ISACA Certified in Risk and Information Systems Control (CRISC)
UK

The table below provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. It includes a benchmarking guide to the salaries offered over the 6 months leading up to 2 April 2025, comparing them to the same period in the previous two years.

6 months to
2 Apr 2025
Same period 2024 Same period 2023
Rank 521 625 787
Rank change year-on-year +104 +162 +111
Permanent jobs citing CRISC 149 227 230
As % of all permanent jobs advertised in the UK 0.29% 0.24% 0.21%
As % of the Qualifications category 0.64% 0.88% 0.64%
Number of salaries quoted 70 187 184
10th Percentile £48,565 £39,750 £50,000
25th Percentile £58,750 £55,500 £55,000
Median annual salary (50th Percentile) £72,500 £68,500 £70,000
Median % change year-on-year +5.84% -2.14% -0.71%
75th Percentile £83,750 £85,000 £84,000
90th Percentile £84,000 £101,250 £101,000
UK excluding London median annual salary £62,500 £62,500 £65,000
% change year-on-year - -3.85% +1.23%

All Academic and Professional Certifications
UK

CRISC falls under the Academic Qualifications and Professional Certifications category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring academic qualifications or professional certifications.

Permanent vacancies requiring academic qualifications or professional certifications 23,387 25,822 35,998
As % of all permanent jobs advertised in the UK 46.27% 27.87% 32.55%
Number of salaries quoted 10,586 16,821 15,769
10th Percentile £32,500 £28,500 £31,250
25th Percentile £45,000 £38,750 £41,374
Median annual salary (50th Percentile) £55,000 £55,000 £57,500
Median % change year-on-year - -4.35% +4.55%
75th Percentile £70,000 £71,250 £77,500
90th Percentile £86,500 £87,500 £95,000
UK excluding London median annual salary £52,500 £50,000 £50,000
% change year-on-year +5.00% - -

CRISC
Job Vacancy Trend

Job postings citing CRISC as a proportion of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

3-month moving average salary quoted in jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

Salary distribution for jobs citing CRISC over the 6 months to 2 April 2025.

Salary histogram for CRISC in the UK

CRISC
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 2 April 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England +62 124 £73,375 +7.12% 161
UK excluding London +135 87 £62,500 - 110
London +54 62 £75,000 -6.25% 60
North of England +90 34 £55,000 +37.50% 28
North West +51 34 £55,000 +37.50% 16
Work from Home +112 29 £75,000 +13.64% 113
South East +93 20 £77,500 +37.78% 26
Scotland +139 19 - - 4
Midlands +56 5 £55,500 -26.00% 21
West Midlands +26 5 £55,500 -16.54% 13
Northern Ireland +41 3 £35,000 -39.13% 2
East of England +40 2 £61,961 -20.05% 15
Channel Islands +5 2 £78,750 -21.25%
South West +60 1 £51,422 -24.93% 15
Wales +43 1 £55,000 -5.17% 2

CRISC
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 3 (2.01%) CMS
2 1 (0.67%) Microsoft Exchange
2 1 (0.67%) Oracle Workflow
2 1 (0.67%) SharePoint
Applications
1 3 (2.01%) Microsoft Office
Cloud Services
1 14 (9.40%) Azure
2 8 (5.37%) AWS
3 4 (2.68%) Cloud Computing
4 3 (2.01%) Microsoft 365
5 2 (1.34%) GCP
6 1 (0.67%) Snowflake
Communications & Networking
1 5 (3.36%) Network Security
2 2 (1.34%) Firewall
2 2 (1.34%) Intrusion Detection
3 1 (0.67%) TCP/IP
3 1 (0.67%) VLAN
Database & Business Intelligence
1 1 (0.67%) Hadoop
1 1 (0.67%) HBase
1 1 (0.67%) NoSQL
Development Applications
1 1 (0.67%) Subversion
General
1 61 (40.94%) Finance
2 51 (34.23%) Social Skills
3 26 (17.45%) Legal
4 21 (14.09%) Analytical Skills
5 20 (13.42%) Presentation Skills
6 12 (8.05%) Banking
7 4 (2.68%) Public Sector
8 3 (2.01%) Inclusion and Diversity
8 3 (2.01%) Law
8 3 (2.01%) Organisational Skills
8 3 (2.01%) Retail Banking
9 2 (1.34%) Influencing Skills
10 1 (0.67%) Financial Institution
10 1 (0.67%) Retail
Job Titles
1 30 (20.13%) Risk Manager
2 27 (18.12%) Analyst
3 19 (12.75%) Senior
4 16 (10.74%) Security Manager
4 16 (10.74%) Technology Risk Manager
5 13 (8.72%) Senior Analyst
6 12 (8.05%) IT Manager
6 12 (8.05%) Risk Analyst
7 11 (7.38%) Security Analyst
8 10 (6.71%) Information Manager
8 10 (6.71%) Information Security Manager
9 9 (6.04%) Consultant
9 9 (6.04%) IT Risk Manager
9 9 (6.04%) Senior Risk Analyst
10 8 (5.37%) Information Officer
11 7 (4.70%) Risk Officer
12 6 (4.03%) Information Analyst
12 6 (4.03%) Risk Consultant
12 6 (4.03%) Senior Information Analyst
13 5 (3.36%) Compliance Advisor
Miscellaneous
1 30 (20.13%) Management Information System
2 14 (9.40%) Data Protection Act
3 10 (6.71%) Security Posture
4 9 (6.04%) Self-Motivation
5 6 (4.03%) Driving Licence
6 5 (3.36%) Analytical Mindset
7 4 (2.68%) Security Operations Centre
8 3 (2.01%) Freedom of Information
8 3 (2.01%) Freedom of Information Act
8 3 (2.01%) Online Banking
9 2 (1.34%) Cyber Threat
9 2 (1.34%) Hybrid Cloud
9 2 (1.34%) Industrial Internet of Things
9 2 (1.34%) Public Cloud
10 1 (0.67%) CCTV
10 1 (0.67%) Distributed Computing
10 1 (0.67%) Legacy Systems
10 1 (0.67%) Tandem
Operating Systems
1 1 (0.67%) Linux
1 1 (0.67%) Unix
1 1 (0.67%) Windows
Processes & Methodologies
1 124 (83.22%) Risk Management
2 98 (65.77%) Information Security
3 71 (47.65%) Cybersecurity
4 68 (45.64%) Stakeholder Management
5 58 (38.93%) Coaching
5 58 (38.93%) Continuous Improvement
6 51 (34.23%) Decision-Making
7 23 (15.44%) Stakeholder Engagement
8 21 (14.09%) Agile
8 21 (14.09%) Data Protection
9 19 (12.75%) OWASP
9 19 (12.75%) Service Delivery
10 18 (12.08%) Internal Audit
10 18 (12.08%) Vulnerability Management
11 17 (11.41%) Security Operations
12 16 (10.74%) Due Diligence
13 15 (10.07%) Mentoring
13 15 (10.07%) Quantitative Risk Management
14 13 (8.72%) Computer Science
14 13 (8.72%) Risk Assessment
Programming Languages
1 6 (4.03%) R
2 2 (1.34%) Kusto Query Language
2 2 (1.34%) PowerShell
3 1 (0.67%) C#
3 1 (0.67%) C++
3 1 (0.67%) Java
3 1 (0.67%) Python
3 1 (0.67%) SQL
3 1 (0.67%) VBA
Qualifications
1 89 (59.73%) CISSP
2 88 (59.06%) CISM
3 47 (31.54%) Degree
4 28 (18.79%) CISA
5 8 (5.37%) ISO 27001 Lead Auditor
5 8 (5.37%) SC Cleared
5 8 (5.37%) Security Cleared
6 6 (4.03%) GSLC
7 5 (3.36%) ISO 27001 Lead Implementer
8 3 (2.01%) (ISC)2 CCSP
8 3 (2.01%) CEH
8 3 (2.01%) Cisco Certification
8 3 (2.01%) CISMP
8 3 (2.01%) GIAC
8 3 (2.01%) Master's Degree
9 2 (1.34%) CCSP
9 2 (1.34%) Computer Science Degree
9 2 (1.34%) GCIH
9 2 (1.34%) GISF
9 2 (1.34%) SSCP
Quality Assurance & Compliance
1 72 (48.32%) NIST
2 63 (42.28%) COBIT
3 57 (38.26%) ISO/IEC 27001
4 43 (28.86%) GRC
5 23 (15.44%) GDPR
6 22 (14.77%) Sarbanes-Oxley
7 21 (14.09%) PCI DSS
8 19 (12.75%) Cyber Essentials
9 18 (12.08%) ITGC
10 11 (7.38%) Cyber Essentials PLUS
11 10 (6.71%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
11 10 (6.71%) SOC 2
12 3 (2.01%) NCSC
13 2 (1.34%) NIST 800
14 1 (0.67%) COSO
14 1 (0.67%) ISO/IEC 27005
System Software
1 1 (0.67%) Docker
1 1 (0.67%) HDFS
Vendors
1 7 (4.70%) Microsoft
2 2 (1.34%) Google
2 2 (1.34%) Oracle
2 2 (1.34%) VMware
3 1 (0.67%) Fortinet
3 1 (0.67%) Sybase
3 1 (0.67%) Veeam