Chief information security officers deem avoiding reputation damage to their companies as their highest priority, according to the results of the 2008 Global Information Security Workforce Study.

Frost & Sullivan conducted the survey of 7,548 IT security pros and executives on behalf of the ISC2. One finding is that security pros are boosting their profile in the organization, as nearly half of respondents report to executive management or boards of directors.

“Information security has become a business imperative for organizations of all sizes, with far-reaching concerns such as corporate reputation, the privacy of customer data, identity theft and breach of laws and regulations driving information security governance,” says Rob Ayoub, Frost and Sullivan industry manager for network security.

According to the study, information security is moving beyond the perimeter and becoming more data-focused to protect data at rest and in transit. Top technologies include wireless security, cryptography, storage security and biometrics.

Information security awareness continues to be a key factor of security management. Perhaps that is one reason why 81% of respondents indicated that communications skills are very important or important for success as an IT professional.

Despite the dismal economy, demand for the profession is still growing. The report pegs average annual salaries for professionals with at least five years of experience at $94,500 for ISC2 members. Factors driving growth include increased pressure on organizations to ensure secure business interactions coming from customers, strategic partners and regulatory bodies.

For more details, including how the Americas compares to the rest of the world, you can download the complete report.

Amy Schurr is the former managing features editor of Network World.