Information security officer (ISO)

Information security officer (ISO)

An ISO (information security officer) is in charge of setting and a company's security policy. He/she also plays a critical role in informing, advising, and alerting the general management on matters relating to information security.

The ISO's duties are essentially managerial, and entail recruiting a team of engineers and operations technicians, whose work he/she organizes and controls.


The ISO must have a thorough knowledge of networks, computer systems and information system security. In addition, given his/her recruiting duties, he/she needs to have interpersonal skills and experience in directing projects.


The salary of an ISO may vary from $35k-$54k (£18k-£27k) a year, depending on the size and complexity of the systems in question.

Ask a question
CCM is a leading international tech website. Our content is written in collaboration with IT experts, under the direction of Jean-François Pillou, founder of CCM reaches more than 50 million unique visitors per month and is available in 11 languages.


This document, titled « Information security officer (ISO) », is available under the Creative Commons license. Any copy, reuse, or modification of the content should be sufficiently credited to CCM (