CISO

CISO job description

The Chief Information Security Officer (CISO) is responsible for developing and implementing an enterprise-wide information security strategy that protects systems, networks, and data from cyber threats. This leadership role ensures alignment between security initiatives and business objectives in a complex IT environment.

CISO job duties and responsibilities of the job

Key responsibilities of a CISO in the IT sector include:

Leading the development and execution of the organisation’s cyber security strategy

Overseeing the design and implementation of security architecture and policies

Managing risk assessments, threat modelling, and incident response planning

Ensuring compliance with relevant security standards and regulatory requirements

Collaborating with IT, legal, and executive teams to align security with business goals

Monitoring emerging threats and adapting strategies accordingly

Leading the response to security incidents and breaches

Reporting on security posture and risk to senior leadership and the board

Managing vendor relationships and security audits

Embedding security in digital transformation initiatives and cloud migration

Developing a security awareness culture and employee training programs

Overseeing data protection practices in line with the Privacy Act and OAIC guidelines

Governance around identity and access management (IAM)

Typical CISO job qualifications and requirements

Extensive experience in information security leadership is essential, typically supported by a bachelor’s or master’s degree in cyber security, information technology, or a related field, with certifications such as CISSP, CISM, or CISA highly regarded.

Key skills and attributes for success in this role include:

Proven experience in senior security roles, including leadership of security teams

Expert knowledge of Australian regulatory frameworks, particularly APRA CPS 234, CPS 231, Privacy Act 1988 and OAIC guidelines, and ASIC’s cyber resilience expectations

Deep understanding of security frameworks (e.g., NIST, ISO 27001) and risk management

Strong understanding of data residency, cross-border data transfer risks, and local compliance obligations

Experience managing third-party and vendor risk in regulated Australian environments

Excellent communication and stakeholder engagement skills

Strategic mindset with the ability to balance risk and business priorities

Looking for a ciso or a ciso job?

Submit your resume or request talent now and our expert recruiters will be with you shortly.

Robert Half can assist you with your ciso staffing needs.

Salary for CISO

220000 - 302500

25th Percentile

220000

The candidate has little or no prior experience in the position and is still developing relevant skills.

50th Percentile

265500

The candidate has an average level of experience and has most of the necessary skills.

75th Percentile

302500

The candidate has above-average experience, has most or all the necessary skills and may have specialised qualifications.

Salary range based on three percentiles The starting salaries represent gross yearly salaries. They do not include bonuses, benefits or superannuation.

Projected salaries for related positions

Position title

25th Percentile

50th Percentile

75th Percentile

Cyber-Security Specialist

133000

152000

181000

Cyber-Security Manager

158500

181500

207000

Network Security Engineer

120500

138000

155500

Explore more salaries

Explore exclusive insights

Hiring? Start here.

Access thousands of skilled contract and permanent candidates at every level from support roles to C-suite, and pinpoint the talent you need using our industry-leading matching technology.

Find your next hire