Make a Contribution to Remove NSFW Ads

BGOL OFFICE: Hot Job - Information Security Analyst

playahaitian

playahaitian

Rising Star
Certified Pussy Poster
* hoping to make this on-going theme pick a position and give info on training certification openings etc.

http://money.usnews.com/careers/best-jobs/information-security-analyst

Information Security Analyst

With the rise in hackers and data breaches sweeping throughout companies and the government, there's a greater need to keep personal and top-secret information safe from cyberattacks. That's where information security analysts enter the picture. Information security analysts are responsible for protecting the computer networks of a company or government agency. While their behind-the-scenes work often goes unnoticed – as it should – public awareness about cybersecurity threats and efforts to protect sensitive information spiked last year when classified documents were leaked from the National Security Agency and the story made headlines worldwide.

Information security analysts must stay one step ahead of cyberattackers. Someone in an entry-level position may operate software to monitor and analyze information, while a more senior-level position could require investigative work to determine whether a security breach has occurred. David Brumley, an assistant professor in Carnegie Mellon University's Department of Electrical and Computer Engineering, says security analysts focus on three main areas: risk assessment (identifying problems an organization might face), vulnerability assessment (determining an organization's weaknesses) and defense planning (installing protections such as firewalls and data encryption programs).

People who want to work in this field need strong problem-solving and analytical skills and an understanding of computer systems. Some information security analysts must be familiar with security regulations and standards. Chris Liu, a security research engineer and instructor at InfoSec Institute, points to the analysts who responded to Target's data breach in November 2013 – when credit and debit card information of roughly 70 million shoppers was compromised. Those analysts had to know the Payment Card Industry Data Security Standard, which provides a guideline for the prevention and detection of credit card security incidents.

Organizations are increasingly looking for ways to protect data and information, which means there's a high demand for information security analysts. The Bureau of Labor Statistics projects 36.5 percent employment growth for this profession between 2012 and 2022, which is the highest growth rate among all technology jobs on our list. During that period, the BLS estimates 27,400 new jobs will need to be filled in the industry. In 2012, the Washington D.C., area had by far the highest employment level for the occupation, likely due to hiring from government agencies. As Brumley explains, "this is one of the few [jobs] in the government that's projected to grow, not shrink, this coming year – even with the sequestration."

Salary
Information security analysts earned a median annual salary of $86,170 in 2012, according to the Bureau of Labor Statistics. The best-paid 10 percent made $135,600, while the lowest-paid took home $49,960. The highest-paid in the profession work in the metropolitan areas of New York City, San Francisco and Bethesda, Md.

Salary Range

75th Percentile $109,960
Median $86,170
25th Percentile $65,780
Training
Many information security analysts earn a bachelor's degree in computer science, programming or engineering. Some employers seek applicants with a Master of Business Administration in information systems. There is also a range of certifications offered by for-profit organizations like InfoSec Institute. After gaining some experience in the field, Liu says many analysts obtain a CompTIA Security+ certification, which includes training in network security, threats and vulnerabilities and cryptography.

The daily skills and knowledge required depends on the position. "Some focus more on risk assessment so they need to understand how computers work – all the way up to people who do penetration testing where they break into your system," Brumley says. "They need to know every detail about your computer."

Reviews & Advice

Generally, this is not an entry-level position. Many people venture into the occupation only after working in another IT role like computer technician. While most companies seek applicants with bachelor's or master's degrees in a computer-related field, Liu says obtaining a certification is key to finding a job. “That's often a critical first step. Once you have the technical understanding and the certification, usually you can find yourself a position somewhere,” he says. "There’s a lot of demand for it."
 
http://www.bls.gov/ooh/computer-and-information-technology/information-security-analysts.htm

What Information Security Analysts Do
Information security analysts plan and carry out security measures to protect an organization's computer networks and systems. Their responsibilities are continually expanding as the number of cyberattacks increase.

Work Environment
Most information security analysts work for computer companies, consulting firms, and business and financial companies.

