Interim Leadership

Interim CISO
£1,500-£2,500/day

Full-time, on-site security leadership for 3-12 month assignments. Respond to breaches, achieve compliance, drive security programmes. Not part-time consulting.

Hire an Interim CISO Need Part-Time? See Fractional

What is an Interim CISO?

An Interim CISO is a full-time Chief Information Security Officer hired for a fixed period—typically 3-12 months. They work exclusively for your organisation during critical security periods: breaches, compliance deadlines, leadership gaps, or major security programme buildouts.

This is NOT part-time consulting or fractional work. Interim CISOs are in your office 5 days a week, leading your security team, responding to incidents, managing audits, and driving security initiatives—just like a permanent hire, but for a defined period.

Typical Day Rates

£1,500-£1,800/day: SMEs, basic compliance (Cyber Essentials, SOC 2), building first security programme
£1,800-£2,200/day: Mid-market, ISO 27001, PCI-DSS, mature security operations
£2,200-£2,500/day: Enterprise, FTSE 250, post-breach recovery, complex regulatory (FCA, PRA, GDPR)

Based on 5-day weeks. Crisis response (active breaches) may command premium rates. Rates typically decrease for longer assignments (6+ months).

When to Hire an Interim CISO

Security Breach

Active breach or incident requiring full-time crisis management and remediation.

CISO Departure

Your CISO has left and you need immediate security leadership while recruiting.

Compliance Deadline

Major compliance requirements (SOC 2, ISO 27001, PCI-DSS) with tight deadlines.

Security Transformation

Complete overhaul of security programme requiring dedicated leadership.

Due Diligence

Preparing for acquisition or investment with intensive security scrutiny.

Post-Breach Recovery

Rebuilding security posture after a significant incident.

Types of Interim CISO Assignments

Breach Response & Recovery (25% of assignments)

Active security breach or recent incident. Need immediate crisis leadership: forensics coordination, stakeholder communication, ICO reporting, remediation planning. High pressure. 3-6 months.

Compliance Deadline (25%)

Achieving SOC 2, ISO 27001, PCI-DSS, or regulatory compliance with tight deadline. Requires dedicated focus to implement controls, manage audits, achieve certification. 4-9 months.

Leadership Gap Coverage (20%)

Your CISO departed. You need immediate security leadership while recruiting. Interim maintains security posture, leads team, manages vendors and tools. 3-6 months.

Security Programme Build (20%)

Building security function from scratch or major uplift. Hiring team, selecting tools, implementing processes, establishing governance. 6-12 months.

Due Diligence/Pre-Investment (10%)

Preparing for acquisition, IPO, or major investment. Security needs to pass due diligence scrutiny. Intensive remediation and documentation. 4-6 months.

Skills Required for Interim CISO Roles

Core Security Leadership

• Security strategy and risk management
• Incident response and crisis management
• Security architecture and design
• Vendor and tool evaluation/management
• Security team building and leadership
• Threat intelligence and vulnerability management

Interim-Specific Skills

• Rapid security posture assessment
• Taking over active incidents/investigations
• Building credibility under scrutiny
• Managing inherited security debt
• Delivering bad news to boards/investors
• Working with security recruitment firms

Compliance & Governance

• ISO 27001, SOC 2, PCI-DSS frameworks
• GDPR and data protection
• Financial services regulation (FCA, PRA)
• ICO breach reporting and liaison
• Security audit management

Technical Depth

• Cloud security (AWS, Azure, GCP)
• Security tools (SIEM, EDR, vulnerability scanning)
• Network and application security
• Identity and access management
• Forensics and investigation

Career Path to Becoming an Interim CISO

Most Interim CISOs have 15-25 years of security experience. You do not start your career as an interim—you transition into it after building deep expertise, especially in high-pressure situations.

Typical Path:

Years 0-5:

Security Analyst → Senior Analyst. Build technical security skills (SOC, penetration testing, security engineering). Get certifications (CISSP, CEH).

Years 5-12:

Security Manager or Head of Security Operations. Lead teams, handle incidents, implement security programmes. Experience with compliance frameworks.

