Monday, August 3, 2020
Home CIO Insight CIO Insight: CISO Reporting Structure

CIO Insight: CISO Reporting Structure

Long before the COVID-19 crisis, the Chief Information Security Officer role has been on a path of increased influence across the corporate enterprise. As organizations consider their response to a distributed workforce and the continued growth of security obligations, the reporting structure for the CISO continues to evolve and will be heavily debated.

In June 2020, The National CIO Review polled our 2000+ member CIO Professional Network to obtain a current state of the CISO reporting structure. 

To whom, in fact, does a CISO report? The data shows that the current structure for most CISOs still has them reporting primarily to the CIO/CTO of the company. While other national studies show a larger percentage reporting directly to a CEO versus these findings, our members report while that might be preferable, reality may not currently align.

As a follow-up question, our CIO Network members were also requested to report how their top security professional is titled in their organization.  While over 50% of organizations recognize this role at the C-level, less than 40% keep this function titled at the Director level or below.

In conclusion, we are in a state where the influence of the top information security professional continues to expand.  Organizations of all sizes are placing more responsibility upon this very important role and we are sure that the reporting structure and executive level of the CISO will continue to evolve.


The CIO Professional Network is an active, 2000+ member, invitation-only network where technology leaders share best practices and insight on common issues. The network provides a forum for ongoing and mutually beneficial interactions. Vendor-free membership is by invitation only and is restricted to the top IT, security or digital professional for their respective organization. To request membership navigate to the CIO Professional Network.

H. Michael Burgett, TNCR Contributing Writer
H. Michael Burgett, TNCR Contributing Writer
H. Michael Burgett has more than 30 years of experience in the technology sector. He is the founder of CIO Partners, a nationally recognized executive search firm with a niche in the technology sector specializing in top-level leadership engagements.
- Advertisment -

Most Popular

Vendors, Service Providers, and Partners

A very astute McKinsey consultant once told me, “Anything important can and should be represented by a two by two matrix, as...

Senior Vice President/Chief Information Officer – Blue Cross Blue Shield of Massachusetts

Location: Boston, MA Reports to: Chief Operating Officer Role Description: Reporting to the...

CIO Insight: The Proverbial Seat at the Table

Its Thanksgiving 1980, and I am twelve years old. Not quite a teen, but in my young mind every bit of...

The Strategic, the Tactical, and the Ability to Pivot

In times of crisis, the mettle of a leader is tested and the disparities between true leaders and leaders in title alone...

Recent Comments