How to Become an Information Security Analyst
Most information security analysts have a bachelor’s degree in a computer-related field. They also usually need experience in a related occupation.

Pay
The median annual wage for information security analysts was $86,170 in May 2012.

Job Outlook
Employment of information security analysts is projected to grow 37 percent from 2012 to 2022, much faster than the average for all occupations. Demand for information security analysts is expected to be very high as these analysts will be needed to come up with innovative solutions to prevent hackers from stealing critical information or creating havoc on computer networks.

Similar Occupations
Compare the job duties, education, job growth, and pay of information security analysts with similar occupations.

http://www.infosecinstitute.com/jobs/security-analyst.html
 
Information Security Analysts

Education
Information security analysts usually need at least a bachelor's degree in computer science, programming, or a related field. As information security continues to develop as a career field, many schools are responding with information security programs for prospective job seekers. These programs may become a common path for entry into the occupation. Currently, a well-rounded computer education is preferred.

Related College Majors + Expand Section
Computer Science. - More About This Major
See a list of colleges that offer this major >
Average Tuition (excluding room and board) for Schools with this major: $18,251.00 per year

Computer Systems Networking and Telecommunications. - More About This Major
See a list of colleges that offer this major >
Average Tuition (excluding room and board) for Schools with this major: $9,907.00 per year

Information Technology. - More About This Major
See a list of colleges that offer this major >
Average Tuition (excluding room and board) for Schools with this major: $12,264.00 per year

Computer and Information Systems Security/Information Assurance. - More About This Major
See a list of colleges that offer this major >
Average Tuition (excluding room and board) for Schools with this major: $13,178.00 per year

System, Networking, and LAN/WAN Management/Manager. - More About This Major
See a list of colleges that offer this major >
Average Tuition (excluding room and board) for Schools with this major: $13,692.00 per year

Military Training
Job training consists of classroom instruction, depending upon the specialty area. Further training occurs on the job and through advanced courses in specific computer systems and languages. Course content typically includes:

Use of computers and peripheral equipment
Computer systems concepts
Planning, designing, and testing computer systems
Program structuring, coding, and debugging
Use of current programming languages
Computer security issues
Network management
Certifications or Licenses

Certifications or Licenses
There are a number of information security certifications available and many employers prefer job candidates to have one. Some are general information security certificates, such as the Certified I...

+ Expand Section

General Qualifications
Analytical skills. Information security analysts must carefully study computer systems and networks and investigate any irregularities to determine if the networks have been compromised.Detail orie...

+ Expand Section

Knowledge
Computers and Electronics
Telecommunications
Administration and Management
English Language
Education and Training
 
Computer systems security analyst schools
A bachelor's degree is the standard minimum qualification for a career as a computer systems security analyst, according to the BLS. Most aspiring IT security pros earn their degrees in computer science or information systems, although some schools offer specialty degree programs in information security.

Companies in some industries prefer to hire computer systems security analysts who have learned the finer points of corporate operations in a Master of Business Administration (MBA) program. Midcareer IT professionals and other busy adults can prepare for an analyst role by opting to earn that MBA or enroll in fundamental computer systems security analyst training online.

http://www.schools.com/news/computer-systems-security-analyst-salary-career-outlook.html
 
The 10 Best Online Bachelor’s in Information Assurance and Security Degree Programs

An online Bachelor’s in Information Assurance and Security degree can help you land a rewarding job protecting a company’s most powerful asset, its information. Data security professionals work in a wide range of industries as well as in government agencies and law enforcement.

Information assurance specialists ensure the integrity, confidentiality, and availability of information. They design, develop, implement, operate, and troubleshoot IT systems to safeguard a company’s information. Information assurance specialists manage the risks associated with information transmission, processing, and storage.

Job titles include network systems administrator, information security analyst, senior systems manager, information security crime investigator/forensics expert, and forensic analyst.

