CRISC Job Trends, Salaries & Co-Occurring Skills in the South East

ISACA Certified in Risk and Information Systems Control (CRISC)
England > South East

The table below provides summary statistics for permanent job vacancies advertised in the South East with a requirement for CRISC qualifications. It includes a benchmarking guide to the salaries offered over the 6 months leading up to 11 January 2026, comparing them to the same period in the previous two years.

	6 months to 11 Jan 2026	Same period 2025	Same period 2024
Rank	254	292	264
Rank change year-on-year	+38	-28	+112
Permanent jobs citing CRISC	13	6	25
As % of all permanent jobs in the South East	0.13%	0.066%	0.28%
As % of the Qualifications category	0.40%	0.15%	0.73%
Number of salaries quoted	5	1	14
10^th Percentile	£47,500	-	£56,500
25^th Percentile	£51,250	£85,000	£56,750
Median annual salary (50^th Percentile)	£85,000	£90,000	£60,000
Median % change year-on-year	-5.56%	+50.00%	-7.69%
75^th Percentile	-	£95,000	£61,338
90^th Percentile	-	-	£62,000
England median annual salary	£76,000	£80,000	£75,000
% change year-on-year	-5.00%	+6.67%	-

All Academic and Professional Certifications
South East

CRISC falls under the Academic Qualifications and Professional Certifications category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring academic qualifications or professional certifications in the South East.

Permanent vacancies requiring academic qualifications or professional certifications	3,218	3,996	3,443
As % of all permanent jobs advertised in the South East	31.19%	44.17%	38.98%
Number of salaries quoted	1,365	1,755	2,120
10^th Percentile	£27,500	£35,000	£27,965
25^th Percentile	£36,250	£46,250	£36,250
Median annual salary (50^th Percentile)	£52,500	£60,000	£52,500
Median % change year-on-year	-12.50%	+14.29%	+0.96%
75^th Percentile	£66,250	£77,500	£67,500
90^th Percentile	£85,000	£85,750	£82,500
England median annual salary	£55,000	£60,000	£57,500
% change year-on-year	-8.33%	+4.35%	-

CRISC
Job Vacancy Trend in the South East

Historical trend showing the proportion of permanent IT job postings citing CRISC relative to all permanent IT jobs advertised in the South East.

CRISC
Salary Trend in the South East

Salary distribution trend for jobs in the South East citing CRISC.

CRISC
Salary Histogram in the South East

Salary distribution for jobs citing CRISC in the South East over the 6 months to 11 January 2026.

Salary histogram for CRISC in the South East

CRISC
Job Locations in the South East

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the South East region over the 6 months to 11 January 2026. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location	Rank Change on Same Period Last Year	Matching Permanent IT Job Ads	Median Salary Past 6 Months	Median Salary % Change on Same Period Last Year
Thames Valley	+6	5	£85,000	-
Middlesex	-	4	-	-
Buckinghamshire	-	3	£68,750	-
Berkshire	-1	2	£85,000	-
Surrey	-	2	£45,000	-
CRISC England

CRISC
Top 30 Co-Occurring Skills & Capabilities in the South East

For the 6 months to 11 January 2026, job vacancies citing CRISC also mentioned the following skills and capabilities in order of popularity. The figures indicate the absolute number of co-occurrences and as a proportion of all permanent job ads across the South East region with a requirement for CRISC.

1	13 (100.00%)	CISSP
1	13 (100.00%)	ISO/IEC 27001
2	11 (84.62%)	Risk Management
3	9 (69.23%)	CISM
3	9 (69.23%)	Information Security
3	9 (69.23%)	NIST
4	7 (53.85%)	Continuous Improvement
4	7 (53.85%)	Cyber Essentials
5	6 (46.15%)	Cybersecurity
5	6 (46.15%)	GRC
6	5 (38.46%)	Agile
6	5 (38.46%)	CGEIT
7	4 (30.77%)	Coaching
7	4 (30.77%)	Creative Thinking
7	4 (30.77%)	Cyber Essentials PLUS

7	4 (30.77%)	Data Protection
7	4 (30.77%)	GDPR
7	4 (30.77%)	ISO/IEC 27002 (supersedes ISO/IEC 17799)
7	4 (30.77%)	Mentoring
7	4 (30.77%)	OWASP
7	4 (30.77%)	Roadmaps
7	4 (30.77%)	Stakeholder Management
8	3 (23.08%)	CISA
8	3 (23.08%)	Cyber Assurance
8	3 (23.08%)	Data Collection
8	3 (23.08%)	ISO 27001 Lead Auditor
8	3 (23.08%)	Microsoft
8	3 (23.08%)	Microsoft Purview
8	3 (23.08%)	SAP
8	3 (23.08%)	SAP GRC

