If you're seeing this message, it means we're having trouble loading external resources on our website.

If you're behind a web filter, please make sure that the domains *.kastatic.org and *.kasandbox.org are unblocked.

Main content

Information security and forensics analyst: What I do

Ramel Prasad, a 20-year-old at CI Security, balances roles as an information security analyst and a forensics analyst. He investigates suspicious activity, learns from industry veterans, and handles sensitive data breaches. He appreciates the company's flexibility, allowing him to manage his work and school commitments.

Want to join the conversation?

Video transcript

My name is Ramel Prasad. I am 20 years old and I work at CI Security and I play a hybrid role of being an information security analyst and a forensics analyst. So CI Security, we strictly focus on computer security. Being a security analyst, being a forensics analyst you know, you're solving puzzles, you're trying to see what happened next, you're trying to put a timeline of events that occurred. We have all of these statistics on a dashboard so it's my job as an analyst to dive into the dashboard and really use my knowledge to see, what is suspicious, what's normal. We have to really disintegrate that traffic. It's extremely important that you learn in the process of investigating. I think just having that people around me, that's been in this industry for like 20, 25 years and just like asking them, hey what would you do because I'm in this scenario right now? And just having that advise from them, I think it helps me a lot and it helps me grow in this company and not only the company but my career in general. Say that I'm a information security analyst and I see something that's compromised and according to the client, it's like a very critical system on their network and say that they had sensitive information on that laptop or something. If they want to proceed with forensics and see if any data was exfiltrated off the network or any other inbound connections coming from other places like Russia and stuff that would be my responsibility too, to go in to the client's site, preserve the evidence, bring it back to the forensics lab and analyze it, just digest through the whole hard drive and conclude everything, wrap it up in a report and deliver it back to say yes data was in fact exfiltrated or no it wasn't, you guys are good and you guys can reimage the machine or whatever you want with it. The thing I love the most about this company, is that they let me do what I want, when I want. And what I mean by that is, like I'm still in school right now, so being a security analyst is a little bit more laid back, being a consultant. Because consultant is heavy work, you know, you're working with the client, you have deadlines to meet, you have report writing to do, as compared to being a security analyst, you know you just simply monitoring the data. When summer comes and when I have more time that's when I really dive into, you got any clients in the funnel, let's do some security, let's do some forensics work, and let's knock out some clients and make our company look great, right?