Typically, Bachelor in Information Assurance and Security degree programs cover such subjects as data protection, software security, hackers, Internet security, network security, network and computer forensics, security infrastructure design, e-commerce, and telecommunication systems. The programs also cover ethical and legal responsibilities.

Information Security Analyst Wage and Employment Growth

The U.S. Bureau of Labor Statistics forecasts a huge 37 percent employment growth for information security analysts from 2012 to 2022, mush faster than the average (about 10 percent) for all occupations. The U.S. Bureau of Labor Statistics reports information security analysts had an annual median wage of $88,590 in 2013.

best-school-seal-2Online Bachelor in Information Assurance and Security degree programs ranking guidelines

We selected the degree programs base on academic excellence, range of courses provided, awards, rankings, faculty strength, and reputation.

The Best Online Bachelor in Information Assurance and Security Degree Programs

1. Penn State World Campus
Penn State(University Park, PA)

Bachelor in Security and Risk Analysis – Information and Cyber Security Option

Penn State World Campus provides an online 120-credit interdisciplinary bachelor’s degree program for cyber-security. With 100-plus years of distance education and more than a decade of online learning experience, Penn State’s Security and Risk Analysis program concentrates on the policies, technologies, and knowledge required to develop protective services for information, people, and other assets.

The program provides the skills to establish the accessibility, confidentiality, and security systems of valuable assets, whether a process, a person, a material, a facility, or information. The program includes courses related to information warfare, cyber threats, and network security within government agencies, businesses, and organizations.

Penn State’s College of Information Sciences and Technology is a leader among information schools and received recognition as a National Security Agency Center of Academic Excellence in Information Assurance and a Center of Academic Excellence for the Intelligence Community.

U.S. News & World Report’s “Best Online Programs 2014,“ ranked Penn State #3 among online bachelor programs.

2. Utica College
Utica College(Utica, NY)

Bachelor of Science in Cyber-security and Information Assurance

Utica College provides an online Bachelor of Science program in Cyber-security and Information Assurance “completer” program. Enrollees must have earned at least 57 credits from a four-year college or have an Associate’s degree prior to enrolling in the program. The bachelor degree requires 76–89 credit hours in addition to credits earned before entering the program.

The program offers two concentration options: Information Assurance (IA), which provides students with the knowledge and strategies for preventing internet crimes, and Cybercrime Investigations & Forensics, which features the latest techniques for tracking and prosecuting criminals involved in terrorism, hacking, credit card fraud, intellectual property theft, pedophilia, and other cybercrimes.

The college developed the online bachelor’s degree program in conjunction with Utica’s Center for Identity Management and Information Protection. The Center’s affiliation with multi-national companies and federal agencies such as the U.S. Secret Service, FBI, U.S. Marshalls, Northrop Grumman, Trans Union, etc. gleans best practices and cutting-edge technologies from those institutions.

Students take about three years to complete the program when taking six credits per semester, or a shorter time when taking more than six credits each semester.

3. Saint Louis University
St. Louis University(St. Louis, MO)

Bachelor of Science in Computer Information Systems with a specialization in Information Security & Assurance

Saint Louis University, a private, Jesuit school, offers an array of graduate and undergraduate degree programs. The university is a member institution of the Association of Jesuit Colleges and Universities.

The online bachelor’s degree program in Computer Information Systems (CIS) at Saint Louis University features a specialization in Information Security and Assurance, one of four available specializations. The program curriculum includes information security and assurance, web technologies, data analytics, and healthcare information systems, all integrated with fundamental IT courses.

The program provides the skills required to analyze, design, and implement security and assurance systems. Program graduates complete 120 credits.

Princeton Review 2014 ranks Saint Louis University’s undergraduate programs at #23 among its top colleges. U.S. News & World Report’s “Best Online Bachelor Programs 2014”ranks Saint Louis University at #93.

4. Robert Morris University
Robert Morris University(Pittsburgh, PA)

Bachelor in Cyber Forensics & Information Security

Robert Morris is a private, nonprofit institution of higher learning.

