Share and intensity of work current AI systems can materially affect.
Information Security Analysts AI displacement risk
Alert triage, report drafting, detection tuning, and policy review can be accelerated by AI. Accountability, incident command, adversarial reasoning, and environment-specific context keep the role resilient.
Likely potential for exposed tasks to move to software after workflow integration.
Entry-level security work can be compressed by better tooling. Progression depends on practical labs, incident judgment, and system fluency.
Task profile
Where AI changes the work
Triage alerts
Exposure 66, automation 34%, augmentation 76%.
Draft incident notes
Exposure 62, automation 30%, augmentation 70%.
Tune detections
Exposure 42, automation 18%, augmentation 64%.
Lead response
Exposure 24, automation 6%, augmentation 42%.
Transition pathways
Adjacent moves that preserve existing skills
adjacent role
Low Security Operations Analyst
Training horizon: 6-12 months. Skill overlap 74. Wage preservation signal 96.
- Complete SOC labs
- Write incident summaries
- Practice log investigation
adjacent role
Low Governance, Risk, and Compliance Analyst
Training horizon: 4-8 months. Skill overlap 62. Wage preservation signal 90.
- Map controls to evidence
- Review policy exceptions
- Build audit-ready checklists
Labor-market context
Median wage: $120,360. Employment context: High-demand technical risk role. Typical education: Bachelor's degree common.
- Low displacement pressure
- AI increases analyst leverage
- Hands-on labs matter
Sources
Evidence trail
International Labour Organization / 2025 Generative AI and Jobs: A Refined Global Index of Occupational Exposure McKinsey Global Institute / 2023 Generative AI and the Future of Work in America O*NET / current public database Occupation, task, skill, and work-activity data US Bureau of Labor Statistics / current public release Occupational Employment and Wage Statistics