The IT Certification Resource Center

Featured Deal

Get CompTIA, Cisco, or Microsoft training courses free for a week.
Learn More ❯

Foote Partners Report: ISACA Certifications Earn Top Pay Premiums

Rolling Meadows, IL, USA (8 September 2011)—According to a new report from independent IT research firm Foote Partners LLC, ISACA’s certifications are earning top pay premiums. The recent update of the firm’s IT Skills and Certification Pay IndexTM found that the Certified Information Security Manager (CISM) and Certified Information Systems Auditor (CISA) designations earn the highest pay premiums among 53 information security certifications reported. The Certified in the Governance of Enterprise IT (CGEIT) credential also earns an above-average premium.

The market value for CISM increased by 8.3 percent from April to June 2011, the report shows, and is currently earning a pay premium of between 11 percent and 15 percent of base salary. Both CISA and CISM are averaging 13 percent of base salary in premium pay, and CGEIT earns between 8 percent to 11 percent and is averaging 10 percent of base salary. The average pay premium for the 237 certifications reported in the IT Skills and Certification Pay Index is 7.1 percent of base salary and ranges from 5.2 percent to 8.8 percent.

“The Foote Partners study confirms what global professionals and their employers share with us regarding the value of ISACA certifications,” said Allan Boardman, CISA, CISM, CGEIT, CRISC, CA (SA), CISSP, chair of ISACA’s Credentialing Board. “ISACA certification holders can benefit from deeper career knowledge and higher pay, and their employers benefit from being able to identify an employee’s dedication to the field and commitment to ongoing professional development, as well as demonstrated proof of knowledge.”

The IT Skills and Certification Pay Index is the result of continuous tracking of IT skills pay and demand at 2,126 private and public-sector organizations in the US and Canada, representing 118,300 IT professionals.

Additional information on ISACA’s four certifications—including the new Certified in Risk and Information Systems Control (CRISC)—is available at


With 95,000 constituents in 160 countries, ISACA® is a leading global provider of knowledge, certifications, community, advocacy, and education on information systems (IS) assurance and security, enterprise governance and management of IT, and IT-related risk and compliance. Founded in 1969, the nonprofit, independent ISACA hosts international conferences, publishes the ISACA® Journal, and develops international IS auditing and control standards, which help its constituents ensure trust in, and value from, information systems. It also advances and attests IT skills and knowledge through the globally respected Certified Information Systems Auditor® (CISA®), Certified Information Security Manager® (CISM®), Certified in the Governance of Enterprise IT® (CGEIT®) and Certified in Risk and Information Systems Control™ (CRISC™) designations.

ISACA continually updates COBIT®, which helps IT professionals and enterprise leaders fulfill their IT governance and management responsibilities, particularly in the areas of assurance, security, risk and control, and deliver value to the business.