The Cyber Forensics & Information Security online degree program at Robert Morris integrates the disciplines of law, business, organizational behavior, and technology. The program covers models which direct the appropriate allocation of resources, risk management, and the affiliation between the organization and information technology, with a focus on detecting and preventing network security breaches.

The fully online program requires 126 credits, including completing a required set of “Communication Skills Intensive” courses.

Robert Morris University was named the 2014 Academic Seminar University of the Year by the prestigious Washington Center for Internships and Academic Seminars, after thirty-two Robert Morris University students majoring in cyber forensics and information security participated in the center’s National Security Academic Seminar in Washington, D.C. During the two-week program, students and faculty advisers hear and learn from some of top national security experts in the country.

5. Colorado Technical University
Colorado Technical University(Colorado Springs, CO)

Bachelor in Information Technology, Security degree

Colorado Technical University (CTU) is a private, for-profit school.

The online bachelor degree in Information Technology – Security is one of seven specializations offered in CTU’s School of Information Technology.

The Security specialization features a comprehensive experience in network security in which students learn security risk management and garner industry-relevant knowledge of IT design, development, and delivery. Students create a portfolio of relevant projects to demonstrate their skills.

The robust program curriculum has a total of 184 credits and covers a broad range of courses, including vulnerability assessment, disaster recovery, security architecture and compliance, computer forensics, and ethical hacking.

The National Security Agency and the Department of Homeland Security have recognized CTU as a Center of Academic Excellence in Information Assurance Education.


6. Capella University
Capella University(Minneapolis, MN)

Bachelor in Information Assurance and Security degree

Capella University, a for-profit university, offers most of its courses online.

The university designed the online Bachelor degree program in Information Assurance and Security to help its graduates apply the most innovative and effective systems of information security, whether in banking, health care, commerce, telecommunications, or national security.

The specialized program includes coursework covering the Systems Security Certified Practitioner (SSCP®) and Certified Information Systems Security Professional (CISSP®) body-of-knowledge frameworks developed by the International Information Systems Security Certification Consortium (ISC) 2.

The program, with a flexible self-paced study, requires a total of 180 course credits.

The National Security Agency and the Department of Homeland Security have recognized Capella University as a Center of Academic Excellence in Information Assurance Education. Also, the Computing Accreditation Commission of ABET, the well-known accreditor of college and university programs in applied science, computing, engineering, and engineering technology, accredits the school’s online bachelor degree program in IT.



7. Liberty University Online
Liberty University Online(Lynchburg, VA)

Bachelor Business Management Information Systems, Information Assurance degree

Information Assurance is one of eight specialized programs available in the online bachelor degree in Business Management Information Systems at Liberty University Online. Program graduates may seek jobs such as an Internet and Security Analyst, IT Auditor, or Risk Analyst.

The program includes a strong grounding in technology and business. The program also provides the knowledge and skills to identify and counteract information security threats and to manage operations which maintain the integrity of an enterprise’s informational assets.

Liberty University also helps Management Information Systems students prepare for relevant Cisco and JAVA certifications.

The 120-credit program includes courses such as Network Security, Information Security Planning, Cyber Security, and Digital Forensics.



8. American Public University
American Public University(Charles Town, WV)

Bachelor of Science in Information Systems Security degree

American Public University is part of the American Public University System, a for-profit, online learning institution which also includes the American Military University.

American Public University offers 37 online bachelor degree programs and U.S. News & World Report’s “Best Online Bachelor Programs 2014” ranks American Public University System #34, putting it in the top 12% of all online bachelor’s degree programs.

American Pubic University (APU) designed the online Bachelor’s degree in Information Systems Security for students pursuing careers in Information Systems Security (ISS) or Information Assurance (IA).

APU’s Information Systems Security curriculum provides the knowledge and skills to manage information security needs in the global marketplace. In addition, APU students can earn undergraduate certificates: Information and Security Planning, Information Systems Security Essentials, and IT Infrastructure Security.

