The SANS Institute, which administers the security-focused GIAC certification program, has concluded its first-ever career development survey. The study involved about 4,250 respondents—2,647 of which held one or more IT credentials—and had a few interesting findings pertaining to security certification, said Allan Paller, director of research at the SANS Institute.
The report covered subjects such as job tasks, industries and regions of employment, and professional education and certification. Of the participants, 1170 held (ISC)2 certifications (largely CISSP), 1135 held vendor-specific credentials like MCSE, CCSA and others, 901 had GIAC certs, 460 held ISACA certifications (CISA,CISM), and 442 had CompTIA credentials (A+, Network+, Security+, etc.). “Just under half—45 percent—were the people with hands-on sys admin, network admin or security responsibilities,” Paller said. “Another 19 percent were the people who had that and a little policy responsibility.”
One of the findings that impressed Paller was the copious compensation reported by many of those who held security certifications. “Within that group, except for three sub-sets, the salaries for the people with had gotten above $80,000 at the median, which is a big number,” he said. “The only two groups that fell significantly below that were the people with no certification at all, and they fell down to $70,500, and the people with CompTIA certifications, who were at $66,000. A lot of the guys who had CompTIA were the hardware guys.”
He was also surprised by the number of people who said they held multiple high-level security certifications. “It’s not multiple…
Please log in or subscribe to read this article