ISACA Certified in Risk and Information Systems Control (CRISC)
UK

The table below provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. It includes a benchmarking guide to the salaries offered over the 6 months leading up to 26 April 2025, comparing them to the same period in the previous two years.

6 months to
26 Apr 2025
Same period 2024 Same period 2023
Rank 542 671 758
Rank change year-on-year +129 +87 +133
Permanent jobs citing CRISC 145 226 237
As % of all permanent jobs advertised in the UK 0.28% 0.23% 0.23%
As % of the Qualifications category 0.58% 0.83% 0.69%
Number of salaries quoted 61 186 192
10th Percentile £50,894 £41,250 £47,750
25th Percentile £62,500 £56,250 £55,000
Median annual salary (50th Percentile) £74,249 £68,500 £70,000
Median % change year-on-year +8.39% -2.14% -
75th Percentile £83,750 £85,000 £82,500
90th Percentile £92,500 £103,125 £102,000
UK excluding London median annual salary £65,000 £65,000 £62,500
% change year-on-year - +4.00% -1.46%

All Academic and Professional Certifications
UK

CRISC falls under the Academic Qualifications and Professional Certifications category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring academic qualifications or professional certifications.

Permanent vacancies requiring academic qualifications or professional certifications 24,916 27,326 34,428
As % of all permanent jobs advertised in the UK 48.28% 27.84% 32.74%
Number of salaries quoted 11,164 17,300 15,366
10th Percentile £32,500 £28,250 £31,250
25th Percentile £44,000 £38,500 £41,750
Median annual salary (50th Percentile) £55,000 £54,000 £57,825
Median % change year-on-year +1.85% -6.61% +5.14%
75th Percentile £68,750 £71,000 £77,500
90th Percentile £85,000 £87,500 £95,000
UK excluding London median annual salary £51,850 £50,000 £50,000
% change year-on-year +3.70% - -

CRISC
Job Vacancy Trend

Job postings citing CRISC as a proportion of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

3-month moving average salary quoted in jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

Salary distribution for jobs citing CRISC over the 6 months to 26 April 2025.

Salary histogram for CRISC in the UK

CRISC
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 26 April 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England +85 120 £74,249 +8.39% 129
UK excluding London +153 82 £65,000 - 61
London +99 63 £75,000 -6.25% 74
Work from Home +111 26 £73,750 +15.69% 45
North of England +72 25 £65,000 +62.50% 25
North West +33 25 £65,000 +62.50% 19
South East +113 24 £71,250 +50.00% 9
Scotland +152 19 - - 5
Midlands +65 5 £55,500 -26.00% 8
West Midlands +63 5 £55,500 -16.54% 7
Northern Ireland +40 3 £35,000 -39.13%
East of England +51 2 £61,961 -20.05% 3
Channel Islands +2 2 £78,750 -21.25%
South West +62 1 £51,422 -24.93% 11
Wales +44 1 £55,000 -5.17%

