Updated June 2026
Updated June 2026. Cybersecurity professionals in Cyprus earn between €32,000 and €95,000 gross per year in 2026 — and the market tightened sharply in January 2025 when the EU’s Digital Operational Resilience Act (DORA) came into force. DORA imposes mandatory ICT risk management, incident reporting, resilience testing, and third-party vendor oversight on all financial entities regulated in Cyprus — including every CySEC-licensed CIF, every CBC-supervised bank, and every payment and e-money institution. Firms that had tolerated a single generalist IT manager for their entire cybersecurity posture faced an immediate, non-negotiable uplift requirement. The result is genuine scarcity of experienced candidates and a faster-than-market salary trajectory for those who have the right combination of technical and regulatory knowledge.
Key Takeaways
- EU DORA (Regulation 2022/2554) came into force January 2025, requiring every CySEC-regulated firm and CBC-supervised bank to appoint an ICT Risk function with specific responsibilities — creating structured demand for cybersecurity roles that did not previously exist at many smaller Cyprus financial entities.
- Entry-level SOC analyst / junior ICT risk: €32,000–€42,000 gross; mid-level security engineer: €45,000–€62,000; CISO / ICT Risk manager: €70,000–€95,000+.
- The DORA-specific roles most in demand are: ICT Risk Officer, Third-Party ICT Risk Analyst, and Digital Resilience Testing coordinator — all requiring regulatory fluency, not just technical skills.
- Certifications most valued by Cyprus financial-sector employers: CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), and ISO/IEC 27001 Lead Implementer.
- Tech sector cybersecurity (fintech, gaming, SaaS) pays comparably but has a different compliance profile — GDPR and PCI-DSS rather than DORA/CySEC.
What DORA actually requires and why it changed the market
The Digital Operational Resilience Act (EU Regulation 2022/2554) is the first piece of EU legislation that treats cybersecurity risk as a prudential matter — equivalent in seriousness to capital adequacy or AML compliance — for financial entities. It came into full application on 17 January 2025 and applies directly in all EU member states, including Cyprus, without national transposition. Every entity regulated by CySEC or the Central Bank of Cyprus falls within scope.
DORA requires financial entities to maintain a formal ICT Risk Management Framework, conduct periodic Digital Operational Resilience Testing (including Threat-Led Penetration Testing for major institutions), report significant ICT incidents to CySEC or the CBC within strict timeframes, and manage the ICT risks posed by their third-party service providers (including cloud providers). For many Cyprus CIFs, this was a step-change from their previous approach, where ICT security was managed informally or outsourced entirely to an IT support firm without documented governance.
The immediate market effect was visible in Q1 2025: LinkedIn job postings for ICT risk and cybersecurity roles at Cyprus financial services firms more than doubled year-on-year, while the supply of candidates with both the technical depth and the regulatory literacy to fill those roles did not grow at the same pace. Several firms resorted to contracting DORA compliance consultants at day rates of €500–€900/day while building permanent teams — a temporary measure that is only slowly being resolved as the permanent hiring market catches up.
Cybersecurity salary by role and sector, Cyprus 2026
| Role | Years exp. | Financial services | Tech / fintech |
|---|---|---|---|
| SOC analyst / junior IT security | 0–2 | €32,000–€40,000 | €30,000–€42,000 |
| ICT risk analyst / security engineer | 2–5 | €42,000–€58,000 | €44,000–€62,000 |
| DORA / ICT risk officer (regulatory-focused) | 4–7 | €55,000–€72,000 | €48,000–€65,000 |
| Senior security engineer / penetration tester | 5–8 | €60,000–€78,000 | €58,000–€80,000 |
| CISO / Head of ICT Risk | 10+ | €75,000–€95,000+ | €70,000–€90,000+ |
All figures are gross annual including the 13th month. Financial services firms tend to pay a DORA compliance premium over equivalent tech roles because the personal regulatory accountability attached to the ICT Risk Officer designation (named on CySEC filings) carries real professional risk. Bonuses at CISO level (10–20%) are standard in larger firms.
