Statistics You Should Know About CISSP Certification
Before pursuing CISSP certification, familiarizing yourself with some statistics about the number of holders, average salaries, and career prospects of CISSP can make it easier for you to decide if the certification is the right step for your career.
In this guide, we’ll show you some interesting numbers and figures about CISSP. Continue reading to learn more!
What Is CISSP Certification?
- Security and Risk Management
- Asset Security
- Security Architecture and Engineering
- Communications and Network Security
- Identity and Access Management
- Security Assessment and Testing
- Security Operations
- Software Development Security
Applicants must meet the eligibility criteria to apply and pass the certification exam with a passing degree to earn the certification.
One of the things that make CISSP certification valuable is that it’s compliant with the requirements of the U.S. Department of Defense (DoD) 8570 IAM Level II/III, IAT Level III, and IASAE Level I/II, as well as the ANSI/ISO/IEC 17024 standard.
How Much Do CISSP Professionals Earn on Average?
On Payscale.com, the average annual CISSP salary in the United States is $115,082.
As for Global Knowledge, their figures are somewhat different. The estimated average CISSP certification salary is $121,923 per year. However, the sample size isn’t big enough, which is why it wasn’t included in Global Knowledge’s top 15 list.
We can also take a look at the average annual salary for jobs that require CISSP certification from Payscale.com below:
- Information Security Analyst: $60,501 to $116,527
- Chief Information Security Officer: $106,727 to $203,345
- Information Security Manager: $81,930 to $140,311
- IT Security Architect: $90,834 to $153,280
- Security Engineer: $70,103 to $127,095
Indeed.com also has some numbers that can help you get a better idea about how much each CISSP job can help you make:
- IT Security Manager: $120,000
- Information Security Engineer: $95,181
- Security Architect: $128,000
- Security Program Manager: $97,000
- IT Security Architect: $124,214
Glassdoor.com also has its own figures when it comes to information security salary prospects at different companies. Based on data published by the platform, the average CISSP salary per year for certain job titles in high-profile companies is as follows:
- Information Security Specialist II (at Lowe’s): $77,041
- Information Security Engineer (at Wells Fargo): $113,261
- Information Security Analyst (at Tata Consultancy Services): $66,196
- Senior Information Security Engineer (at Booz Allen Hamilton): $114,528
- Information Security Engineer (at Lockheed Martin): $96,895
Why CISSP Professionals Are in High Demand
According to a Cybersecurity Workforce Study published by (ISC)2, there’s a global shortage of more than 2.9 million men and women in the cyber workforce domain. This means that getting certified can make you stand out among your peers and help you secure high-earning jobs faster.
Not to mention, even after you earn your CISSP certification, you can continue learning with a CISSP concentration, such as CISSP-ISSMP for Management, CISSP-ISSEP for Engineers, and CISSP-ISSAP for Architects, giving you a competitive edge in specific domains.
How Many People Hold the CISSP Certification in the World?
Country |
Number of CISSP Holders |
United States |
94320 |
United Kingdom |
8226 |
Hong Kong |
1960 |
Australia |
3169 |
India |
3156 |
China |
3866 |
Japan |
3339 |
Switzerland |
1087 |
Germany |
2727 |
Canada |
6632 |
Spain |
819 |
Netherlands |
2908 |
Poland |
725 |
Is CISSP Certification a Good Investment?
Not to mention, the CISSP certification must be renewed every 3 years. Yes, you’ll pay a small fee, but since you need to continue learning and develop your skills to earn the credits required for renewal, you’ll stay competitive in your industry and maximize your earning potential.
