The SANS Institute conducted a survey to find out which are the most
interesting jobs in infosec. The complete results will be published
later this year, but gcn.com managed to get a sneak peek.
The participants in the survey were split in 2 categories: government
employees and non-government (commercial) people.
First, the opinion of government security employees:
1. Information security crime investigator/forensics expert
2. System, network and/or Web penetration tester
3. Forensics analyst
4 (tie). Incident response, incident handler
4 (tie). Security architect
6. Vulnerability researcher
7 (tie). Network security engineer
7 (tie).Security analyst
7 (tie).Sworn law enforcement officer specializing in information security crime
10 (tie). CISO/ISO or director of security
10 (tie). Application penetration tester
The opinions of non-government employees were slightly different, yet still quite similar to those of government people.
1 (tie). System, Network, and/or Web penetration tester
1 (tie): Information security crime investigator/forensics expert
3. Forensics analyst
4. Vulnerability researcher
5. Application penetration tester
6. Security architect
7. CISO/ISO or director of security
8 (tie). Incident response, incident handler
8 (tie). Sworn law enforcement officer specializing in information security crime
10. Security evangelist
Even thought he difference between government and non-government (with regards to infosec jobs) is small, the slight differences still make me wonder if I'm on the right side of the line...
First, the opinion of government security employees:
1. Information security crime investigator/forensics expert
2. System, network and/or Web penetration tester
3. Forensics analyst
4 (tie). Incident response, incident handler
4 (tie). Security architect
6. Vulnerability researcher
7 (tie). Network security engineer
7 (tie).Security analyst
7 (tie).Sworn law enforcement officer specializing in information security crime
10 (tie). CISO/ISO or director of security
10 (tie). Application penetration tester
The opinions of non-government employees were slightly different, yet still quite similar to those of government people.
1 (tie). System, Network, and/or Web penetration tester
1 (tie): Information security crime investigator/forensics expert
3. Forensics analyst
4. Vulnerability researcher
5. Application penetration tester
6. Security architect
7. CISO/ISO or director of security
8 (tie). Incident response, incident handler
8 (tie). Sworn law enforcement officer specializing in information security crime
10. Security evangelist
Even thought he difference between government and non-government (with regards to infosec jobs) is small, the slight differences still make me wonder if I'm on the right side of the line...