Qualifications the Cyprus cybersecurity market values
Unlike AML or legal roles, cybersecurity in Cyprus does not have a single mandatory regulatory qualification — DORA specifies competency requirements for the ICT Risk function but does not mandate a specific certificate. In practice, the following are the most consistently requested by financial-sector employers in Cyprus: CISM (Certified Information Security Manager, ISACA) for governance-focused roles; CISA (Certified Information Systems Auditor) for audit and third-party risk roles; ISO/IEC 27001 Lead Implementer for firms building or certifying their ISMS; and CEH or OSCP (offensive security) for penetration testing and threat simulation roles.
For the tech and fintech sector (outside financial services regulation), AWS Security Specialty, Google Cloud Security, and Certified Cloud Security Professional (CCSP) carry significant weight, reflecting the cloud-native architecture of most relocated tech companies. The tech jobs market in Nicosia documents the broader salary landscape for technical professionals across the capital.
Non-EU nationals wishing to fill cybersecurity roles in Cyprus should note that the Cyprus work permit for ICT specialists falls under Category E (skilled non-EU worker), with employer sponsorship required. Given the scarcity of experienced DORA-fluent candidates, several employers are actively willing to sponsor international hires for the right profile.
Where the demand concentrates
Nicosia hosts the majority of financial services head offices (CySEC-regulated entities tend to have their registered office in Nicosia for regulatory proximity) and is therefore the primary market for financial sector cybersecurity roles. Limassol has a strong fintech and online trading concentration, making it the secondary hub. A smaller but growing demand exists in the gaming and iGaming sector — several large B2B gaming technology companies based in Limassol and Nicosia have significant PCI-DSS and GDPR compliance requirements that drive cybersecurity headcount independently of DORA.
Remote and hybrid working arrangements are more common in cybersecurity than in most other Cyprus financial services roles — the technical nature of the work and the international talent pool mean that full-time Nicosia office presence is negotiated rather than assumed at experienced levels. Entry-level SOC roles tend to require in-office presence for the first 12–18 months; senior roles carry more flexibility.
Frequently asked questions
What is DORA and does it apply to all companies in Cyprus?
DORA (EU Regulation 2022/2554, Digital Operational Resilience Act) applies to all financial entities regulated in the EU — including CySEC-regulated investment firms, banks supervised by the Central Bank of Cyprus, payment institutions, e-money institutions, and crypto-asset service providers. It does not apply to non-financial companies. It came into full effect on 17 January 2025.
Do I need a specific qualification to work in cybersecurity in Cyprus?
DORA does not mandate a specific certificate. In practice, CISM, CISA, ISO 27001 Lead Implementer, and relevant cloud security certifications are the most consistently requested by Cyprus financial-sector employers. For technical roles in tech companies, offensive security qualifications (OSCP, CEH) and cloud-provider security specialisations are preferred.
Is cybersecurity a well-paid field in Cyprus compared to other EU countries?
Cyprus cybersecurity salaries (€32,000–€95,000+) are below London or Amsterdam equivalents at equivalent seniority, but the net compensation calculation changes significantly for relocated professionals using the Non-Domicile 50% tax exemption and for those who factor in the lower cost of living outside Nicosia/Limassol city centres. At CISO level, the effective net salary comparison with London narrows considerably.
What is the ICT Risk Officer role under DORA?
Under DORA, financial entities must designate a named individual responsible for the ICT Risk Management Framework. This person — typically titled ICT Risk Officer or Head of ICT Risk — is responsible for maintaining the risk register, overseeing resilience testing, managing third-party ICT risk, and reporting significant incidents to CySEC or the CBC within the required timeframes (4 hours for early warning, 72 hours for intermediate report). The role carries personal regulatory accountability.
Are there cybersecurity opportunities in Cyprus outside the financial sector?
Yes — the gaming and iGaming sector (several major operators and B2B providers are based in Cyprus) has significant PCI-DSS and GDPR cybersecurity requirements. Healthcare (GESY digital infrastructure) is an emerging area. Government and critical national infrastructure (Vasiliko energy terminal, ports) also generate demand, though these roles are typically on public-sector or contractor terms rather than the private-sector salary bands above.
Browse live cybersecurity and ICT risk roles across Nicosia and Limassol at jobs.com.cy — Cyprus’s curated job platform with tech and compliance listings by city and seniority.
Related on Jobs Nicosia: Tech jobs in Nicosia 2026 · AML officer salary Cyprus 2026 · Cyprus salary guide 2026.
