Period
to 28 February 2020

The median annual salary for a Chief Information Security Officer was £97,500 in advertised job vacancies during the 6 months to 28 February 2020.

The first table below provides salary benchmarking and summary statistics including a comparison to same period in the previous 2 years.

Chief Information Security Officer (CISO)
UK
6 months to
28 Feb 2020
Same period 2019 Same period 2018
Rank 981 1073 1187
Rank change year-on-year +92 +114 -14
Permanent jobs requiring a Chief Information Security Officer 24 37 29
As % of all permanent IT jobs advertised in the UK 0.020% 0.025% 0.016%
As % of the Job Titles category 0.020% 0.026% 0.017%
Number of salaries quoted 14 32 25
UK median annual salary £97,500 £115,000 £95,000
Median salary % change year-on-year -15.22% +21.05% -13.64%
10th Percentile £69,375 £85,600 £65,750
90th Percentile £155,000 £128,125 £123,000
UK excluding London median annual salary £100,000 £95,000 £95,000
% change year-on-year +5.26% - +20.63%

The following table is for comparison with the above and includes summary statistics for all permanent IT job vacancies. Most job vacancies include a discernible job title that can be normalized. As such, the figures in the second row provide an indication of the number of permanent jobs in our overall sample.

All Permanent IT Job Vacancies
UK
Permanent vacancies in the UK with a recognized job title 117,361 144,850 169,833
% of permanent IT jobs with a recognized job title 95.46% 95.93% 96.38%
Number of salaries quoted 94,006 115,990 139,501
UK median annual salary £52,500 £50,000 £50,000
Median salary % change year-on-year +5.00% - +5.26%
10th Percentile £29,000 £28,250 £27,500
90th Percentile £87,500 £83,750 £80,000
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

Chief Information Security Officer
Job Vacancy Trend

Job postings that featured Chief Information Security Officer in the job title as a percentage of all IT jobs advertised.

Job vacancy trend for Chief Information Security Officer in the UK

Chief Information Security Officer
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Chief Information Security Officer.

Salary trend for Chief Information Security Officer in the UK

Chief Information Security Officer
Salary Histogram

The salary distribution of IT jobs citing Chief Information Security Officer over the 6 months to 28 February 2020.

Salary histogram for Chief Information Security Officer in the UK

Chief Information Security Officer
Top 9 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Chief Information Security Officer within the UK over the 6 months to 28 February 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +88 21 £100,000 -13.04% 4
London +68 13 £70,250 -38.91%
UK excluding London +90 10 £100,000 +5.26% 4
South East +54 5 £100,000 -1.23% 1
West Midlands +43 2 £100,000 +5.26%
Midlands +40 2 £100,000 +5.26%
Scotland - 2 £65,000 -
North of England +71 1 £117,500 -6.00% 3
Yorkshire - 1 £117,500 -

Chief Information Security Officer Skill Set
Top 30 Co-occurring IT Skills

For the 6 months to 28 February 2020, Chief Information Security Officer job roles required the following IT skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads featuring Chief Information Security Officer in the job title.

1 24 (100.00%) Information Security
2 15 (62.50%) ISO/IEC 27001
3 13 (54.17%) CISSP
4 12 (50.00%) Cybersecurity
5 9 (37.50%) Security Cleared
5 9 (37.50%) CISM
5 9 (37.50%) Management Information System
6 8 (33.33%) Risk Management
7 7 (29.17%) Cyber Essentials
7 7 (29.17%) Analytical Skills
8 6 (25.00%) CISA
8 6 (25.00%) COBIT
8 6 (25.00%) Security Architecture
9 5 (20.83%) DV Cleared
9 5 (20.83%) Finance
9 5 (20.83%) IISP
9 5 (20.83%) Cloud Native
9 5 (20.83%) NCSC
9 5 (20.83%) Mentoring
10 4 (16.67%) NIST
10 4 (16.67%) Stakeholder Management
10 4 (16.67%) ISMS
11 3 (12.50%) Azure
11 3 (12.50%) SaaS
11 3 (12.50%) Business Continuity
11 3 (12.50%) Problem-Solving
11 3 (12.50%) Security Operations
12 2 (8.33%) DevOps
12 2 (8.33%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
12 2 (8.33%) People Management

