Share

CISO salaries balloon, likely spurred by demand – Cybersecurity Dive

Tenure matters, but not as you might suspect. Median total cash compensation dropped among CISOs in their roles five or more years, Heidrick & Struggles found.
More attention to enterprise cybersecurity has raised the visibility of cybersecurity chiefs. Cybersecurity fallouts are heavily documented in financial documents and regulators are raising the bar for security standards and disclosure. 
This puts CISOs in the hot seat, spurring the advent of a new breed of executive, one who can master the security requirements while speaking the language of the board to show stakeholders how and why they should care about security. 
As Heidrick & Struggles points out, “there is still a very wide disparity between the ‘average CISO’ and the outliers.” This, of course, is influenced by the revenue of the CISO’s company. Greater revenue largely correlates to a greater total compensation. 
That said, as the equity markets cool, it could affect compensation for top CISOs, according to the report.
There is a ceiling to CISO compensation. Total cash compensation growth is highest for those CISOs in their role for less than a year — up 40% year over year — but for those in their role five or more years, total cash compensation dropped 3%
With the market eager for technology talent, even at the highest levels, tenured CISOs will see more compensation opportunities outside of their organization. If a CISO is promoted into their role and has a longer tenure, they are more than likely underpaid, the report said.
Get the free daily newsletter read by industry experts
A cyberattack with supply chain and legal consequences has stakeholders considering contract minutiae.
Security executives from Zoom, NS1 and Oomnitza shared their security priorities for the rest of 2022, with a special emphasis on mastering the basics. 
Subscribe to Cybersecurity Dive for top news, trends & analysis
Get the free daily newsletter read by industry experts
Want to share a company announcement with your peers?
Share your announcement
A cyberattack with supply chain and legal consequences has stakeholders considering contract minutiae.
Security executives from Zoom, NS1 and Oomnitza shared their security priorities for the rest of 2022, with a special emphasis on mastering the basics. 
The free newsletter covering the top industry headlines

source