9. Walden University
Walden University(Minneapolis, MN)

Bachelor in Information Technology degree with a concentration in Security and Forensics

The Security and Forensics concentration is one of seven concentrations offered by Walden University in its online Information Technology bachelor’s degree program. The program shows students how to analyze real-world security and privacy issues. The program also provides techniques, tools, and skills relevant to information security.

The school’s program has received accreditation from ABET. The program also meets the standards established by the National Security Agency’s Committee on National Security Systems National Training.

Enrollees must earn 181 credits. Students can complete the Bachelor in IT degree with a concentration in Security and Forensics in 48 months, or less time if some previous credits are transferrable.

10. Western Governors University
Western Governors University(Salt Lake City, UT)

Bachelor in Information Technology, Security degree

Western Governors University (WGU) is a totally online, non-profit, private institution founded in 1997 by 19 U.S. governors.

The online bachelor’s degree program in Information Technology at Western Governors University (WGU) consists of eight study areas: IT fundamentals, operating systems, software, networks, database, web systems, security, and project management. Students develop a personal portfolio and submit a culminating capstone project.

Students seeking the Security concentration validate their additional competencies through taking and passing industry certifications, including the CISCO Certified Network Associate (CCNA – 640-802) and the CISCO CCNA Security Certification (640-553 IINS). Certification fees are included in the tuition.

Western Governors University is a Microsoft IT Academy program member, which provides WGU students with cutting-edge technology curriculum and courseware by Microsoft.

The bachelor’s program in IT-Security includes 122 credits, with completion time varying depending on any units waived and the overall pace of study.

http://www.bls.gov/oes/current/oes151122.htm
 
Props playahaitian. The field is hot right now. I'm tryna find a second gig. Preferably remote work.

Sent from my Cerebrum
 
ghour said:
Good info, I am currently in the field and studying for my CISSP
Click to expand...

:cool:

can you share your experiences so far...

what was your original background?

were classes been difficult?

How much has it cost you?

Can you recommend any schools or programs?

Any tips or advice for others wanting to pursue this field?

Any books or sites that will help any novices?

And how has employment been?

thanks.
 
Got my CISSP, CCNP, GIAC, CISM and still looking for gainful employment. It's hard in these streets if you don't know people. Been doing this since 2004 and isn't shit happening for a brother without good connections. :confused : :confused:
 
AquaMarine said:
Got my CISSP, CCNP, GIAC, CISM and still looking for gainful employment. It's hard in these streets if you don't know people. Been doing this since 2004 and isn't shit happening for a brother without good connections. :confused : :confused:
Click to expand...

hopefully we can gather the troops and give yo a little help and direction.

good luck fam.
 
playahaitian said:
:cool:

can you share your experiences so far...

what was your original background?

were classes been difficult?

How much has it cost you?

Can you recommend any schools or programs?

Any tips or advice for others wanting to pursue this field?

Any books or sites that will help any novices?

And how has employment been?

thanks.
Click to expand...

My original background was in the helpdesk, actually my first helpdesk job was working for ITT Exelis in Iraq, in Iraq …when I came back to Houston I started applying for different positions and I found a Security Administrator position and was able to land a contractor job, I worked at this company for 2 years got some experience and left and was hired as a Security Analyst for an oil and gas company, I have my degree in Management Information Systems, but I didn’t finish my degree until June of this year and I had already been working in the field for 4 years.

The advice I would give someone trying to pursue this field is to learn as much as possible about not only IT Security but also Auditing and SOX, because a lot of companies include both requirements, also use youtube as your friend there are a lot of IT Security Professionals that post videos online of different training courses for free, like the CISSP, Security+ etc. https://cccure.training/ is a good site with a lot of good information on training, and they have CISSP practice quizzes. Also look for ISSA chapters in your local area, they have a few in Houston that hold monthly luncheons but I know other cities have these as well. So far I have only spent $50 on this book

CISSP Study Guide – 2nd edition by Eric Conrad is a good book, I am currently using this to study.

