Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

6/11/2007
03:24 PM
Sharon Gaudin
Sharon Gaudin
Commentary
50%
50%

How Happy Are You With Your Salary?

I got an interesting piece of information last week. Alan Paller of the SANS Institute tells me people who see their salaries increasing each year are more satisfied with their salaries than those who are paid well but who don't see it getting any better.

I got an interesting piece of information last week. Alan Paller of the SANS Institute tells me people who see their salaries increasing each year are more satisfied with their salaries than those who are paid well but who don't see it getting any better.I was a little surprised when he told me that. I personally would like a holy-cow-that's-big kind of salary. Well, honestly now, I'd like a really big salary that gets still bigger every year. Who wouldn't?

But after I wrote a story about the SANS Institute's eight-year-long salary survey last week, I had dinner with some friends. And I asked them what would make them happier. Big salary? Yearly raises? They were quick to pick annual raises. They said it would make them feel like the company valued them. I can see that. Everyone wants to feel valued, no matter what job you're doing.

Paller also talked about the "leveling" that is going on with information security salaries across the country. For a long time, if you wanted to make big money in IT, you lived in Silicon Valley. Of course, it took a huge salary to be able to afford to live there, but that's where the big money was.

Now it looks like the rest of the country is getting to share the wealth. The SANS Institute's survey showed that the Midwest, the Northwest, and the Southeast all are on the salary fast track, bringing in at least 7.5% yearly increases. The Mid-Atlantic region, which includes Pennsylvania, Maryland, Virginia, and Washington, D.C., has the biggest paychecks for security professionals, coming in at a mean salary of $95,615 for 2006. The Northeast came in second with $92,452, while the West, which includes Silicon Valley, rang in with $86,368.

Looks like security professionals have a lot more options about where they can live and still make a very good living.

The SANS Institute is working on a new survey, though. This one will focus on the past year, as opposed to the last study which focused on an eight-year span.

Paller told me that with this survey, he's expecting to see a shift in emphasis. More technical employees will start to get bigger raises. For a while now, FISMA has forced companies to focus on reporting on their security efforts, instead of putting all their muscle behind their actual security efforts. The on-going string of data losses, security breaches, and a growing cyberthreat from China may have a lot of executives rethinking their security strategy. And that could be good news for the men and women in the security trenches.

They're looking for people to participate in the survey, so add your two cents by going to this Web site.

And I'm interested in your two cents, too. Tell me, how happy are you with your salary? Is it picking up or woefully stagnant? What would make you happier on the job?

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/27/2020
Modern Day Insider Threat: Network Bugs That Are Stealing Your Data
David Pearson, Principal Threat Researcher,  10/21/2020
Are You One COVID-19 Test Away From a Cybersecurity Disaster?
Alan Brill, Senior Managing Director, Cyber Risk Practice, Kroll,  10/21/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
Special Report: Computing's New Normal
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-27956
PUBLISHED: 2020-10-28
An Arbitrary File Upload in the Upload Image component in SourceCodester Car Rental Management System 1.0 allows the user to conduct remote code execution via admin/index.php?page=manage_car because .php files can be uploaded to admin/assets/uploads/ (under the web root).
CVE-2020-27957
PUBLISHED: 2020-10-28
The RandomGameUnit extension for MediaWiki through 1.35 was not properly escaping various title-related data. When certain varieties of games were created within MediaWiki, their names or titles could be manipulated to generate stored XSS within the RandomGameUnit extension.
CVE-2020-16140
PUBLISHED: 2020-10-27
The search functionality of the Greenmart theme 2.4.2 for WordPress is vulnerable to XSS.
CVE-2020-9982
PUBLISHED: 2020-10-27
This issue was addressed with improved checks to prevent unauthorized actions. This issue is fixed in Apple Music 3.4.0 for Android. A malicious application may be able to leak a user's credentials.
CVE-2020-3855
PUBLISHED: 2020-10-27
An access issue was addressed with improved access restrictions. This issue is fixed in macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. A malicious application may be able to overwrite arbitrary files.