Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • The Security Leadership Issue
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Podcasts
    • Polls
    • Photo Galleries
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Continuing Education
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!
CybersecurityManagementSecurity NewswireSecurity Leadership and ManagementCybersecurity News

CISOs say AI & machine learning pose the most significant cyber risks

By Security Staff
man in suit adjusting his tie

Image via Unsplash

June 23, 2023

The role of the chief information security officer (CISO) is maturing as organizations' technological needs and risks become greater and multiply, according to the 2023 Global Chief Information Security Officer (CISO) Survey, recently released by Heidrick & Struggles.

For this report, organizational and compensation data was compiled from a spring 2023 of 262 CISOs around the world. Most had the title of chief information security officer, but respondents also include chief security officers and senior information security executives.

A separate survey conducted by Heidrick & Struggles revealed 76% of executives said they were very or entirely open to changing companies in the next three years, underscoring the importance of succession planning and an increased focus on retention strategies.

The importance of the CISO role continues to grow as digital technologies, particularly artificial intelligence, become even more prevalent and concerns about cyberattacks, such as ransomware, rise. When it comes to organizational risk, 46% of CISOs cited artificial intelligence and machine learning as most significant, followed by geopolitical risks (33%) and cyberattacks (19%), which include ransomware, malware, insider threats, and nation/state attacks. More than half of respondents said they believe that the most significant cyber risks that pose a threat today will not be the same five years from now.

In addition to technological advances and more sophisticated threats, CISOs also face increasing pressure to stay ahead of the curve, leading to stress and burnout — which remain top personal concerns for CISOs year over year, as evidenced by 71% of respondents who identified stress related to their roles as their most significant personal risk — an increase from 59% in 2022. 54% identified burnout as their most significant personal risk, up from 48% in 2022.

To address this, organizations should prioritize succession plans and/or retention strategies to prevent CISOs from exiting unnecessarily. According to the report, 80% of respondents agree that, within their roles, they are able to invest in leadership and development to build or enhance team capabilities.

The survey sheds light on the fact that companies are now seeking to broaden their horizons, venturing beyond traditional industry-and IT-specific criteria when selecting CISOs. They are actively searching for the most qualified executives for the role, with a focus on diversity in terms of gender, race or ethnicity, as well as industry and functional expertise.

While the role of the CISO is increasing in importance, many organizations aren't prepared for the long run. The survey found that 41% of respondents say their company does not have a succession plan in place for the CISO role, though more than half of those that do not have a plan are developing one.

Furthermore, the survey reveals that while over half of respondents expressed a belief that their corporate board possesses only partial or no knowledge and expertise required to effectively respond to cybersecurity presentations, only 30% of CISOs currently sit on a corporate board, which in an increase from the 14% who said the same in the prior year.

Compensation trends by region

United States: Similar to previous years, U.S. CISOs generally report the highest compensation. For CISOs in the U.S., reported median total cash compensation increased 6% year over year, to $620,000 in 2023. Median total compensation, including any annualized equity grants or long-term incentives, also increased, up to $1,100,000 this year.

Europe: The average total cash compensation for CISOs in Europe was $457,000. Average total compensation, including any annualized equity grants or long-term incentives, was $552,000. As in the United States and Australia, those in the financial services industry reported the highest average total cash compensation, at $623,000. In Europe, those in healthcare and life sciences reported the lowest. Average annual equity/LTI was highest for those in technology and services.

Australia: The average total cash compensation for CISOs in Australia was $368,000. Average total compensation, including any annualized equity grants or long-term incentives, was $586,000. As in the United States and Europe, those in the financial services industry reported the highest average total cash compensation, at $501,000.

KEYWORDS: artificial intelligence (AI) Chief Information Security Officer (CISO) CISO leadership compensation machine learning malware succession planning

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Security's Top Cybersecurity Leaders 2024

    Security's Top Cybersecurity Leaders 2024

    Security magazine's Top Cybersecurity Leaders 2024 award...
    Security Enterprise Services
    By: Security Staff
  • cyber brain

    The intersection of cybersecurity and artificial intelligence

    Artificial intelligence (AI) is a valuable cybersecurity...
    Logical Security
    By: Pam Nigro
  • artificial intelligence AI graphic

    Assessing the pros and cons of AI for cybersecurity

    Artificial intelligence (AI) has significant implications...
    Technologies & Solutions
    By: Charles Denyer
Subscribe For Free!
  • Security eNewsletter & Other eNews Alerts
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company and any opinions expressed in this article are those of the author and not necessarily reflect the views of Security or its parent company, BNP Media. Interested in participating in our Sponsored Content section? Contact your local rep!

close
  • Crisis Response Team
    Sponsored byEverbridge

    Automate or Fall Behind – Crisis Response at the Speed of Risk

  • Perimeter security
    Sponsored byAMAROK

    Why Property Security is the New Competitive Advantage

  • Duty of Care
    Sponsored byAMAROK

    Integrating Technology and Physical Security to Advance Duty of Care

Popular Stories

Pills spilled

More than 20,000 sensitive medical records exposed

Coding on screen

Research reveals mass scanning and exploitation campaigns

Laptop in darkness

Verizon 2025 Data Breach Investigations Report shows rise in cyberattacks

White post office truck

Department of Labor Sues USPS Over Texas Whistleblower Termination

Computer with binary code hovering nearby

Cyberattacks Targeting US Increased by 136%

2025 Security Benchmark banner

Events

May 22, 2025

Proactive Crisis Communication

Crisis doesn't wait for the right time - it strikes when least expected. Is your team prepared to communicate clearly and effectively when it matters most?

September 29, 2025

Global Security Exchange (GSX)

 

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products

Related Articles

  • hand pushing atm buttons

    AI and machine learning have been added to financial crime programs

    See More
  • On the watch floor of McKesson’s GSOC, three operator workstations

    93% of security operations centers employing AI and machine learning tools to detect advanced threats

    See More
  • technology-trends-freepik58673.jpg

    Artificial intelligence, machine learning, cloud computing, 5G will be most important tech in 2022

    See More

Related Products

See More Products
  • databasehacker

    The Database Hacker's Handboo

See More Products

Events

View AllSubmit An Event
  • November 14, 2024

    Best Practices for Integrating AI Responsibly

    ON DEMAND: Discover how artificial intelligence is reshaping the business landscape. AI holds immense potential to revolutionize industries, but with it comes complex questions about its risks and rewards.
  • March 6, 2025

    Why Mobile Device Response is Key to Managing Data Risk

    ON DEMAND: Most organizations and their associating operations have the response and investigation of computers, cloud resources, and other endpoint technologies under lock and key. 
View AllSubmit An Event
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • eNewsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2025. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing