Within a company’s IT department, the Chief Information Officer (CIO) has traditionally captained the team, and held responsibility for developing the organisation’s overarching digital strategy.

The CISO (Chief Information Security Officer) on the other hand, plays more of a specialist role, with a particular focus on protecting information and data security.

As cyber-security remains a pivotal business priority, with the average cost of a data breach in Australia amounting to AUD$3.35 Million per breach, becoming a CISO in Australia is a vital career step.

What are the key functions of a CISO?

The CISO role demands extensive understanding of information security and/or IT risk management, coupled with an ability to address the security, performance, and reliability of a company’s IT networks.

Related: How to improve your public speaking

In Australia’s business environment, where cyber security risks remain high, a CISO is responsible for:

  • Reviewing, initiating and monitoring appropriate cyber security strategies in line with regulatory standards especially around data protection
  • Developing security solutions including intrusion detection, firewalls, data, and encryption
  • Developing and implementing policies, standards and procedures to maintain a high level of security
  • Advising management on the appropriate cyber security solutions and technologies to be deployed
  • Preparing and updating plans for business continuity and disaster recovery in the event the company is the subject of a cyberattack
  • Staying abreast of evolving security threats, identifying potential weaknesses in company systems, and reviewing and implementing change management processes
  • Building a company-wide culture of security risk assessment and compliance

The CISO may also be tasked with implementing measures that may go beyond a company’s immediate team – and expand to company clients, customers or suppliers.

The CISO role is both exciting and highly responsible, and it tends to be well remunerated.

Related: How to improve your leadership skills

How to become a CISO in Australia

The CISO role is a senior management or executive position and requires a blend of technical expertise and leadership experience.

Education

A tertiary degree in Computer Science, Information Systems, Engineering or related IT discipline is preferable but not required.

Professional certifications

Tailored and practical certifications including CISSP (Certified Information Security Systems Professional) and CISM (Certified Information Security Manager) demonstrate a practical understanding of the IT field.

Technical expertise

  • In-depth knowledge of IT systems and architecture
  • In-depth knowledge of data administration
  • Good knowledge of cyber-security and ongoing threats

Leadership expertise

  • Management and leadership experience
  • Understanding budgeting, recruiting, and business operations
  • Business and commercial acumen

Related: The benefits of good communication skills

What soft skills should a CISO have?

Problem solving skills

In order to stay ahead of an ever-evolving cyber security landscape, a CISO needs to have an analytical mindset and ability to interpret and guide responses to both long-term and immediate pressures.

Leadership skills

As a the most senior position within the IT team, the role calls for excellent management and teamwork skills.

Communication skills

Strong presentation skills can be essential as the CISO may be called on to speak at company or industry functions, or to present to the company Board. The ability to clearly and effectively convey highly technical issues to non-technical personnel is especially desirable.

How much does a Chief Information Security Officer make?

A candidate for a CISO position with some prior experience in the position and relevant skills will find themselves in the 50th percentile, earning approximately AUD$234,000.

For more information on the salary range of a CISO, click here.


Are you an IT professional looking for your next career opportunity? As a leader in technology recruitment, Robert Half can help you find the right IT role for you in Australia.