CRISC Contracts, Trends & Contractor Rates

ISACA Certified in Risk and Information Systems Control (CRISC)
UK

The table below provides summary statistics for contract job vacancies with a requirement for CRISC qualifications. It includes a benchmarking guide to the contractor rates offered over the 6 months leading up to 30 April 2025, comparing them to the same period in the previous two years.

Location	6 months to 30 Apr 2025	Same period 2024	Same period 2023
Rank	450	530	557
Rank change year-on-year	+80	+27	+131
Contract jobs citing CRISC	69	70	156
As % of all contract jobs advertised in the UK	0.24%	0.16%	0.26%
As % of the Qualifications category	0.77%	0.52%	0.96%
Number of daily rates quoted	40	46	116
10^th Percentile	£421	£421	£469
25^th Percentile	£529	£488	£550
Median daily rate (50^th Percentile)	£614	£563	£650
Median % change year-on-year	+9.11%	-13.46%	+8.33%
75^th Percentile	£675	£825	£741
90^th Percentile	£950	£875	£788
UK excluding London median daily rate	£535	£475	£550
% change year-on-year	+12.53%	-13.64%	-8.33%
Number of hourly rates quoted	4	0	1
10^th Percentile	£73.12	-	-
25^th Percentile	£79.60	-	£39.25
Median hourly rate	£83.20	-	£40.50
75^th Percentile	£86.15	-	£41.75
90^th Percentile	£91.46	-	-
UK excluding London median hourly rate	£83.20	-	-

All Academic and Professional Certifications
UK

CRISC falls under the Academic Qualifications and Professional Certifications category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring academic qualifications or professional certifications.

Contract vacancies requiring academic qualifications or professional certifications	8,989	13,363	16,304
As % of all contract IT jobs advertised in the UK	30.75%	30.65%	27.32%
Number of daily rates quoted	5,678	8,219	10,866
10^th Percentile	£288	£300	£325
25^th Percentile	£413	£425	£450
Median daily rate (50^th Percentile)	£525	£535	£550
Median % change year-on-year	-1.87%	-2.73%	+4.76%
75^th Percentile	£625	£650	£650
90^th Percentile	£707	£738	£743
UK excluding London median daily rate	£501	£530	£530
% change year-on-year	-5.57%	-	+6.00%
Number of hourly rates quoted	516	1,077	849
10^th Percentile	£18.13	£13.87	£15.25
25^th Percentile	£22.00	£17.88	£20.00
Median hourly rate	£40.72	£40.00	£54.00
Median % change year-on-year	+1.79%	-25.93%	+29.75%
75^th Percentile	£66.00	£61.60	£68.25
90^th Percentile	£80.34	£75.25	£80.00
UK excluding London median hourly rate	£45.00	£40.94	£49.57
% change year-on-year	+9.92%	-17.41%	+55.44%

CRISC
Job Vacancy Trend

Job postings citing CRISC as a proportion of all IT jobs advertised.

CRISC
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing CRISC.

CRISC
Daily Rate Histogram

Daily rate distribution for jobs citing CRISC over the 6 months to 30 April 2025.

Daily rate histogram for CRISC in the UK

CRISC
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing CRISC.

CRISC
Hourly Rate Histogram

Hourly rate distribution of jobs citing CRISC over the 6 months to 30 April 2025.

Hourly rate histogram for CRISC in the UK

CRISC
Top 12 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing CRISC within the UK over the 6 months to 30 April 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location	Rank Change on Same Period Last Year	Matching Contract IT Job Ads	Median Daily Rate Past 6 Months	Median Daily Rate % Change on Same Period Last Year	Live Jobs
England	+59	54	£600	+4.35%	75
London	+40	42	£640	-14.67%	36
UK excluding London	+49	19	£535	+12.53%	42
Work from Home	+45	15	£625	+21.95%	21
Scotland	+9	5	£526	-	4
South West	+43	4	£538	+13.16%	6
South East	+38	4	£600	+20.00%	8
North of England	+28	2	£534	+33.50%	14
Midlands	+24	2	-	-	7
North East	-	2	£534	-
Northern Ireland	-	2	-	-
East Midlands	-	2	-	-	1

CRISC
Top 30 Co-occurring Skills and Capabilities

For the 6 months to 30 April 2025, contractor job vacancies citing CRISC also mentioned the following skills and capabilities in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for CRISC.

