Analytics

8/16/2016
12:40 PM
Sean Martin
Sean Martin
Slideshows
Connect Directly
LinkedIn
RSS
E-Mail
50%
50%

15 US Cities Where Cybersecurity Professionals Earn Big Bucks

Demand continues to rise for cybersecurity professionals throughout the US, and the salaries seem to follow suit. New data shows best cities for salary and cost of living.
Previous
1 of 16
Next

Image Source: Unsplash

Image Source: Unsplash

Like a broken record, we continue to hear that the demand for cybersecurity professionals continues to rise, and it seems to be getting harder to fill these roles. Supporting this position is a recent survey from Black Hat USA that found “nearly 75% of security professionals say they do not have enough staff to defend their organizations against current threats.” The gap is expected to widen in the coming years, reaching 53% by 2018, according to a 2015 analysis from the Bureau of Labor Statistics.

So:

  • Where are these jobs?
  • When taking the cost of living into account, which cities offer the best salaries?
  • As a cybersecurity professional, where can your all-important skills get the most buck for your bang?

As one of the world's largest job search sites, Austin-based Indeed helped answer some of these questions by mining cybersecurity salary data to uncover the top-paying cities in the US. You might be surprised to find a city or two missing from the list. You might be equally surprised to see which city tops the list.

In addition to the cost-of-living-adjusted salary results provided by Indeed, you’ll also find some supporting facts and figures to help round out the viability of each city as a potential market for job seekers. These include a sampling of job numbers and the top five employers offering information security roles in each of the top 15 cities.

An interesting footnote: The five cities that round out the bottom of Indeed’s salary study may not pay as high as the top 10 cities on their list, but four of these five do score a coveted spot on Indeed’s “Top 10 US Cities for Job Satisfaction” list.

Note: The job search results by Indeed are as of August 14, 2016 and were based on the keyphrase <information security> while searching within 25 miles of the selected city.

 

 

Sean Martin is an information security veteran of nearly 25 years and a four-term CISSP with articles published globally covering security management, cloud computing, enterprise mobility, governance, risk, and compliance—with a focus on specialized industries such as ... View Full Bio

Previous
1 of 16
Next
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
BrooklynNellie2
100%
0%
BrooklynNellie2,
User Rank: Strategist
8/17/2016 | 9:13:28 AM
Michael Page
Michael Page is a headhunter, so any infosec openings they have a likely not for themselves. They're not "hiring" anyone. I'm sure this applies to a few other companies that you list.
Microsoft Word Vuln Went Unnoticed for 17 Years: Report
Kelly Sheridan, Associate Editor, Dark Reading,  11/14/2017
Companies Blindly Believe They've Locked Down Users' Mobile Use
Dawn Kawamoto, Associate Editor, Dark Reading,  11/14/2017
121 Pieces of Malware Flagged on NSA Employee's Home Computer
Kelly Jackson Higgins, Executive Editor at Dark Reading,  11/16/2017
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Managing Cyber-Risk
An online breach could have a huge impact on your organization. Here are some strategies for measuring and managing that risk.
Flash Poll
[Strategic Security Report] Assessing Cybersecurity Risk
[Strategic Security Report] Assessing Cybersecurity Risk
As cyber attackers become more sophisticated and enterprise defenses become more complex, many enterprises are faced with a complicated question: what is the risk of an IT security breach? This report delivers insight on how today's enterprises evaluate the risks they face. This report also offers a look at security professionals' concerns about a wide variety of threats, including cloud security, mobile security, and the Internet of Things.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.