The State of the Security Workforce 2011
As of 2010, Frost & Sullivan estimates that there are 2.28 million information security professionals worldwide. This figure is expected to increase to nearly 4.2 million by 2015.
No Title
Three out of five security professionals said they got a raise in 2010.
No Title
The survey found that the average worldwide salary for (ISC)2 members was $98,600 and for non-members was $78,500 when both had about five years of experience.
No Title
The survey showed that 34 percent of organizations plan to increase spending on personnel in 2011 and 37 percent plan to increase hardware and software expenditures.
No Title
The budgets aren’t increasing as steadily for services. Only 25 percent of organizations have more budget for professional services and 28 percent for outsourced or managed services in 2011.
No Title
About a third of organizations plan to increase spending for training and certifications this year.
No Title
60 percent of security professionals plan to add new certifications to their resumes in the next year.
No Title
89 percent of professionals view certifications as very important to somewhat important to employers.
No Title
Application vulnerabilities represent the number one threat to organizations.
No Title
41 percent of respondents reported that organizations need to better train infosec staff to handle application security.
No Title
More than 20 percent of information security professionals reported involvement in software development.
No Title
Mobile devices were the second highest security concern for the organization, right behind application vulnerabilities.
No Title
Slightly under a third of respondents said they have no policies set to protect the organization from social media threats.
No Title
More than 50 percent of information security professionals reported having private clouds in place, and more than 40 percent of respondents reported using software as a service.
No Title
At the same time, more than 70 percent of professionals reported the need for new skills to properly secure cloud-based technologies.
No Title
85 percent of respondents reported they were worried about exposure of confidential or sensitive information to unauthorized systems or personnel due to cloud computing.