1	54 (78.26%)	CISSP
2	49 (71.01%)	CISM
3	48 (69.57%)	Risk Management
4	36 (52.17%)	Social Skills
5	33 (47.83%)	ISO/IEC 27001
6	32 (46.38%)	Finance
6	32 (46.38%)	NIST
7	28 (40.58%)	CISA
8	25 (36.23%)	Stakeholder Management
8	25 (36.23%)	Information Security
9	24 (34.78%)	Cybersecurity
10	19 (27.54%)	Degree
11	16 (23.19%)	Incident Response
11	16 (23.19%)	Security Posture
12	15 (21.74%)	Azure

13	14 (20.29%)	Cisco Certification
13	14 (20.29%)	Risk Assessment
13	14 (20.29%)	GDPR
14	12 (17.39%)	(ISC)2 CCSP
14	12 (17.39%)	GRC
14	12 (17.39%)	Security Architecture
15	10 (14.49%)	HIPAA
15	10 (14.49%)	Computer Science
15	10 (14.49%)	Microsoft
15	10 (14.49%)	Cloud Security
15	10 (14.49%)	Problem-Solving
16	9 (13.04%)	Analytical Skills
16	9 (13.04%)	Legal
16	9 (13.04%)	AWS
17	8 (11.59%)	Continuous Improvement

CRISC
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Applications
Cloud Services
Communications & Networking
Database & Business Intelligence
Development Applications
General
Job Titles
Libraries, Frameworks & Software Standards
Miscellaneous
Operating Systems
Processes & Methodologies
Programming Languages
Qualifications
Quality Assurance & Compliance
System Software
Systems Management
Vendors

Applications
1	1 (1.45%)	Microsoft Excel
1	1 (1.45%)	Microsoft Office
1	1 (1.45%)	Microsoft PowerPoint

Cloud Services
1	15 (21.74%)	Azure
2	9 (13.04%)	AWS
3	5 (7.25%)	IaaS
3	5 (7.25%)	PaaS
3	5 (7.25%)	SaaS
4	4 (5.80%)	Azure Sentinel
5	3 (4.35%)	Entra ID
5	3 (4.35%)	GCP
6	2 (2.90%)	Microsoft 365

Communications & Networking
1	6 (8.70%)	Firewall
2	3 (4.35%)	Network Security
2	3 (4.35%)	VPN

Database & Business Intelligence
1	1 (1.45%)	Oracle Database

Development Applications
1	1 (1.45%)	GitLab
1	1 (1.45%)	Jenkins

General
1	36 (52.17%)	Social Skills
2	32 (46.38%)	Finance
3	9 (13.04%)	Analytical Skills
3	9 (13.04%)	Legal
4	5 (7.25%)	Banking
5	4 (5.80%)	Presentation Skills
6	3 (4.35%)	Retail Banking
6	3 (4.35%)	Telecoms
7	2 (2.90%)	Inclusion and Diversity
8	1 (1.45%)	Documentation Skills
8	1 (1.45%)	Influencing Skills
8	1 (1.45%)	Public Sector
8	1 (1.45%)	Publishing

Job Titles
1	20 (28.99%)	Consultant
2	15 (21.74%)	Security Consultant
3	12 (17.39%)	Senior
4	10 (14.49%)	IT Manager
5	9 (13.04%)	Architect
5	9 (13.04%)	Security Architect
5	9 (13.04%)	Security Manager
6	8 (11.59%)	Information Security Consultant
6	8 (11.59%)	IT Risk Manager
6	8 (11.59%)	Risk Manager
7	7 (10.14%)	Information Manager
7	7 (10.14%)	Information Security Manager
8	5 (7.25%)	Analyst
8	5 (7.25%)	Senior Consultant
9	4 (5.80%)	Information Security Engineer
9	4 (5.80%)	Security Engineer
9	4 (5.80%)	Senior Architect
9	4 (5.80%)	Senior Security Architect
10	3 (4.35%)	Business Analyst
11	2 (2.90%)	Senior Manager

