Skip to main content
Top 5 highest paying jobs in Cyber Security

Top 5 highest paying jobs in Cyber Security

Top 5 highest paying jobs in Cyber Security

With the number of cyber hacks set to cost organisations $2.1 trillion globally by 2023, the demand for skilled cyber security professionals is rapidly increasing, so much so that demand is outstripping supply. As a result, the cyber security jobs market is a candidate market.

To demonstrate how much cyber security professionals can earn we describe the top five highest paying cyber security roles and the skills and experience it takes to do them.


1. Chief Information Security Officer (CISO)

Brief description: The CISO (chief information security officer) is a senior-level executive responsible for aligning security initiatives with enterprise programs and business objectives, ensuring that information assets and technologies are adequately protected.

Permanent £100,000-£150,000 per annum (in addition, CISOs will likely receive high annual bonuses which could range from £20,000-£30,000 and possibly more)

Contract £900-£1,300 per day

Experience required: A CISO will have experience in the development and implementation of a security strategy as well as experience in project delivery. They will also have experience of communicating with key stakeholders and hold key relationships with risk related stakeholders, and have had exposure to financial/business leadership.

Skills required:
• CISSP (Certified Information Systems Security Professional)/ CISM (Certified Information Security Manager, there is also an increasing level of people doing a specific CISO level certificate through the likes of the EC Council)
• Experience of running large teams in a security domain
• Knowledge of security on both IT and information governance aspects
• An understanding of architecture and design as well as the delivery of security functions.


2. Head of Cyber Security

Brief description: Responsible for overseeing the internal information security, the Head of Cyber Security will provide leadership and support for cyber risk management, policy development, regulatory compliance and IT security operations. They will also oversee the continuous planning, development and implementation of a secure global infrastructure designed to protect against all matter of cyber threats to the business.

Permanent £90,000-£125,000 per annum

Contract £800-£1,200 per day

Skills & experience: As not many companies currently have a Chief Information Security Officer, many Heads of Cyber Security end up filling this role and can consequently seek a higher salary as a result. For this reason the experience and skills to be a Head of Cyber Security are almost exactly the same. 


3. Lead Security Architect

Brief description: A Lead Security Architect designs, builds and overlooks the implementation of an organisation’s network and computer security and will manage multiple projects at once Interact with and influence people across larger teams and communities.

Permanent £90,000-£110,000 per annum

Contract £550-£800 per day

Experience required: A Lead Security Architect will have usually worked in an Enterprise Architect role and will have a firm understanding of architecture frameworks (MODAF/TOGAF). Good working ability within network security/cyber/information security, i.e. SIEM tools, IDS/IPS and penetration testing will also be expected. Ability to lead and sign off on works and lead junior staff within the architecture domain.

Skills required:
• MODAF/TOGAF certified
• CISSP or CISM qualified
• ISO27001, ITIL management, ISMS


4. Head of Governance/Assurance

Brief description: The Head of Governance/Assurance manages the compliance and assurance function and processes of an organisation. They provide advice, support and direction to ensure that employees are providing high quality and compliant services imposed by commissioners and regulators.

Permanent £60,000-£100,000 per annum  (+ high potential bonuses of £15,000-£20,000)

Contract £700-£900 per day

Experience required: Previous experience in auditing and/ or governance of information security or IT security functions (internal and external) will be expected. Those stepping into a Head of Governance/Assurance role will need to have worked closely with key stakeholders and other department heads to roll out policy change and security change controls and will have the ability to ensure ongoing compliance across a business.

Skills required:
• ISO27001 auditor or implementer accredited
• ISMS and ITIL. CISSP/CISM qualifications


5. Information Security Manager

Brief description: Information Security Managers are responsible for protecting an organisation's computers, networks and data against security breaches, computer viruses or attacks by cyber-criminals. They are also responsible for establishing and maintaining organisational policies, procedures and methods to protect sensitive data and information from being compromised.

Permanent £50,000-£80,000 per annum

Contract £400-£650 per day

Experience required: An Information Security Manager must act as a subject matter expert in information security and have a good understanding of information security tools, infrastructure, platforms and methodologies.

They will be able to advise on the latest security policy and propose which changes to implement across a business. They must also be able to build strong relationships with key stakeholders and liaise with other members of the leadership team.

Skills required:
• ISO27001 experience


To see our latest cyber security job opportunities please click here.