My company is going to pay for my CISSP exam, and there are a lot of jobs in Houston. I find it very easy to find employment.
 
^^^^

Salute.gif


outstanding!!!

Thanks for sharing with the fam, appreciate if you check in for any further questions in the future.
 
Computer systems security analyst schools
A bachelor's degree is the standard minimum qualification for a career as a computer systems security analyst, according to the BLS. Most aspiring IT security pros earn their degrees in computer science or information systems, although some schools offer specialty degree programs in information security.

Companies in some industries prefer to hire computer systems security analysts who have learned the finer points of corporate operations in a Master of Business Administration (MBA) program. Midcareer IT professionals and other busy adults can prepare for an analyst role by opting to earn that MBA or enroll in fundamental computer systems security analyst training online.

http://www.schools.com/news/computer-systems-security-analyst-salary-career-outlook.html
 
Security Management Degrees and Careers
(found programs from 140 schools)

http://www.criminaljusticeprograms.com/specialty/security-management-degrees/

New York

CUNY John Jay College Criminal Justice (New York, NY)
Programs Offered:
Bachelor of Science - Security Management, Certificate - Public Management, Master of Science - Protection Management

Elmira College (Elmira, NY)
Programs Offered:
Graduate Advanced Certificate - Emergency and Disaster Preparedness Management, Master of Science in Management - Emergency-Disaster Preparedness Management

Hilbert College (Hamburg, NY)
Programs Offered:
Certificate - Security Management (online)

Monroe Community College (Rochester, NY)
Programs Offered:
Associate of Applied Science - Emergency Management, Certificate - Emergency Management

Niagara University (Lewiston, NY)
Programs Offered:
Masters in Criminal Justice Administration

Rochester Institute of Technology (Rochester, NY)
Programs Offered:
Certificate - Disaster and Emergency Management (online), Master of Science - Environmental, Health and Safety Management (online)
Sullivan County Community College (Loch Sheldrake, NY)
Programs Offered:
Associate of Applied Science - Emergency Management

SUNY College at Oswego (Oswego, NY)
Programs Offered:
Bachelor of Science - Insurance and Risk Management

SUNY-Canton (Canton, NY)
Programs Offered:
Bachelor of Technology - Emergency Management (online)

SUNY-Erie Community College (Buffalo, NY)
Programs Offered:
Associate of Applied Science - Emergency Management
SUNY-Ulster County Community College (Stone Ridge, NY)
Programs Offered:
Associate in Applied Science - Emergency Management

Technical Career Institutes (New York, NY)
Programs Offered:
Associate of Applied Science - Security Services and Management
 
New Jersey

Bergen Community College (Paramus, NJ)
Programs Offered:
Certificate of Achievement - Homeland Security and Emergency Management

Camden County College (Blackwood, NJ)
Programs Offered:
Certificate - Emergency Disaster Management

Fairleigh Dickinson University (Teaneck, NJ)
Programs Offered:
Bachelor of Arts - Criminal Justice - Security Operations, Management, & Administration, Certificate - Disaster and Emergency Management, Certification - Security Operations, Management, & Administration, Graduate Certificate - Emergency Management Administration

Kean University (Union, NJ)
Programs Offered:
Certificate - Emergency Management

University of Phoenix (Jersey City, NJ)
Programs Offered:
BS - Organizational Security Management (online)
 
http://www.tripwire.com/state-of-se...t-paying-jobs-in-information-security-part-1/

The Top 10 Highest Paying Jobs in Information Security – Part 1

Given the evolving threat landscape, it is no surprise that the field of information security is booming. A report issued by Burning Glass Technologies reveals that job postings across the industry have grown 74 percent between 2007 and 2013—twice the rate of all other IT jobs.

Not only that, but the field is expected to continue to grow over the next few years, with the Bureau of Labor Statistics forecasting a 37 percent increase in Information Security Analyst positions alone between 2012 and 2022.