Libraries, Frameworks & Software Standards
1	3 (4.35%)	SailPoint

Miscellaneous
1	16 (23.19%)	Security Posture
2	5 (7.25%)	Management Information System
2	5 (7.25%)	Operational Technology
2	5 (7.25%)	PKI
3	3 (4.35%)	Cyberattack
3	3 (4.35%)	Enterprise Software
3	3 (4.35%)	Product Ownership
4	2 (2.90%)	Cyber Threat
5	1 (1.45%)	Onboarding
5	1 (1.45%)	Self-Motivation

Operating Systems
1	4 (5.80%)	Windows
2	3 (4.35%)	Windows Server
3	1 (1.45%)	Linux

Processes & Methodologies
1	48 (69.57%)	Risk Management
2	25 (36.23%)	Information Security
2	25 (36.23%)	Stakeholder Management
3	24 (34.78%)	Cybersecurity
4	16 (23.19%)	Incident Response
5	14 (20.29%)	Risk Assessment
6	12 (17.39%)	Security Architecture
7	10 (14.49%)	Cloud Security
7	10 (14.49%)	Computer Science
7	10 (14.49%)	Problem-Solving
8	8 (11.59%)	Continuous Improvement
9	7 (10.14%)	Remediation Plan
10	6 (8.70%)	Identity Access Management
10	6 (8.70%)	ITIL
10	6 (8.70%)	Regulatory Change
10	6 (8.70%)	Stakeholder Engagement
10	6 (8.70%)	Vulnerability Management
11	5 (7.25%)	Change Management
11	5 (7.25%)	GAP Analysis
11	5 (7.25%)	Project Management

Programming Languages
1	3 (4.35%)	PowerShell
2	1 (1.45%)	SQL

Qualifications
1	54 (78.26%)	CISSP
2	49 (71.01%)	CISM
3	28 (40.58%)	CISA
4	19 (27.54%)	Degree
5	14 (20.29%)	Cisco Certification
6	12 (17.39%)	(ISC)2 CCSP
7	6 (8.70%)	GIAC
7	6 (8.70%)	Security Cleared
8	5 (7.25%)	CCSK
8	5 (7.25%)	CompTIA Security+
8	5 (7.25%)	Computer Science Degree
8	5 (7.25%)	ISO 27001 Lead Auditor
8	5 (7.25%)	SANS
9	4 (5.80%)	AWS Certification
9	4 (5.80%)	Azure Certification
9	4 (5.80%)	PMP
9	4 (5.80%)	SC Cleared
10	3 (4.35%)	Microsoft Certification
10	3 (4.35%)	PMI Certification
11	2 (2.90%)	CCSP

Quality Assurance & Compliance
1	33 (47.83%)	ISO/IEC 27001
2	32 (46.38%)	NIST
3	14 (20.29%)	GDPR
4	12 (17.39%)	GRC
5	10 (14.49%)	HIPAA
6	8 (11.59%)	Sarbanes-Oxley
7	7 (10.14%)	PCI DSS
8	5 (7.25%)	ISO/IEC 27005
8	5 (7.25%)	ITGC
8	5 (7.25%)	NIST 800
8	5 (7.25%)	SOC 2
9	4 (5.80%)	COBIT
9	4 (5.80%)	Cyber Essentials
10	2 (2.90%)	California Consumer Privacy Act
10	2 (2.90%)	SOX 404
11	1 (1.45%)	COSO
11	1 (1.45%)	Cyber Essentials PLUS
11	1 (1.45%)	EU AI Act

System Software
1	3 (4.35%)	Active Directory
2	1 (1.45%)	Docker

Systems Management
1	4 (5.80%)	Microsoft Intune
2	3 (4.35%)	Kubernetes
3	1 (1.45%)	Puppet

Vendors
1	10 (14.49%)	Microsoft
2	3 (4.35%)	CyberArk
2	3 (4.35%)	SAP
2	3 (4.35%)	Zscaler
3	2 (2.90%)	Oracle

ISACA Certified in Risk and Information Systems Control (CRISC)UK

All Academic and Professional CertificationsUK

CRISCJob Vacancy Trend

CRISCContractor Daily Rate Trend

CRISCDaily Rate Histogram

CRISCContractor Hourly Rate Trend

CRISCHourly Rate Histogram

CRISCTop 12 Contract Locations

CRISCTop 30 Co-occurring Skills and Capabilities

CRISCCo-occurring Skills and Capabilities by Category