CRISC
Co-Occurring Skills & Capabilities in the South East by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Business Applications
1	3 (23.08%)	SAP GRC

Cloud Services
1	3 (23.08%)	Microsoft Purview
2	1 (7.69%)	AWS
2	1 (7.69%)	Azure
2	1 (7.69%)	GCP
2	1 (7.69%)	Microsoft 365
2	1 (7.69%)	SaaS

General
1	9 (69.23%)	Analytical Skills
2	7 (53.85%)	Social Skills
3	5 (38.46%)	Finance
4	2 (15.38%)	Documentation Skills
4	2 (15.38%)	Legal

Job Titles
1	7 (53.85%)	Analyst
2	6 (46.15%)	Security Analyst
3	4 (30.77%)	Risk Analyst
4	3 (23.08%)	Cybersecurity Analyst
4	3 (23.08%)	Information Analyst
4	3 (23.08%)	Security Risk Analyst
4	3 (23.08%)	Senior
4	3 (23.08%)	Senior Analyst
4	3 (23.08%)	Senior Cybersecurity Analyst
4	3 (23.08%)	Senior Risk Analyst
4	3 (23.08%)	Senior Security Analyst
5	2 (15.38%)	Information Security Analyst
5	2 (15.38%)	Risk Manager
5	2 (15.38%)	Security Assurance Manager
5	2 (15.38%)	Security Manager
6	1 (7.69%)	Business Information Analyst
6	1 (7.69%)	Coordinator
6	1 (7.69%)	Information Risk Analyst
6	1 (7.69%)	IT Analyst
6	1 (7.69%)	IT Security Analyst

Libraries, Frameworks & Software Standards
1	1 (7.69%)	SLSA

Miscellaneous
1	4 (30.77%)	Data Protection Act
1	4 (30.77%)	Security Posture
1	4 (30.77%)	Self-Motivation
2	1 (7.69%)	Cyber Threat
2	1 (7.69%)	Management Information System
2	1 (7.69%)	Onboarding

Processes & Methodologies
1	11 (84.62%)	Risk Management
2	9 (69.23%)	Information Security
3	7 (53.85%)	Continuous Improvement
4	6 (46.15%)	Cybersecurity
5	5 (38.46%)	Agile
6	4 (30.77%)	Coaching
6	4 (30.77%)	Creative Thinking
6	4 (30.77%)	Data Protection
6	4 (30.77%)	Mentoring
6	4 (30.77%)	OWASP
6	4 (30.77%)	Roadmaps
6	4 (30.77%)	Stakeholder Management
7	3 (23.08%)	Cyber Assurance
7	3 (23.08%)	Data Collection
7	3 (23.08%)	Vulnerability Management
8	2 (15.38%)	Collaborative Working
8	2 (15.38%)	Data Analysis
8	2 (15.38%)	Due Diligence
9	1 (7.69%)	Project Delivery
9	1 (7.69%)	Risk Register

Qualifications
1	13 (100.00%)	CISSP
2	9 (69.23%)	CISM
3	5 (38.46%)	CGEIT
4	3 (23.08%)	CISA
4	3 (23.08%)	ISO 27001 Lead Auditor
4	3 (23.08%)	SC Cleared
4	3 (23.08%)	Security Cleared
5	2 (15.38%)	(ISC)2 CCSP
5	2 (15.38%)	Cisco Certification
5	2 (15.38%)	ISO 27001 Lead Implementer

Quality Assurance & Compliance
1	13 (100.00%)	ISO/IEC 27001
2	9 (69.23%)	NIST
3	7 (53.85%)	Cyber Essentials
4	6 (46.15%)	GRC
5	4 (30.77%)	Cyber Essentials PLUS
5	4 (30.77%)	GDPR
5	4 (30.77%)	ISO/IEC 27002 (supersedes ISO/IEC 17799)
6	3 (23.08%)	Sarbanes-Oxley
7	2 (15.38%)	PCI DSS
8	1 (7.69%)	California Consumer Privacy Act
8	1 (7.69%)	COBIT
8	1 (7.69%)	ISO/IEC 27005
8	1 (7.69%)	SLA
8	1 (7.69%)	SOC 2

Vendors
1	3 (23.08%)	Microsoft
1	3 (23.08%)	SAP
1	3 (23.08%)	ServiceNow

ISACA Certified in Risk and Information Systems Control (CRISC)England > South East

All Academic and Professional CertificationsSouth East

CRISCJob Vacancy Trend in the South East

CRISCSalary Trend in the South East

CRISCSalary Histogram in the South East

CRISCJob Locations in the South East

CRISCTop 30 Co-Occurring Skills & Capabilities in the South East

CRISCCo-Occurring Skills & Capabilities in the South East by Category