All of this growth makes the field of information security an exciting career choice. At the same time, however, the industry’s expansiveness complicates the process of selecting a specific career path.

After researching the field of information security, we’ve gathered the top 10 infosec jobs based on overall pay grade:

#1: CHIEF INFORMATION SECURITY OFFICER (CISO)
A CISO is a C-level management executive whose primary task is to oversee the general operations of an organization’s IT security department and other related staff. The organization’s overall security is the foremost concern of the CISO. As such, persons who aspire to become a CISO must demonstrate a strong background in IT strategy and security architecture.

They must also possess people and communication skills, which they are expected to use when assembling and managing a team of IT security experts, as well as when consulting with other organizational executives and/or federal agencies depending on the nature of their workplace.

CISOs make a median salary of $131,322, according to PayScale’s 2015 estimates. On the lower end, CISOs can expect to make at least $81,000, but those in some of the larger organizations can earn as much as $240,000 a year.

#2: SECURITY ARCHITECT
A Security Architect is a senior-level employee who is responsible for building and maintaining the computer and network security infrastructure for an organization. This position requires that individuals develop a comprehensive picture of an organization’s technology and information needs, which they can then use to develop and test security structures designed to protect those systems.

Security Architects are expected to be knowledgeable in a diverse set of technical skills, including ISO 27001/27002, ITIL and COBIT frameworks, risk assessment procedures, operating systems, and perimeter security controls.

Security Architects make a median salary of $109,794. According to PayScale, those on the lower end of the spectrum make around $84,000, whereas the highest-paid Security Architects earn approximately $160,000.

#3: SECURITY DIRECTOR
A Security Director is a senior-level employee whose task is to oversee the implementation of all IT security measures throughout an organization. As such, Security Directors are responsible for designing, managing and allocating resources to various security programs within an organization’s security department; creating user awareness and security compliance education campaigns; interacting with non-management employees; and offering key assistance to law enforcement in the event of a security incident and subsequent investigation.

Security Directors are expected to possess backgrounds similar to those of CISOs with respect to their knowledge of IT strategy, enterprise architecture, and other security-related concepts. In fact, Security Directors report directly to a CISO and generally assume the position of this executive role in smaller organizations.

Security Directors’ median salary is variable, ranging from $104,775 to $116,245.PayScale’s 2015 estimates locate the salary range for Security Directors between $66,000 and $180,000.

#4: SECURITY MANAGER
A Security Manager is a mid-level employee who is tasked with managing an organization’s IT security policy. Soft skills, such as leadership and strong interpersonal and communication skills, are therefore crucial for successful Security Managers. Individuals who are interested in becoming a Security Manager must be prepared to create and execute security strategies based on the input from the Security Director and/or the CISO.

They must also test and implement new security tools, lead security awareness campaigns, and administer both department budgets and staff schedules. Security Managers are expected to have a thorough background in programming, enterprise architecture, and IT strategy. However, a deep familiarity with these areas of focus is not generally required.

Security Managers make on average a salary of $100,215. They can expect to earn at least $71,433, according to PayScale, but those in larger organizations can make as much as $143,374.

#5: SECURITY ENGINEER
shutterstock_194984291.jpg


A Security Engineer is a mid-level employee who is responsible for building and maintaining the IT security solutions of an organization. In this capacity, Security Engineers configure firewalls, test new security solutions, and investigate intrusion incidents, among other duties, all while reporting to the Security Manager.

Candidates who aspire to become Security Engineers must possess a strong technical background in vulnerability and penetrating testing, virtualization security, application and encryption technologies, and network and web-related protocols. The more tools and concepts with which a Security Engineer is familiar, the more they can help troubleshoot any problems with an organization’s security systems.

Security Engineers make a median salary of $86,996, according to PayScale’s 2015 estimates. Those who enter the field of information security as Security Engineers can expect to make at least $57,000. However, some can earn as much as $128,000 a year.

