Recruiter firm Harvey Nash released a 2025 salary survey that spotlights a quiet crisis in cyber security. In its 53‑country sweep, 77 percent of UK security staff received no raise, while 71 percent worldwide saw stagnation. The data paints a picture of a field that is in high demand yet pays little for the risk it bears.

Cyber teams, already stretched by AI‑driven threat vectors, face a perfect storm of legacy tech, distributed teams, and boardroom complacency. Ankur Anand, CIO at Harvey Nash, blamed this culture: when incidents dwindle, leadership relaxes, leaving talent underappreciated. The UK’s National Cyber Security Centre noted a 50 percent jump in severe attacks last year, hardening the case for better pay now.

Survey findings also show that only 45 percent of all tech workers earned raises, and even DevOps—traditionally the highest‑paid niche—managed 56 percent. In contrast, security ranks among the bottom three for workplace satisfaction, trailing QA testers and infrastructure staff. The mismatch between risk exposure and reward fuels burnout, prompting many to leave the field without adequate compensation and recognition today.

Anand urges leaders to treat cyber talent as a strategic asset, not a blocker. By aligning compensation, workload, and career paths with the sector’s critical role, companies can curb attrition and build trust with regulators and clients. Until firms adjust, the profession risks losing the very experts needed to defend against an ever‑expanding threat landscape in the digital era today.