Report icon

Management and Leadership

2021 CISO Staff Compensation Benchmark Report

by IANS + Artico

In response to broad market trends—cyber attacks that are more public and causing greater damage—organizations are investing in their security programs to make them more extensive.

For most organizations, depending on industry, size and type, that means adding staff and rounding out managerial roles responsible for the critical functions of the security agenda. They include security operations, governance, risk and compliance (GRC), and architecture and engineering.

Our second annual benchmark study, jointly fielded with Artico Search, offers objective insights and a deep dive into the staffing rates and compensation levels from 373 CISOs who shared compensation data for 1,005 staff across these four key functional areas.

Download a summary version of our benchmark report to access compensation data for key security staff, including:

  • Staffing rates for heads of security operations, GRC, architecture and engineering and product security
  • An overall view of total compensation across these key functional department heads
  • Variances in compensation rates at the top and bottom of each function role



Complete the form and we’ll send a copy of the 2021 CISO Staff Compensation Benchmark report to your email.

Fill out the form to receive your content download.  
* Required Fields
IANS logo

About IANS Research 

For the security practitioner caught between rapidly evolving threats and demanding executives, IANS Research is a clear-headed resource for making decisions and articulating risk. We provide experience-based security insights for chief information security officers and their teams. The core of our value comes from the IANS Faculty, a network of seasoned practitioners. We support client decisions and executive communications with Ask-an-Expert inquiries, our peer community, deployment-focused reports, tools and templates, and consulting.


About Artico Search

Artico Search’s team of executive recruiters focuses on a “grow and protect” model, recruiting senior go-to-market and security executives in growth venture, private equity and public companies. Artico’s dedicated security practice delivers CISOs and other senior level information security professionals for a diverse set of clients.