O*NET)
- Conduct investigations of information security breaches to identify vulnerabilities and evaluate the damage. (O*NET)
- Develop or install software, such as firewalls and data encryption programs, to protect sensitive information. (O*NET)
Core vs. occasional
O*NET separates the activities most central to the occupation (core) from those done occasionally (supplemental). Here is the honest split from the imported data.
Central, day-to-day activities: 8 core task(s).
- Identify security system weaknesses, using penetration tests.
- Coordinate monitoring of networks or systems for security breaches or intrusions.
- Assess the quality of security controls, using performance indicators.
- Scan networks, using vulnerability assessment tools to identify vulnerabilities.
- Train staff on, and oversee the use of, information security standards, policies, and best practices.
- Develop response and recovery strategies for security breaches.
- Conduct investigations of information security breaches to identify vulnerabilities and evaluate the damage.
- Develop or install software, such as firewalls and data encryption programs, to protect sensitive information.
Occasional activities: 0 supplemental task(s).
The imported task summary lists no supplemental tasks for this occupation, so every recorded activity is a core, day-to-day one.
How your current work maps in
If you are moving into tech from another field, treat the list above as an honest preview of the work itself — the concrete tasks you would spend your days on, drawn straight from O*NET occupation data. Look for the activities that already resemble what you do now (for example documenting, troubleshooting, coordinating with people, or working through a methodical process); those are the closest footholds. This is a description of the day-to-day work, not a measure of pay or hiring odds.
Sources
- National Center for ONET Development — ONET 30.3 Database: https://www.onetcenter.org/database.html
Citation Ledger
| ID | Supports | Evidence (basis) | Source |
|---|---|---|---|
| CIT-01 | Identify security system weaknesses, using penetration tests. | O*NET occupation task (task_id 21776, importance 4.56, retrieved 2026-06-25T10:06:39+00:00) | National Center for ONET Development — ONET 30.3 Database |
| CIT-02 | Coordinate monitoring of networks or systems for security breaches or intrusions. | O*NET occupation task (task_id 21769, importance 4.42, retrieved 2026-06-25T10:06:39+00:00) | National Center for ONET Development — ONET 30.3 Database |
| CIT-03 | Assess the quality of security controls, using performance indicators. | O*NET occupation task (task_id 21766, importance 4.41, retrieved 2026-06-25T10:06:39+00:00) | National Center for ONET Development — ONET 30.3 Database |
| CIT-04 | Scan networks, using vulnerability assessment tools to identify vulnerabilities. | O*NET occupation task (task_id 21782, importance 4.28, retrieved 2026-06-25T10:06:39+00:00) | National Center for ONET Development — ONET 30.3 Database |
| CIT-05 | Train staff on, and oversee the use of, information security standards, policies, and best practices. | O*NET occupation task (task_id 21783, importance 4.28, retrieved 2026-06-25T10:06:39+00:00) | National Center for ONET Development — ONET 30.3 Database |
| CIT-06 | Develop response and recovery strategies for security breaches. | O*NET occupation task (task_id 21774, importance 4.25, retrieved 2026-06-25T10:06:39+00:00) | National Center for ONET Development — ONET 30.3 Database |
| CIT-07 | Conduct investigations of information security breaches to identify vulnerabilities and evaluate the damage. | O*NET occupation task (task_id 21767, importance 4.22, retrieved 2026-06-25T10:06:39+00:00) | National Center for ONET Development — ONET 30.3 Database |
| CIT-08 | Develop or install software, such as firewalls and data encryption programs, to protect sensitive information. | O*NET occupation task (task_id 21773, importance 4.11, retrieved 2026-06-25T10:06:39+00:00) | National Center for ONET Development — ONET 30.3 Database |