CRISC
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 3 (2.07%) CMS
2 1 (0.69%) Microsoft Exchange
2 1 (0.69%) Oracle Workflow
2 1 (0.69%) SharePoint
Applications
1 4 (2.76%) Microsoft Office
2 2 (1.38%) Microsoft Excel
3 1 (0.69%) Microsoft PowerPoint
3 1 (0.69%) MS Visio
Cloud Services
1 8 (5.52%) AWS
1 8 (5.52%) Azure
2 4 (2.76%) Cloud Computing
3 3 (2.07%) Microsoft 365
4 2 (1.38%) GCP
4 2 (1.38%) IaaS
4 2 (1.38%) SaaS
5 1 (0.69%) Snowflake
Communications & Networking
1 5 (3.45%) Network Security
2 1 (0.69%) Firewall
2 1 (0.69%) Intranet
2 1 (0.69%) Intrusion Detection
Database & Business Intelligence
1 1 (0.69%) Hadoop
1 1 (0.69%) HBase
1 1 (0.69%) NoSQL
Development Applications
1 1 (0.69%) Subversion
General
1 64 (44.14%) Finance
2 44 (30.34%) Social Skills
3 27 (18.62%) Legal
4 20 (13.79%) Analytical Skills
4 20 (13.79%) Presentation Skills
5 11 (7.59%) Banking
6 5 (3.45%) Inclusion and Diversity
7 4 (2.76%) Public Sector
8 3 (2.07%) Influencing Skills
8 3 (2.07%) Law
8 3 (2.07%) Organisational Skills
8 3 (2.07%) Retail Banking
9 1 (0.69%) Retail
Job Titles
1 33 (22.76%) Risk Manager
2 27 (18.62%) Analyst
3 19 (13.10%) Senior
4 16 (11.03%) Technology Risk Manager
5 13 (8.97%) Security Manager
5 13 (8.97%) Senior Analyst
6 12 (8.28%) Risk Analyst
7 11 (7.59%) Security Analyst
8 10 (6.90%) Information Manager
8 10 (6.90%) Information Security Manager
9 9 (6.21%) IT Manager
9 9 (6.21%) IT Risk Manager
9 9 (6.21%) Senior Risk Analyst
10 8 (5.52%) Consultant
10 8 (5.52%) Information Officer
11 7 (4.83%) Risk Officer
12 6 (4.14%) Information Analyst
12 6 (4.14%) Risk Consultant
12 6 (4.14%) Senior Information Analyst
13 5 (3.45%) Compliance Advisor
Miscellaneous
1 31 (21.38%) Management Information System
2 11 (7.59%) Self-Motivation
3 8 (5.52%) Data Protection Act
4 7 (4.83%) Security Posture
5 5 (3.45%) Analytical Mindset
6 4 (2.76%) Security Operations Centre
7 3 (2.07%) Online Banking
8 2 (1.38%) Cyber Threat
8 2 (1.38%) Hybrid Cloud
8 2 (1.38%) Public Cloud
9 1 (0.69%) CCTV
9 1 (0.69%) Industrial Internet of Things
9 1 (0.69%) Legacy Systems
9 1 (0.69%) Tandem
Operating Systems
1 1 (0.69%) Linux
1 1 (0.69%) Unix
1 1 (0.69%) Windows
Processes & Methodologies
1 120 (82.76%) Risk Management
2 93 (64.14%) Information Security
3 70 (48.28%) Stakeholder Management
4 65 (44.83%) Cybersecurity
5 64 (44.14%) Continuous Improvement
6 61 (42.07%) Coaching
7 49 (33.79%) Decision-Making
8 23 (15.86%) Agile
8 23 (15.86%) Stakeholder Engagement
9 22 (15.17%) OWASP
10 20 (13.79%) Internal Audit
11 19 (13.10%) Mentoring
11 19 (13.10%) Vulnerability Management
12 18 (12.41%) Due Diligence
12 18 (12.41%) Quantitative Risk Management
12 18 (12.41%) Security Operations
12 18 (12.41%) Service Delivery
13 16 (11.03%) Creative Thinking
13 16 (11.03%) Regulatory Compliance
14 15 (10.34%) Risk Assessment
Programming Languages
1 6 (4.14%) R
2 2 (1.38%) Kusto Query Language
2 2 (1.38%) PowerShell
3 1 (0.69%) C#
3 1 (0.69%) C++
3 1 (0.69%) Java
3 1 (0.69%) Python
3 1 (0.69%) SQL
3 1 (0.69%) VBA
Qualifications
1 85 (58.62%) CISSP
2 84 (57.93%) CISM
3 39 (26.90%) Degree
4 25 (17.24%) CISA
5 8 (5.52%) ISO 27001 Lead Auditor
6 5 (3.45%) ISO 27001 Lead Implementer
6 5 (3.45%) SANS
7 3 (2.07%) (ISC)2 CCSP
7 3 (2.07%) Cisco Certification
7 3 (2.07%) CISMP
7 3 (2.07%) ISACA
7 3 (2.07%) Master's Degree
8 2 (1.38%) CCSP
8 2 (1.38%) CEH
8 2 (1.38%) CompTIA Security+
8 2 (1.38%) FFIEC
8 2 (1.38%) GCIH
8 2 (1.38%) GIAC
8 2 (1.38%) GISF
8 2 (1.38%) SSCP
Quality Assurance & Compliance
1 63 (43.45%) COBIT
2 62 (42.76%) NIST
3 55 (37.93%) ISO/IEC 27001
4 41 (28.28%) GRC
5 21 (14.48%) Sarbanes-Oxley
6 20 (13.79%) Cyber Essentials
7 18 (12.41%) ITGC
8 17 (11.72%) PCI DSS
9 16 (11.03%) GDPR
10 12 (8.28%) SOC 2
11 11 (7.59%) Cyber Essentials PLUS
12 10 (6.90%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
13 4 (2.76%) NIST 800
14 2 (1.38%) Accessibility
14 2 (1.38%) Actionable Recommendations
14 2 (1.38%) NCSC
15 1 (0.69%) COSO
15 1 (0.69%) Data Quality
15 1 (0.69%) ISO/IEC 27005
System Software
1 1 (0.69%) Docker
1 1 (0.69%) HDFS
Systems Management
1 1 (0.69%) Computer Emergency Response Teams
1 1 (0.69%) RSA Archer
Vendors
1 8 (5.52%) Microsoft
2 2 (1.38%) Google
2 2 (1.38%) Oracle
2 2 (1.38%) VMware
3 1 (0.69%) Fortinet
3 1 (0.69%) Sybase
3 1 (0.69%) Veeam