Pay Rates For Security Professionals

The Tech recruitment experts at North Starr have compared 2018 pay rates across the UK IT Security marketplace across different categories and the results might surprise you.  

The review  looks at salary levels  paid in the Information Security marketplace in 2017 compared to 2018 and average technology salary in the UK is  presently over £80k.

The results are summarised in the table below: 

ROLELOWHIGH% VARIATION H2 2017
Technical   
SOC Engineer£35,000£50,000+1.3%
Senior Technical Security Specialist£55,000£70,000+2.3%
Application Security Specialist£85,000£110,000+3.4%
Penetration Tester£70,000£90,000+1.8%
Check Team Leader£80,000£110,000+2.6%
Security Architect£90,000£120,000+2.8%
Governance & Compliance   
Security Policy Specialists£55,000£75,000+1.3%
Governance & Compliance Specialists£60,000£80,000+0.6%
Leadership   
Information Security Manager£60,000£80,000+0.8%
Head of Information Security£70,000£90,000+1.4%
Head of IT/Operational Security£70,000£90,000-0.8%
Security Director£80,000£110,000+0.5%
CISO**£100,000£180,000+1.2%

The variances differ over the different jobs and most have had small to medium salary percentage increases year on year. And of course many jobs vary because of the size of the business, maturity of the security function and the size of the team being managed or working with.

Technical roles like SOC (Systems on a Chip) Engineers with average annual salaries between £35k and £50k have risen around 1.3% and because the average is around £45k these people are more likely to move jobs for more money.

Whereas Application Security Specialists have salaries between £85k and £110k and have seen rises of 3.4% and are more likely to remain in their current employment.

Leadership jobs like the Head of Information Security are on average between £70k and £90k and have gone up by about 1.4%. And Chief Information Security Officers who on average get paid between £100k and £180k have had increases of around 1.2%.  

There is still a growing skills gap in the UK with a general lack of basic digital and IT skills in most companies.

Please contact andrew.nitek@thenorthstarr.com for more information.

News By CSI:        Image: Nick Youngson

You Might Also Read: 

How To Get Into Cyber Security: Tips, Strategy And Skills:

 

 

 

« DARPA Wants To Emulate Insect Brains
Blockchain Transforms The Internet of Things »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Perimeter 81 / How to Select the Right ZTNA Solution

Perimeter 81 / How to Select the Right ZTNA Solution

Gartner insights into How to Select the Right ZTNA offering. Download this FREE report for a limited time only.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

SentryBay

SentryBay

SentryBay is a real-time data security company developing technology for PC, mobile, the cloud and IoT.

SQNetworks

SQNetworks

SQNetworks provides a full range of cybersecurity consultancy, services and solutions.

Swiss Cyber Storm

Swiss Cyber Storm

Swiss Cyber Storm is a non profit organization hosting the international Swiss Cyber Storm Conference and running the Swiss part of the European Cyber Security Challenges.

EMnify

EMnify

EMnify is a Software-as-a-Service (SaaS) company, revolutionizing cellular Internet of Things (IoT).

Abnormal Security

Abnormal Security

Abnormal is an API-based email security platform providing protection against the entire spectrum of targeted email attacks.

Beryllium InfoSec Collaborative

Beryllium InfoSec Collaborative

Beryllium InfoSec Collaborative is an information security and cyber security company with 40-plus years of experience across industry & government.

Sky Republic

Sky Republic

Sky Republic offers a Smart Contract Platform to integrate and synchronize business networks beyond EDI and API.

IPification

IPification

IPification is a highly secure, credential-less, network-based authentication solution for frictionless user experience on mobile and IoT devices.

CyberCX

CyberCX

CyberCX provides services from strategic consulting, security testing and training to world-class managed services and engineering solutions.

VariQ

VariQ

VariQ is a premier provider of Cybersecurity, Software Development and Cloud services to federal, state, and local government.

VLATACOM Institute

VLATACOM Institute

Vlatacom Institute is privately owned accredited research and development institute, system integrator and turn-key solution provider. Areas of expertise include encryption and authentication.

Tarlogic

Tarlogic

Tarlogic works to protect and defend your security with the highest quality technical team with next generation solutions to achieve the best protection.

MS Tech Solutions

MS Tech Solutions

MS Tech Solutions is a Jamaican-based, multinational consulting company that specializes in the architecture, implementation and management of key network and Information technologies.

Entro Security

Entro Security

Entro is the first holistic secrets security platform that detects, safeguards, and enriches with context your secrets across code, vaults, chats, and platforms.

Filigran

Filigran

Filigran provides threat intelligence, adversary simulation and crisis response open solutions to thousands of cybersecurity and crisis management teams across the world.

Beround

Beround

Beround is an IT consultancy firm specialized in software testing.