Information security is an exciting, and rapidly growing field for individuals who are interested in protecting users and their data against a host of evolving threats.

In an effort to map out the industry as a possible career choice, we recently conducted research into the top 10 infosec jobs based on overall pay grade. We now continue with the second part of our two-part series.

#6: INCIDENT RESPONDER
An Incident Responder is one who is responsible for addressing security incidents, threats and vulnerabilities that arise in an organization.

As such, individuals who aspire to become Incident Responders must be prepared to actively monitor organization networks for intrusions, perform security audits and penetration testing, conduct malware analysis and reverse engineering, and design measures that not only minimize the damage of a given incident but that also prevent a similar intrusion from ever happening again.

Incident Responders are typically members of a Computer Security Incident Response Team (CSIRT) and so report to a CSIRT Manager. They should be familiar with a wide range of skills, including web-based application security, eDiscovery tools and forensic software.

Incident Responders make a median salary between $70,000 and $90,000. Overall, they can expect to earn between $50,000 and $150,000.

#7: SECURITY CONSULTANT
A Security Consultant is an outside expert who helps an organization implement the best solutions according to their security needs.

Those who wish to become Security Consultants must be knowledgeable in a wide range of security standards, security systems and authentication protocols. In order to succeed, they must also be willing to develop an in-depth picture of the organization for which they are working, which includes interviewing management and other executives, as well as familiarizing themselves with the organization’s corporate policies.

Security Consultants can then use this knowledge to implement a set of security tools they see fit depending on an organization’s needs. They are also commonly responsible for testing these systems and updating them when needed.

Security Consultants make a median salary of $81,220, according to PayScale’s 2015 estimates. They can expect to bring home a total pay of at least $46,000, but they can earn as much as $147,000 a year.

#8: COMPUTER FORENSICS EXPERT
shutterstock_163247666.jpg
A Computer Forensics Expert is responsible for analyzing evidence gathered off of computers, networks and other data storage devices in an effort to investigate incidents of computer crime.

These individuals commonly work closely with law enforcement agencies to compile evidence for legal cases, draft technical reports or offer expert testimony in trial, and train law enforcement in computer evidence tactics. A variety of organizations, including law enforcement, legal firms and all levels of government, are the most common employers of Computer Forensics Experts.

Those who wish to pursue this particular career path must be familiar with several programming languages and operating systems, as well as with cryptography principles, eDiscovery tools and forensics software.

Computer Forensics Experts make a median salary of $77,270. They can expect to earn at least $56,000, according to PayScale. However, given the possibility of commissions, tips and overtime, they can make as much as $119,000.

#9: MALWARE ANALYST
A Malware Analyst is responsible for helping an organization understand the viruses, worms, bots, Trojans and other malicious software that threaten its network on a daily basis.

In this capacity, Malware Analysts commonly work with Computer Forensics Experts and Incident Responders in the event of an intrusion and/or suspicious computer behavior to help identify malicious programs that may have infiltrated an organization’s computer systems. This involves conducting static and dynamic analysis of the suspicious code in order to establish signatures of the malware’s presence, as well as developing tools that can help protect the organization’s networks against future intrusions.

Malware Analysts make a median salary of $75,000. They can expect to earn at least $48,000, but some can take home as much as $100,000 a year.

#10: SECURITY SPECIALIST
A Security Specialist is an entry- to mid-level employee who is responsible for completing a variety of duties designed to strengthen the security of an organization.

Oftentimes, Security Specialists are required to analyze the security requirements of an organization’s systems, install and configure security solutions on corporate networks, perform vulnerability testing and help train fellow employees in security awareness. Individuals who are interested in becoming Security Specialists should have knowledge in ethical hacking, computer networking, programming and Security Information and Event Management (SIEM).

Security Specialists make a median salary of $73,853. According to PayScale’s most recent estimates, these individuals can expect to make at least $43,000 but can hope to take home as much as $113,000.

 

Make a Contribution to Remove NSFW Ads
You must log in or register to reply here.
Back
Top