Simplistic view, sure, but we're starting at the root here. Of course there's other factors that play a part when deciding to stay, leap or move.
Location location location!
"How much career growth in the organization would this positive provide me?"
Who says you'll like your co-workers, the company is tanking or your spouse will be happy?
All things considered, most people aren't going to work for $1/hr even if every single other attribute is overwhelmingly good.
One of the many sectors in the Information Security industry, Product Security, you're probably working for a software company and they want to minimize shipping bad quality design and code to their customers.
Why? Because customers pay the bills.
In Product Security, you of course are going to be working with developers in one scenario or another. Their job is to ship software that the customers want.
Why? See above.
Responsibilities of PS engineer are to make sure a subset of that bad quality in software, the security-relevant stuff, doesn't ship and create holes for attackers to exploit and gain access to customer's systems.
The customer's expectations are usually that of "nobody outside of who we allow to access this resource can access it". That then must be matched by the software company in order to maintain a healthy relationship.
Why? See above.
Responsibilities of a developer, or software engineer, are that of designing to spec and implementing a working product. Quality varies from company to company and is often only if the customer notices it. If they do notice it, a rush to fix it occurs.
Why? See above.
But on average, PS personnel are paid significantly more than developers. They both either work close or own the quality of the code. They both either have formal engineering backgrounds or are strmeongly suited otherwise. They likely even work for the same organization within the company and snap to similar performance levels.
Let's look at a couple other key similarities:
If the security or reliability aspects of the software's quality is down, customer loss is imminent. Both roles are responsible and affected.
If the same aspects are up, customer contracts are probably going to remain stable or even increase. Both roles are responsible and affected.
So why do PSs typically make more euros than SEs? Are they just better negotiators, master interviewees or perhaps metahumans?
"There's more of me than they are of you"
If there's a 100:1 ratio, after considering all the other company-specific factors, it makes sense.
Are you special if you work in PS and make more than the SEs down the way?
Not necessarily-- you've just found a niche in the industry like many others.
And as long as customers are paying the bills and you have skills (no pun intended), you'll continue to earn a nice living. But companies also like money-saving techniques such as automation. How long is it before we automate ourselves out of our own jobs? Questions for another time.
Choo-choo: all aboard The Singularity express.
