Cyber security chiefs set for a salary rise, study reveals

salary_riseA study by recruitment firm Robert Half has revealed that cyber security senior executives in the UK and US are expected to see a salary rise in 2015 – a trend that reflects the growing importance of cyber security for organisations worldwide.

According to the research, chief information security officers (CSO) at British technology firms are expected to earn between £97,500 ($156,478) and £145,250 in 2015, up 5.7% from 2014. This is more than the 2.6% average increase across all professional roles in finance and accounting, financial services, information technology and administration that the recruitment firm surveyed.

In the US, CSOs will see a 7.1% salary rise to a range of $134,250 to $204,750 next year.

The value of the CSO role is growing

High-profile data breaches such as those suffered by JPMorgan, Home Depot and Target have hit organisations hard financially. This, according to experts, has led to a change of perceptions and the CSO role is now taken more seriously.

Sian John, senior security strategist for EMEA at Symantec, was quoted by CNBC saying:

“The pay rise reflects the fact that companies are taking cyber risks seriously and it is becoming important for businesses given some of the things we’ve seen in terms of the big threats and the impact that has had on an organization.”

Getting ready for the next step in your career

Given the growing importance of the cyber security role for organisations, there’s no doubt that professionals who are able to combine technical security expertise with process (management system) competence, regulatory compliance awareness and an understanding of business requirements will be in demand.

Today’s cyber security professionals would be wise to consider broadening their skills and qualifications across a number of areas. To succeed, there are a few globally recognised qualifications that should be considered:

CISSP (Certified Information Systems Security Professional) is considered by many to be one of the must-have certifications for an information security professional. Many of the employment positions for information security professionals list CISSP as a required certification.

The CISA (Certified Information Systems Auditor) and CISM (Certified Information Security Manager) are the pre-eminent information security qualifications worldwide.

Last, but not least, management system expertise is increasingly sought after, and qualifications such as CIS LI (ISO27001 Certified ISMS Lead Implementer) and CIS LA (ISO27001 Certified ISMS Lead Auditor) awarded by the International Board for IT Governance Qualifications (IBITGQ) are a must-have for certain roles.

For further information on training courses (including live online courses), exams and qualifications, see the IT Governance training catalogue.



  1. IAN WYLIE 11th November 2014
    • Desislava Aleksandrova 11th November 2014