Skip to main content
close search
site logo

CISO salaries are up, but growth is slowing

Security budget growth scaled back this year amidst economic uncertainty, inflation and increased borrowing costs, which impacted funding for cyber talent, IANS found.

Published Oct. 10, 2023
Matt Kapko's headshot
Senior Reporter
Man standing with hands on table at table at a meeting with other people in professional setting.
Ridofranz via Getty Images

It pays to be a CISO. More than half of these cybersecurity leaders earn up to $400,000, according to survey results released Tuesday by IANS and Artico Search. The annual compensation for the top 10% surpasses $1 million per year, the 2023 CISO Compensation Benchmark Study found.

CISO salary increases are slowing down, with average total compensation for CISOs up 11% this year, but down from a 14% average increase in 2022. The share of CISOs earning compensation increases this year was also down; just 80% of CISO saw base salary increases, down from 90% last year.

The lower pace of compensation increases for CISOs is purely an economic reality, according to Nick Kakolowski, research director at IANS.

Security budget growth scaled back this year amidst economic uncertainty, inflation and increased borrowing costs, which impacted funding for cyber talent, the report said.

In the U.S. the average total compensation for CISOs reached $550,000 this year, according to the survey of 609 security professionals in the U.S. and Canada. Nearly two-thirds of the survey respondents work for organizations in the finance, healthcare and technology sectors and nearly half work at companies with less than $1 billion in annual revenue.

With cyber threat recognition on the rise and budgets squeezed, organizations are largely asking for more from CISOs, Kakolowski said via email.

The CISO role is going through a transition similar to what CFOs went through with compliance to the Sarbanes-Oxley Act and what CIOs encountered during digital transformation efforts, Kakolowski said.

This might elevate CISOs’ roles within their organizations, but rarely to the highest corporate level. Only 1 in 5 CISOs are considered a C-level executive at their organization, according to the report.

“Cybersecurity is a critical part of doing business and, as more organizations recognize that, CISOs are being elevated — in terms of compensation and influence — to a similar level as other specialists in the C-suite,” Kakolowski said.

Despite these changes, CISOs remain consistent in their hunt for new career opportunities. Those considering a job change in the next 12 months jumped from two-thirds of CISOs surveyed in 2022 to three-quarters of CISOs surveyed this year.

Filed Under: Leadership & Careers

Editors' picks

Company Announcements

View all | Post a press release
Fathom5’s ARIA Technology Joins NSIN Propel Maritime Digital Defense Accelerator
From Fathom5
November 18, 2024
Mystic Valley Elder Services Data Breach Investigation
From Migliaccio & Rathod LLP
October 31, 2024
TrustNet Named 2024’s Best Compliance Advisory and Audit Firm at CDM’s Annual Top InfoSec Inno…
From TrustNet
November 06, 2024
CUSO Financial Services, LP Data Breach Investigation
From Migliaccio & Rathod LLP
October 31, 2024
Editors' picks
Latest in Leadership & Careers
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell