A closer look at salaries for ISC2 certification holders

Cybersecurity jobs are among the most in-demand today, and this doesn’t seem to be slowing down any time soon. The U.S. Bureau of Labor Statistics predicts the availability of Information Security Analyst roles to grow 32% by 2032, much faster than the average rate of other jobs at 3%. The ISC2 Cybersecurity Workforce Study found the current global workforce gap of cybersecurity talent needed to protect organizations is nearly four million professionals. It’s no wonder that interest in the cyber profession is growing. Not only is there an increasing need for information defenders, but those currently in cybersecurity roles are reporting higher-than-average salaries.

How do cyber salaries impact organizations?

Offering sufficient compensation plays a big part in an organization’s security posture. According to our study, 58% of cybersecurity workers in organizations that don’t offer a competitive salary say they experience a skills gap because of their struggle to retain staff. In comparison, only 38% of those at organizations paying competitive wages reported skills gaps. Overall, 48% of organizations that don’t offer competitive salaries have significant skills gaps, compared with just 31% of those that offer competitive compensation.

Among cyber newcomers under the age of 30, the potential for high pay is tied with the thought that the work would be enjoyable when it comes to the top motivating factors for entering the field. Study participants of all ages ranked their top reasons for entering the profession as: career advancement opportunities (27%), high demand for skills (25%), thinking they would enjoy the work (25%) and enjoying previous cybersecurity work (24%).

ISC2 certification global average salary

ISC2 certifications validate that holders possess the advanced technical skills and knowledge to meet the challenges of cybersecurity work. Let’s compare the average salaries earned by those who hold one – or more – of our advanced certifications. Salaries shown are from self-reported responses to the ISC2 Cybersecurity Workforce Study. Shown in U.S. dollars, the salaries range from about $95,000–$120,000.

Systems Security Certified Practitioner (SSCP)1-Year Experience Requirement

Certified in Governance, Risk and Compliance (CGRC)2-Year Experience Requirement

Certified Secure Software Lifecycle Professional (CSSLP)4-Year Experience Requirement

  • CSSLP Global Average Salary: $115,803
    • Asia-Pacific $84,864
    • Europe $138,242
    • Latin America $93,733
    • Middle East and Africa $53,808
    • North America $147,375

Certified Cloud Security Professional (CCSP)5-Year Experience Requirement

Certified Information Systems Security Professional (CISSP)5-Year Experience Requirement

Information Systems Security Management Professional (ISSMP)7-Year Experience Requirement

Information Systems Security Engineering Professional (ISSEP)7-Year Experience Requirement

Information Systems Security Architecture Professional (ISSAP)7-Year Experience Requirement

Note: Data for the Certified in Cybersecurity (CC), the entry-level certification from ISC2, is not yet available. The average salaries are provided for ISC2 certifications above when at least 50 valid responses are available in the region.

Learn more

Research methodology and disclaimer

Globally, 14,865 people took part in the latest ISC2 Cybersecurity Workforce Survey.

There are many variables that may contribute to an individual’s salary attainment, including country, region, industry, years of experience, level within an organization, individual performance, an employer’s hiring and compensation practices and more. The information shared should not be considered a guaranteed or estimated salary for all candidates earning ISC2 certifications. Survey, response panels and research methodology vary across all the sources cited above. Average salaries based on ISC2 Cybersecurity Workforce Study data are provided when there are a minimum of 50 valid responses, which are not available for all regions for all certifications.