CISSP Salary Based on Location, Job Role, and Years of Experience
CISSP Salaries in the United States
Job Title |
Job Title Average |
0-4 Years of Experience |
5-10 Years of Experience |
10+ Years of Experience |
Information Security Manager |
$118,405
|
$84,000 - $95,000 |
$115,000 - $121,000 |
$122,000+ |
Chief Information Security Officer
|
$165,291
|
$106,000 - $125,000 |
$126,000 - $132,000 |
$180,000+ |
Information Security Analyst |
$73,135
|
$60,000 - $70,000 |
$82,000 - $95,000 |
$106,000+ |
Security Architect |
$125,841
|
$79,000 - $94,000 |
$120,000 - $130,000 |
$170,000+ |
Security Engineer |
$94,774
|
$70,000 - $85,000 |
$100,000 - $110,000 |
$115,000+ |
Information Security Officer
|
$93,244
|
$68,000 - $76,000 |
$80,000 - $92,000 |
$100,000+ |
Information Security Engineer |
$93,898
|
$67,000 - $83,000 |
$85,000 - $100,000 |
$115,000+ |
CISSP Salaries in the United Kingdom
Job Title |
Job Title Average |
0-4 Years of Experience |
5-10 Years of Experience |
10+ Years of Experience |
Information Security Manager |
£50,000 |
£40,000 - £46,000 |
£50,000 - £76,000 |
£80,000+ |
Chief Information Security Officer
|
£90,000 |
£70,000 - £73,000 |
£75,000 - £95,000 |
£105,000+ |
Information Security Analyst |
£33,000 |
£25,000 - £31,000 |
£33,000 - £45,000 |
£60,000+ |
Security Architect |
£60,000 |
£55,000 - £60,000 |
£62,000 - £65,000 |
£70,000+ |
Security Engineer |
£42,000 |
£30,000 - £40,000 |
£45,000 - £60,000 |
£70,000+ |
Information Security Officer
|
£43,000 |
£35,000 - £45,000 |
£44,000 - £57,000 |
£60,000+ |
Information Security Engineer |
£45,000 |
£38,000 - £48,000 |
£50,000 - £60,000 |
£70,000+ |
CISSP Salaries in Canada
Job Title |
Job Title Average |
0-4 Years of Experience |
5-10 Years of Experience |
10+ Years of Experience |
Information Security Manager |
C$105,000 |
C$95,000 - C$105,000 |
C$106,000 - C$120,000 |
C$125,000+ |
Chief Information Security Officer
|
C$85,000 |
C$70,000 - C$75,000 |
C$77,000 - C$95,000 |
C$100,000+ |
Information Security Analyst |
C$70,000 |
C$59,000 - C$62,000 |
C$64,000- C$73,000 |
C$75,000+ |
Security Architect |
C$110,000 |
C$70,000 - C$81,000 |
C$83,000 - C$99,000 |
C$105,000+ |
Security Engineer |
C$91,000 |
C$69,000 - C$77,000 |
C$80,000 - C$95,000 |
C$100,000+ |
Information Security Officer
|
C$73,000 |
C$59,000 - C$65,000 |
C$ 67,000- C$75,000 |
C$90,000+ |
Information Security Engineer |
C$85,000 |
C$62,000- C$70,000 |
C$73,000 - C$90,000 |
C$102,000+ |
CISSP Salaries in India
Job Title |
Job Title Average |
0-4 Years of Experience |
5-10 Years of Experience |
10+ Years of Experience |
Information Security Manager |
Rs 1,500 ,000 |
Rs 1,100,000 - Rs 1,300,000 |
Rs 1,350,000 - Rs 1,600,000 |
Rs 1,700,000+ |
Chief Information Security Officer
|
Rs 2,200,000 |
Rs 1,800,000 - Rs 2,000,000 |
Rs 2,100,000 - Rs 2,300,000 |
Rs 2,400,000+ |
Information Security Analyst |
Rs 570,000 |
Rs 490,000 - Rs 520,000 |
Rs 530,000 - Rs 662,000 |
Rs 700,000+ |
Security Architect |
Rs 2,200,000 |
Rs 1,700,000- Rs 1,900,000 |
Rs 1,950,000 - Rs 2,300,000 |
Rs 2,500,000+ |
Security Engineer |
Rs 850,000 |
Rs 650,000 - Rs 700,000 |
Rs 730,000 - Rs 900,000 |
Rs 1,000,000+ |
Information Security Officer
|
Rs 1,900,000 |
Rs 1,600,000 - Rs 1,750,000 |
Rs 1,800,000 - Rs 2,000,000 |
Rs 2,200,000+ |
Information Security Engineer |
Rs 2,000,000 |
Rs 1,600,000 - Rs 1,750,000 |
Rs 1,800,000 - Rs 2,100,000 |
Rs 2,300,000+ |
CISSP Salaries in Singapore
Job Title |
Job Title Average |
0-4 Years of Experience |
5-10 Years of Experience |
10+ Years of Experience |
Information Security Manager |
S$105,000 |
S$80,000- S$90,000 |
S$92,000 - S$110,000 |
S$120,000+ |
Chief Information Security Officer
|
S$120,000 |
S$85,000 - S$96,000 |
S$100,000 - S$120,000 |
S$130,000+ |
Information Security Analyst |
S$67,000 |
S$49,000 - S$55,000 |
S$56,000 - S$70,000 |
S$85,000+ |
Security Architect |
S$65,000 |
S$48,000 - S$54,000 |
S$55,000 - S$66,000 |
S$70,000+ |
Security Engineer |
S$74,000 |
S$60,000 - S$65,000 |
S$67,000 - S$80,000 |
S$90,000+ |
Information Security Officer
|
S$82,000 |
S$70,000 - S$75,000 |
S$78,000 - S$89,000 |
S$100,000+ |
Information Security Engineer |
S$77,000 |
S$64,000 - S$69,000 |
S$70,000 - S$80,000 |
S$92,000+ |
How Much Does CISSP Certification Cost?
