Information Security Analyst

HIGH DemandLOW AI RiskGROWING in SL· Rs.140k+ /mo

For those who see cybersecurity as a mission — protecting digital assets and privacy against ever-evolving threats in one of the most critical fields of our time.

About This Role

Monitors networks for security breaches and investigates violations to protect data.

A Day in the Life

Information Security Analysts protect organisational data by monitoring threats, analysing vulnerabilities, implementing controls, and ensuring compliance — balancing day-to-day monitoring with strategic security planning.

  • Review security alerts from SIEM and EDR tools
  • Analyse phishing reports and suspicious email incidents
  • Conduct risk assessments and vulnerability scans
  • Review and update security policies and procedures
  • Assist with ISO 27001 / PCI-DSS compliance audits
  • Investigate security incidents and prepare reports
  • Liaise with IT teams to remediate vulnerabilities

Work Environment

OFFICETeam: SMALLBUSINESS CASUALRemote: HIGH

Corporate IT or security operations environment. Analytical and process-focused. May involve classified or sensitive data handling.

Typical hours: 45h/week · WLB score 7/10 · OCCASIONAL overtime

Generally structured work with overtime during security incidents or audit periods. On-call is common in banks and telecom.

Skills Required

Technical Skills

Risk AssessmentSIEM ToolsVulnerability ManagementISO 27001Incident ResponseNetwork SecurityCompliance FrameworksThreat Intelligence

Soft Skills

Analytical ThinkingAttention to DetailReport WritingCommunicationProblem SolvingDiscretion

Tools & Software

SplunkIBM QRadarNessusQualysTenable.ioMicrosoft DefenderCrowdStrikeServiceNow GRC

Salary in Sri Lanka (LKR / month)

Entry LevelRs.65k – Rs.100k/mo
Mid-LevelRs.120k – Rs.220k/mo
SeniorRs.220k – Rs.450k/mo
Entry: IT Security Analyst (Junior)Mid: Information Security AnalystSenior: Senior Security Analyst / CISO

Typical progression: 3yr to mid · 7yr to senior

Global Salary (USD / year)

Entry Level$60k – $90k/yr
Mid-Level$90k – $135k/yr
Senior$135k – $185k/yr

Top Markets

USAUKAustraliaSingaporeCanadaUAE

Market Outlook

GROWING

CBSL cybersecurity mandates, rising ransomware attacks on SL organisations, and digital banking growth are driving urgent demand for security analysts across all sectors.

Hiring: HIGH

Commercial BankHNBDialog AxiataBOCICTAMinistry of Digital InfrastructureVirtusaWSO2

GROWING

Cybersecurity roles are among the fastest-growing globally with millions of unfilled positions. Demand continuously exceeds supply.

Entry Requirements

Sri Lanka

Min. EducationBACHELORS
Experience1-2 years IT experience

Preferred

BSc Computer Science or ITCompTIA Security+ or CEHNetworking knowledge (CCNA)

Global

Min. EducationBACHELORS
Experience2+ years IT security experience

Preferred

CISSP or CISMSOC analyst experienceCloud security knowledge

Helpful Certifications

CompTIA Security+CISMCISSPISO 27001 Lead AuditorCEHCRISC

Entrepreneurship & Freelancing

Freelance: MEDIUMRemote: HIGHCapital: LOW

Freelance earnings: $1500–$5000/mo (USD)

Platforms (SL)

UpworkDirect contracts with businesses needing security audits

Business Ideas

  • Cybersecurity consulting for SMEs
  • Penetration testing service
  • Security compliance consulting (ISO 27001)
  • Security awareness training

Side Income Ideas

Security audits for small businessesBug bounty programmesSecurity awareness training delivery

Growing opportunity as SL businesses face regulatory pressure to secure systems but lack in-house expertise.

Risks & Challenges

AI / Automation Risk

LOW

LONG TERM

Burnout Risk

HIGH

Job Security (SL)

HIGH

AI enhances threat detection but human judgement remains critical for incident response, risk assessment, and strategic security decisions.

Burnout Causes

Constant threat landscape evolutionIncident response stressAlert fatigueResponsibility weight

Physical Health Risks

Sedentary workScreen fatigue

Mental Health Risks

High-stress incidentsResponsibility anxietyAlert fatigue

How to Mitigate

  • Keep certifications current
  • Build technical breadth (cloud, DevSecOps)
  • Develop GRC expertise alongside technical skills
  • Join security communities (ISACA, ISC2)

Is This Career For You?

Best for analytical students who enjoy detective-like problem solving, have a mindset for thinking like an adversary, and are motivated by protecting people and organisations from digital harm.

Personality Types

ISTJINTJINTP

Core Motivations

Protecting organisations from harmSolving complex security puzzlesStaying ahead of threat actorsPublic safety contribution

What You'll Love

  • High societal importance
  • Excellent job security
  • International mobility
  • Strong salary growth

What's Challenging

  • Constantly evolving threat landscape
  • Responsibility weight
  • Alert fatigue

At a Glance

SL Salary (entry)Rs.65k – Rs.100k/mo
SL Salary (senior)Rs.220k – Rs.450k/mo
Global (senior)$135k – $185k/yr
SL DemandGROWING
WLB Score7/10
Hours/week~45h
Remote WorkHIGH

AI Replacement Risk

LOW

LONG TERM

Sectors

Private

Reviews & Ratings

Loading reviews…