Chief Information Security Officer Skill Set
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Cloud Services
1 3 (12.50%) Azure
1 3 (12.50%) SaaS
2 2 (8.33%) AWS
2 2 (8.33%) GCP
2 2 (8.33%) IaaS
2 2 (8.33%) Office 365
2 2 (8.33%) PaaS
Communications & Networking
1 1 (4.17%) Firewall
General
1 5 (20.83%) Finance
2 1 (4.17%) Fire and Rescue
2 1 (4.17%) Military
2 1 (4.17%) Police
Libraries, Frameworks & Software Standards
1 2 (8.33%) OAuth
1 2 (8.33%) OpenID
Miscellaneous
1 9 (37.50%) Management Information System
2 7 (29.17%) Analytical Skills
3 5 (20.83%) Cloud Native
4 2 (8.33%) Private Cloud
4 2 (8.33%) Public Cloud
5 1 (4.17%) CESG
5 1 (4.17%) Cyberattack
5 1 (4.17%) Cyberthreat
5 1 (4.17%) Data Centre
5 1 (4.17%) Data Protection Act
5 1 (4.17%) Enterprise Software
5 1 (4.17%) Freedom of Information
5 1 (4.17%) Freedom of Information Act
5 1 (4.17%) Greenfield Project
5 1 (4.17%) Hybrid Cloud
5 1 (4.17%) Industrial Internet of Things
5 1 (4.17%) Self-Motivation
5 1 (4.17%) Smart Energy
5 1 (4.17%) Smart Meter
5 1 (4.17%) Virtual Team
Processes & Methodologies
1 24 (100.00%) Information Security
2 12 (50.00%) Cybersecurity
3 8 (33.33%) Risk Management
4 6 (25.00%) Security Architecture
5 5 (20.83%) Mentoring
6 4 (16.67%) ISMS
6 4 (16.67%) Stakeholder Management
7 3 (12.50%) Business Continuity
7 3 (12.50%) Problem-Solving
7 3 (12.50%) Security Operations
8 2 (8.33%) Agile Software Development
8 2 (8.33%) Continuous Improvement
8 2 (8.33%) DevOps
8 2 (8.33%) Enterprise Architecture
8 2 (8.33%) Incident Management
8 2 (8.33%) Information Security Governance
8 2 (8.33%) IT Strategy
8 2 (8.33%) People Management
8 2 (8.33%) Strategic Thinking
8 2 (8.33%) Zachman Framework
Programming Languages
1 2 (8.33%) C
Qualifications
1 13 (54.17%) CISSP
2 9 (37.50%) CISM
2 9 (37.50%) Security Cleared
3 6 (25.00%) CISA
4 5 (20.83%) DV Cleared
4 5 (20.83%) IISP
5 1 (4.17%) (ISC)2 CCSP
5 1 (4.17%) CESG Certified Professional
5 1 (4.17%) Cisco Certification
5 1 (4.17%) CRISC
5 1 (4.17%) ISACA
Quality Assurance & Compliance
1 15 (62.50%) ISO/IEC 27001
2 7 (29.17%) Cyber Essentials
3 6 (25.00%) COBIT
4 5 (20.83%) NCSC
5 4 (16.67%) NIST
6 2 (8.33%) BS7799
6 2 (8.33%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 2 (8.33%) NIST 800
6 2 (8.33%) PCI DSS
7 1 (4.17%) Cyber Essentials PLUS
7 1 (4.17%) ISO 9001
7 1 (4.17%) ISO/IEC 20000
Vendors
1 2 (8.33%) Google
2 1 (4.17%) Computacenter
2 1 (4.17%) Microsoft