As for the training classes and materials, the costs vary depending on the training provider you choose. You can find some free CISSP resources on the web, but they won’t likely provide the same value as paid resources.
The official training course from (ISC)2 for CISSP costs $2,800, but you can find cheaper alternatives from third-party training providers.
Despite having a high initial investment, a CISSP certification will definitely pay off in the long run.
How Does CISSP Stack Up Compared to Other Certifications?
Here’s a list of some of the certifications similar to CISSP and their average annual salaries:
- CEH (Certified Ethical Hacker): $96,290
- CRISC (Certified in Risk and Information Systems Control): $111,740
- PMI project management professional: $100,040
- CISA (Certified Information Systems Auditor): $110,190
- Open Group certified architect: $97,980
- TOGAF (The Open Group Architecture Framework): $96,910
- CISM (Certified Information Systems Manager): $115,080
- CAP (Certified Authorization Professional): $106,900
- CCDA (Cisco Certified Design Associate): $96,850
- GCIH (GIAC Certified Incident Handler): $100,590
With an average annual salary of $115,000 for CISSP holders, you can tell that the CISSP certification takes the lead compared to other certifications. It’s also worth mentioning that the CISSP certification is usually a “requirement” in most job positions in all industries instead of being an added plus.
Factors That Affect Your Salary as a CISSP Professional
Education
Along with your CISSP certification, your academic background can play a big role when it comes to your salary as a CISSP professional.
For example, if your undergraduate and postgraduate degrees are IS-related, your earning potential will be higher. The type of degree can also influence your average salary per year.
For example, if you hold a Bachelor of Arts degree, your salary could be between $70,000 and $120,000. The range for Bachelor of Business Administration holders is pretty much the same.
On the other hand, if you have a Bachelor of Science or Master of Science degree, your annual salary will be between $80,000 and $130,000, depending on your experience and skills.
Experience
The more experience you have as an IS professional, the higher your starting salary will be. The number of working years, major projects, and the companies you’ve worked in can count towards your experience.
Most people reach peak salaries when they accumulate 10-20 years of working experience in high-profile companies.
Since the CISSP certification requires 5 years of working experience as a prerequisite for enrolling, most CISSP professionals will already have significant experience.
The Organization
The organization you’re applying for work in can make a major difference in your annual earnings.
For example, if you work in valuable globally-recognized companies such as Google, Oracle, and Apple, your expected salary will definitely be higher than when working in a startup company with limited resources.
The company’s industry also contributes to the average annual salary. Industries like finance, insurance, healthcare, and retail often pay the highest salaries for CISSP professionals. A good practice is to compare the average expected salary across multiple companies and industries to be able to identify the best opportunities.
The Job Itself
Obviously, your job position will have an impact on your annual salary as a CISSP professional. As a team lead, assistant manager, or manager, your earning potential as a CISSP will be much higher than junior CISSP professionals.
It’s also worth noting that employers often look for additional skills when interviewing CISSP-holding candidates. Depending on the industry you choose to work in, employers are likely to prefer candidates that are well-acquainted with HIPAA Compliance, HITECH Compliance, accounting, Sarbanes-Oxley, and PCI-DSS.
You should also keep in mind that not all information security jobs require CISSP certification. When searching for a job, you’ll notice there are lots of job openings for cybersecurity engineers, security analysts, and IT security architects. However, this doesn’t necessarily mean that all of them require CISSP certification.
To maximize your earning potential, look for job postings that require CISSP certification as a prerequisite for applying. This way, you’ll be able to negotiate your salary requirements more confidently in case you receive an offer.
Final Thoughts
- It’s a fact that the CISSP certification is very valuable. Getting a CISSP certification will make employers more willing to pay you higher salaries than non-CISSP holders.
- Even compared to other information security certifications, the CISSP has a spot at the top of the earnings pyramid.