Full Report
Global recruitment giant says 71% of human firewalls saw wages stagnate last year as threats and responsibilities grew Cybersecurity professionals were the most overlooked workers in IT when it came to pay rises in 2025, according to new figures from recruiter Harvey Nash.…
Analysis Summary
# Industry News: The High Cost of Success: Cyber Salaries Stagnate Despite Surging Threats
## Summary
A comprehensive report from recruitment giant Harvey Nash reveals a "compensation paradox" in the cybersecurity sector: 71% of global security professionals saw wage stagnation in 2025 despite escalating AI-driven threats. Cybersecurity now ranks as one of the most overlooked IT disciplines for pay increases, leading to a significant crisis in workforce morale and retention.
## Key Details
- **Date:** April 27, 2026
- **Companies Involved:** Harvey Nash (Recruiter), Check Point, World Economic Forum (WEF)
- **Category:** Market Analysis / Workforce Trends
## The Story
According to the Harvey Nash Tech Talent and Salary Report 2026, the cybersecurity profession is facing a "thankless job" era. While 45% of general tech workers received pay raises, only 29% of security professionals saw an increase. The situation is most dire in the UK, where 77% of security staff experienced wage stagnation.
The root cause, according to Harvey Nash CIO Ankur Anand, is that cybersecurity has become a "victim of its own effectiveness." When security teams successfully prevent breaches, boards perceive a lack of risk, leading to complacency in compensation budgets. This occurs simultaneously with a surge in AI-driven threat complexity and the erosion of entry-level roles due to automation, leaving mid-to-senior levels with 10x the workload but diminishing financial incentives.
## Business Impact
### For the Companies Involved (Harvey Nash)
- Positions the recruiter as a primary source for tech labor market intelligence during a period of economic transition.
### For Competitors
- **In-house HR Departments:** Face mounting challenges in retention; competitors who offer even marginal pay increases may easily poach "burned out" talent from stagnant organizations.
### For Customers (Enterprises)
- **Increased Risk:** Disengaged or underpaid security staff are a primary driver of insider threat risks and oversight errors.
- **Attrition Costs:** The cost of replacing a senior security specialist often exceeds 1.5x–2x their annual salary, far outweighing the cost of a standard cost-of-living increase.
### For the Market
- **Talent Oversupply Myth:** While entry-level roles are shrinking due to AI, a "hollow middle" is forming. The market is shifting from a general skills gap to a "retention gap" of experienced practitioners.
## Technical Implications
- **AI-Managed Sprawl:** As GenAI increases the volume of code and potential vulnerabilities, the "human firewall" is being asked to manage a technical debt that is growing exponentially faster than their compensation.
- **Tooling Consolidation:** Underfunded teams may lean more heavily on automated security orchestration (SOAR) to compensate for human attrition, potentially creating single points of failure.
## Strategic Analysis
- **Market Positioning:** Organizations that continue to view security as a "cost center" are losing their competitive advantage in resilience.
- **Competitive Advantage:** Early movers who recalibrate security compensation will secure the top-tier talent currently feeling "unseen" by the 71% of stagnant firms.
- **Challenges:** "Boardroom Complacency"—the inability of non-technical leadership to value the *prevention* of an event as much as the *resolution* of one.
## Industry Reactions
- **Harvey Nash (Ankur Anand):** Warns that this is a "wake-up call" and that security must be treated as a strategic capability, not a utility.
- **Market Sentiment:** Security professionals now rank in the bottom three for workplace satisfaction, signaling a looming "Great Resignation" in the sector once the broader economy stabilizes.
## Future Outlook
- **The "Great Disconnect":** Expect a period of high turnover once the job market improves, as the 24% of workers "staying put" out of fear eventually seek employers who recognize their value.
- **What to watch for:** A potential surge in mid-market breaches as skilled professionals migrate toward high-paying "Big Tech" or specialized consulting firms, leaving average enterprises vulnerable.
## For Security Professionals
- **Negotiation Leverage:** Use these benchmarks to highlight that while the market is "cooling" for entry-level roles, the *technical responsibility* for AI-driven threats has increased, justifying higher tier pay for those managing high-risk environments.
- **Warning Sign:** Stagnant pay in an era of increasing AI-threats is a leading indicator of a company that does not view security as a business enabler—a potential red flag for long-term career health.