cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted
Community Champion

CISO Talent Gap

Do you have leadership aspirations? Want to become the next powerhouse CISO? This report is a MUST READ in order to learn the how to manage factors critical to success. The report examines the evolution of security management practices and the emergence of the "virtual CISO" for small and medium businesses. The report also suggests that CISO salaries are in the $2-3 million USD range (page 23), but that's not any of my friends...

 

CYBER BUSINESS EXECUTIVE RESEARCH: SECURITY LEADERSHIP TALENT GAP Effective Strategies to Recruit, R...

 

3 Replies
Highlighted
Contributor III

Re: CISO Talent Gap

$2-3 million for a CISO??

 

Yeah, I don't think so.

 

I am a vCISO for several companies and I don't make 6 figures (tho I should), certainly nothing close to that.

 

 

---
Michael Brown, CISSP, HCISPP, CISA, CISM, CGEIT, CRISC, GSLC, GSTRT, ISSA Fellow
Highlighted
Community Champion

Re: CISO Talent Gap


@emb021 wrote:

$2-3 million for a CISO??

 

Yeah, I don't think so.

 

I am a vCISO for several companies and I don't make 6 figures (tho I should), certainly nothing close to that.

 


@emb021 what's it like to be a vCISO? How much time do you need to dedicate to each client? Sounds like a cool gig Smiley Very Happy

Highlighted
Community Champion

Re: CISO Talent Gap

As a virtual CISO myself I have been assigned to a single agency (5000+ employees) and currently assigned to two smaller agencies (1- ~100 employees, 2- ~250 employees) and can tell you there are pluses and minuses with each assignment. When I was at the larger agency I had more control of every detail of security from deciding direction to leading the cyber program. At the smaller agencies it is more of policy creation and guidance role.

The big negative is that you are sometimes treated like a contract employee (which I guess you technically are) and sometimes not given complete access or control needed to do the job.