Years 12-18:

CISO or Director of Security at mid-size company. Full security function leadership. Board exposure. Lead through at least one major incident or compliance initiative.

Years 18+:

Transition to interim work. Track record of crisis management. Comfortable parachuting into difficult security situations. Experience at 3+ companies.

What Makes Someone "Interim-Ready"?

• Led security at 3+ companies (different industries/maturity levels)
• Handled major incidents, breaches, or forensic investigations
• Achieved certifications (ISO 27001, SOC 2, PCI-DSS)
• Comfortable with intense pressure and board scrutiny
• Can assess security posture rapidly (days, not weeks)
• Do not need organizational buy-in to make hard calls
• Financial runway for gaps between assignments

Most interim CISOs work 8-10 months per year across 2-3 assignments. Between assignments they do security advisory work, penetration testing reviews, or board advisor roles.

Feature	Interim CISO	Fractional CISO	Full-Time CISO
Commitment	Full-time (temporary)	1-3 days/week	Full-time (permanent)
Duration	3-12 months	Ongoing (6+ months typical)	Permanent
Cost	£8,000-£12,000/week	£3,000-£6,000/week	£150,000-£250,000/year + benefits
Focus	Gap-fill or transformation	Strategic + operational	All responsibilities
Flexibility	Fixed term contract	Scale up/down as needed	Limited flexibility
Best For	Leadership gaps, major transitions	Growing companies, specific expertise needs	Large orgs with full-time need

Need a Full-Time Interim CISO?

Tell us about your situation. We'll help you determine if you need a full-time interim or part-time fractional CISO—and connect you with the right person.

Find an Interim CISO Explore Fractional CISO

What is an Interim CISO?

Typical Day Rates

£1,500-£1,800/day: SMEs, basic compliance (Cyber Essentials, SOC 2), building first security programme
£1,800-£2,200/day: Mid-market, ISO 27001, PCI-DSS, mature security operations
£2,200-£2,500/day: Enterprise, FTSE 250, post-breach recovery, complex regulatory (FCA, PRA, GDPR)

Based on 5-day weeks. Crisis response (active breaches) may command premium rates. Rates typically decrease for longer assignments (6+ months).

When to Hire an Interim CISO

Security Breach

Active breach or incident requiring full-time crisis management and remediation.

CISO Departure

Your CISO has left and you need immediate security leadership while recruiting.

Compliance Deadline

Major compliance requirements (SOC 2, ISO 27001, PCI-DSS) with tight deadlines.

Security Transformation

Complete overhaul of security programme requiring dedicated leadership.

Due Diligence

Preparing for acquisition or investment with intensive security scrutiny.

Post-Breach Recovery

Rebuilding security posture after a significant incident.

Types of Interim CISO Assignments

Breach Response & Recovery (25% of assignments)

Active security breach or recent incident. Need immediate crisis leadership: forensics coordination, stakeholder communication, ICO reporting, remediation planning. High pressure. 3-6 months.

Compliance Deadline (25%)

Achieving SOC 2, ISO 27001, PCI-DSS, or regulatory compliance with tight deadline. Requires dedicated focus to implement controls, manage audits, achieve certification. 4-9 months.

Leadership Gap Coverage (20%)

Your CISO departed. You need immediate security leadership while recruiting. Interim maintains security posture, leads team, manages vendors and tools. 3-6 months.

Security Programme Build (20%)

Building security function from scratch or major uplift. Hiring team, selecting tools, implementing processes, establishing governance. 6-12 months.

Due Diligence/Pre-Investment (10%)

Preparing for acquisition, IPO, or major investment. Security needs to pass due diligence scrutiny. Intensive remediation and documentation. 4-6 months.

