Salary for Mid-level / Intermediate Information Security Engineer in United States during 2021

Salary details

The average mid-level / intermediate Information Security Engineer salary lies between USD 119,000 and USD 120,000 in the United States. It represents the overall compensation/gross salary amount for the working year (before deductions like social security, taxes and other contributions), not including equity/stock options or similar benefits.

Region represents the primary country of residence of an employee during the year (or residence for tax purposes). All data shown are full-time equivalent (FTE) salaries. Part-time salary information has been extrapolated to its FTE value.

Salary Composition

The salary for a Mid-level Information Security Engineer in the United States typically consists of a base salary, performance bonuses, and additional remuneration such as stock options or profit-sharing. The base salary is often the largest component, making up about 70-80% of the total compensation package. Bonuses can vary significantly depending on the company and industry, ranging from 10-20% of the base salary. Additional remuneration, such as stock options, is more common in tech companies and startups, potentially adding another 5-10% to the total compensation. Regional differences also play a role; for instance, salaries in tech hubs like San Francisco or New York City tend to be higher due to the cost of living and demand for skilled professionals.

Increasing Salary

To increase your salary from a Mid-level Information Security Engineer position, consider the following strategies:

• Specialization: Develop expertise in a niche area of cybersecurity, such as cloud security, penetration testing, or threat intelligence, which can make you more valuable to employers.
• Advanced Certifications: Obtain advanced certifications like CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) to demonstrate your expertise and commitment to the field.
• Leadership Roles: Seek opportunities to lead projects or teams, which can position you for roles with greater responsibility and higher pay.
• Networking: Engage with professional organizations and attend industry conferences to expand your network and learn about higher-paying opportunities.

Educational Requirements

Most mid-level information security engineer positions require at least a bachelor's degree in computer science, information technology, or a related field. Some employers may prefer candidates with a master's degree, especially for roles that involve more complex security challenges or leadership responsibilities. Continuous education through workshops, seminars, and online courses is also beneficial to stay updated with the latest security trends and technologies.

Helpful Certifications

Certifications are highly valued in the cybersecurity field and can significantly enhance your qualifications. Some of the most beneficial certifications for a Mid-level Information Security Engineer include:

• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• CEH (Certified Ethical Hacker)
• CompTIA Security+
• GIAC Security Essentials (GSEC)

These certifications validate your skills and knowledge, making you a more competitive candidate for higher-paying positions.

Required Experience

Typically, a Mid-level Information Security Engineer is expected to have 3-5 years of experience in the field. This experience should include hands-on work with security technologies, incident response, and risk assessment. Experience in specific industries, such as finance or healthcare, can also be advantageous due to the unique security challenges they present.

Related salaries

Want to contribute?