OVERVIEW
In the first 6 months of 2009, for those information security professionals changing jobs, permanent salaries have increased by only 4%, the same as the final six months in 2008. However, there was an actual decline in technical security salaries. This has been caused by increased competition for roles and security practitioners willing to take reduced salaries to get back into employment. CLAS consultants and penetration testers have bucked this trend. They remain in high demand and good candidates are in short supply.
Temporary rates have been dropping, due to a fall in demand and the increase in availability of contractors. The market has been swollen by candidates whose contracts have come to an end and permanent staff who have been made redundant and are making themselves available for both permanent and contract work.
SALARY SURVEY
Barclay Simpson analyses the salary data that accumulates from the placements we make in the UK. This provides a useful guide to salaries and salary trends in information security.
This survey consists of 20 profiles of typical security specialists, for whom we have provided an approximate salary range they could realistically expect to achieve. The profiles are for good rather than exceptional individuals and take no account of other benefits that can accrue to information security specialists such as company cars, nor do they take account of non-contractual bonus and profit sharing arrangements.
Permanent Information Security positions
|
London |
Rest of UK |
Security Analyst
Experience including monitoring and awareness for information security. Likely to be working for a retail bank or other financial institution. |
£36,000 - £40,000 |
£30,000 - £37,000 |
Security Sales Account Manager
Working for a boutique security consultancy or small-medium system integrator. Specialising in information security solution sales, selling direct to end-user clients. |
£45,000 - £55,000 basic,
OTE £90,000 - £110,000 |
£42,000 - £52,000 basic,
OTE £85,000 - £105,000 |
Penetration Tester
Working for a boutique security consultancy, this skilled penetration tester will have good client-facing skills and be able to undertake application penetration testing, code level reviews and reverse engineering. |
£53,000 - £62,000 |
£51,000 - £58,000 |
Identity Management Consultant
Solid skills in identity and access management design and architecture. Background of working in consultancy, with good client-facing skills and bid work experience. |
£57,000 - £65,000 |
£53,000 - £62,000 |
Information Risk Relationship Manager
A background in risk assessment. Looks after the relationship between an information security supplier, internal or outsourced, and IT & business contacts. No reports. |
£58,000 - £65,000 |
£47,000 - £52,000 |
CLAS Consultant
At a senior level within the security practice of a large consultancy or SI. Skills in technical and non-technical security areas such as security architecture, as well as security policy formulation and review, and risk assessment. Also undertakes business development activities. |
£60,000 - £68,000 |
£54,000 - £62,000 |
Security Architect
Working for a consultancy, undertaking security design and architecture for large-scale client projects. Senior person also involved in bid / proposal work and mentoring team members. |
£64,000 - £73,000 |
£57,000 - £66,000 |
Operational Security Manager
Managing 5-6 personnel within a large department and answering directly to the head of department. |
£79,000 - £84,000 |
£63,000 - £70,000 |
Big 4 Senior Manager
Individual with business development experience and a policy focus to their information security experience. |
£80,000 - £95,000 |
£68,000 - £78,000 |
Head of Information Security
Managing a team of 20 security professionals in a financial services company, assisted by 2 more junior managers. |
£110,000 - £130,000 |
£80,000 - £95,000 |
Permanent Business Continuity positions
|
London |
Rest of UK |
Business Continuity Analyst
Working for a small financial services company to support the business continuity manager who is the only BC employee. |
£35,000 - £45,000 |
£31,000 - £37,000 |
Disaster Recovery Test Manager
Working in the investment banking field with excellent disaster recovery knowledge and experience. A career history working for large complex organisations in lead positions for DR testing. |
£53,000 - £63,000 |
£43,000 - £52,000 |
Business Continuity Consultant
New role in a small financial services company. Stand alone role, good BCM and PM skills needed. |
£54,000 - £61,000 |
£46,000 - £53,000 |
UK Crisis and Business Continuity Manager
Significant crisis and business continuity management experience gained in large scale financial services sector positions. Business continuity team management responsibilities. |
£59,000 - £86,000 |
£56,000 - £67,000 |
Contract Information Security positions
|
London |
Rest of UK |
IDS Analyst
Working within a government department providing day-to-day security operation of the system, monitoring the security mechanisms for security events and incidents. Analysing and responding to real-time security events / incidents and assisting in investigations. |
£300 - £350 per day |
£250 - £300 per day |
ISO 27001 Consultant
An ISO 27001 Lead Auditor working for a consultancy. Role would include advice on ISO 27001 implementation, gap analysis, risk assessment, security policy review and selection of controls to align with the standard. |
£350 - £450 per day |
£300 - £400 per day |
Identity Management Consultant
A skilled IdM consultant with experience of various identity management suites from the leading providers. Will have had exposure to the identity management process from beginning to end. Working in a commercial environment they need good client-facing skills. |
£550 - £650 per day |
£450 - £550 per day |
CLAS Consultant
Experienced CLAS Consultant responsible for security policy development during government programmes such as Risk Management Accreditation Document Sets (RMADS) and associated documentation. |
£600 - £700 per day |
£500 - £600 per day |
Information Risk Analyst
A risk analyst carrying out risk assessments in the financial services sector. Good communication, report writing and analytical skills. |
£350 - £450 Per day |
£300 - £400 Per day |
Contract Business Continuity positions
|
London |
Rest of UK |
Business Continuity Analyst
Working in the financial services industry with a good grounding in business continuity, articulate, focused with good team working skills. |
£225 - £275 per day |
£200 - £265 per day | |
|
|