Skills Required for Interim CISO Roles

Core Security Leadership

• Security strategy and risk management
• Incident response and crisis management
• Security architecture and design
• Vendor and tool evaluation/management
• Security team building and leadership
• Threat intelligence and vulnerability management

Interim-Specific Skills

• Rapid security posture assessment
• Taking over active incidents/investigations
• Building credibility under scrutiny
• Managing inherited security debt
• Delivering bad news to boards/investors
• Working with security recruitment firms

Compliance & Governance

• ISO 27001, SOC 2, PCI-DSS frameworks
• GDPR and data protection
• Financial services regulation (FCA, PRA)
• ICO breach reporting and liaison
• Security audit management

Technical Depth

• Cloud security (AWS, Azure, GCP)
• Security tools (SIEM, EDR, vulnerability scanning)
• Network and application security
• Identity and access management
• Forensics and investigation

Career Path to Becoming an Interim CISO

Most Interim CISOs have 15-25 years of security experience. You do not start your career as an interim—you transition into it after building deep expertise, especially in high-pressure situations.

Typical Path:

Years 0-5:

Security Analyst → Senior Analyst. Build technical security skills (SOC, penetration testing, security engineering). Get certifications (CISSP, CEH).

Years 5-12:

Security Manager or Head of Security Operations. Lead teams, handle incidents, implement security programmes. Experience with compliance frameworks.

Years 12-18:

CISO or Director of Security at mid-size company. Full security function leadership. Board exposure. Lead through at least one major incident or compliance initiative.

Years 18+:

Transition to interim work. Track record of crisis management. Comfortable parachuting into difficult security situations. Experience at 3+ companies.

What Makes Someone "Interim-Ready"?

• Led security at 3+ companies (different industries/maturity levels)
• Handled major incidents, breaches, or forensic investigations
• Achieved certifications (ISO 27001, SOC 2, PCI-DSS)
• Comfortable with intense pressure and board scrutiny
• Can assess security posture rapidly (days, not weeks)
• Do not need organizational buy-in to make hard calls
• Financial runway for gaps between assignments

Most interim CISOs work 8-10 months per year across 2-3 assignments. Between assignments they do security advisory work, penetration testing reviews, or board advisor roles.

Feature

Interim CISO

Fractional CISO

Full-Time CISO

Commitment

Full-time (temporary)

1-3 days/week

Full-time (permanent)

Duration

3-12 months

Ongoing (6+ months typical)

Permanent

Cost

£8,000-£12,000/week

£3,000-£6,000/week

£150,000-£250,000/year + benefits

Focus

Gap-fill or transformation

Strategic + operational

All responsibilities

Flexibility

Fixed term contract

Scale up/down as needed

Limited flexibility

Best For

Leadership gaps, major transitions

Growing companies, specific expertise needs

Large orgs with full-time need

Interim CISO£1,500-£2,500/day

What is an Interim CISO?

Typical Day Rates

When to Hire an Interim CISO

Security Breach

CISO Departure

Compliance Deadline

Security Transformation

Due Diligence

Post-Breach Recovery

Types of Interim CISO Assignments

Breach Response & Recovery (25% of assignments)

Compliance Deadline (25%)

Leadership Gap Coverage (20%)

Security Programme Build (20%)

Due Diligence/Pre-Investment (10%)

Skills Required for Interim CISO Roles

Core Security Leadership

Interim-Specific Skills

Compliance & Governance

Technical Depth

Career Path to Becoming an Interim CISO

Typical Path:

What Makes Someone "Interim-Ready"?

Need a Full-Time Interim CISO?

Interim CISO£1,500-£2,500/day

What is an Interim CISO?

Typical Day Rates

When to Hire an Interim CISO

Security Breach

CISO Departure

Compliance Deadline

Security Transformation

Due Diligence

Post-Breach Recovery

Types of Interim CISO Assignments

Breach Response & Recovery (25% of assignments)

Compliance Deadline (25%)

Leadership Gap Coverage (20%)

Security Programme Build (20%)

Due Diligence/Pre-Investment (10%)

Skills Required for Interim CISO Roles

Core Security Leadership

Interim-Specific Skills

Compliance & Governance

Technical Depth

Career Path to Becoming an Interim CISO

Typical Path:

What Makes Someone "Interim-Ready"?

Need a Full-Time Interim CISO?

Interim CISO
£1,500-£2,500/day

Interim CISO
£1,500-£2,500/day