Showing posts with label cobit 5. Show all posts
Showing posts with label cobit 5. Show all posts

Monday, 11 August 2014

What your cert’s worth: security salaries under scrutiny

Security roles have always been in the top half of the “IT salary hierarchy” and it seems unlikely to change anytime soon. According to a recent article on Tripwire business are investing more than ever, in order to protect themselves from security threats. Of course these investments include the recruitment and/or training of capable IT security staff.

Infographic created by the University of Alabama

With IT security becoming a top priority for businesses, certifications like the CISSP, CISA or CISM are gaining even more recognition. So if you’ve got one of these acronyms next to year name, you’re off to a great start in earning a high salary. Here are some of the average salaries in the UK for jobs requiring the following IT security certs, according to
  1. ISACA CGEIT - £45,000
  2. EC-Council CEH - £49,000
  3. EC-Council CHFI - £51,500
  4. ISACA CISM - £55,000
  5. ISACA CRISC - £55,000
  6. (ISC)2 CISSP - £55,000
  7. ISACA CISA - £55,750
  8. ISACA COBIT - £57,500
ISACA Certified in the Governance of Enterprise IT (CGEIT) - £45,000

Certified in the Governance of Enterprise IT (CGEIT) is a program designed for professionals directing, managing and supporting enterprise IT governance. Holders of CGEIT are experts in risk management, performance measurement, value delivery and the governance and management of IT. As a CGEIT, you’ll earn an average salary of £45,000.

EC-Council Certified Ethical Hacker (CEH) - £49,000

Beat a hacker, by thinking like one. With EC-Council’s Certified Ethical Hacker certification you’ll know how to defend against the latest techniques used to exploit your organisation’s vulnerabilities. The CEH stretches far beyond the field of penetration testing and into everyday application and network security. Certified Ethical Hackers on average earn around £49,000.

Image courtesy of hyena reality/

EC-Council Computer Hacking Forensics Investigator (CHFI) - £51,500

EC-Council’s CHFI certification teaches you the use of forensics tools, analytical techniques, and procedures involved in obtaining, maintaining, and presenting computer forensic evidence and data in a court of law. Computer Forensics experts with a CHFI can earn £51,500 on average.

ISACA Certified Information Security Manager (CISM) - £55,000

CISM by ISACA is a widely recognised credential for IT security professionals specialising in managing, developing and overseeing information security systems and for developing best security practices. CISM certified professionals have proven skills in risk management, governance and incident management as well as program development and management. Similarly to CRISC, CISM holders have good prospects of earning an average salary of £55,000 a year.

ISACA Certified in Risk and Information Systems Control (CRISC) - £55,000

ISACA’s CRISC is for experienced IT professionals working in the fields of technology risk management and Information Systems Control. CRISC-holders can manage risk design and oversee response measures, scan and monitor systems for risk, and meet their organisation's risk management strategies. The average salary offer for CRISC certified professionals is around £55,000.

Image courtesy of njaj/

(ISC)2 Certified Information Systems Security Professional (CISSP) - £55,000

(ISC)2’s CISSP demonstrates your expert skills in developing, guiding, and managing security standards, policies, and procedures within your organisation. The certification is considered to be one of the most prominent and prestigious security credentials out there, which is due to its rather demanding prerequisites. As a Certified Information Systems Security Professional you can be earning an average salary of £55,000.

ISACA Certified Information Systems Auditor (CISA) - £55,750

CISA is a globally renowned credential for Information Systems audit and security experts. CISA certified professionals possess the necessary skills, knowledge and expertise to identify and manage vulnerabilities and risks within their organisations, while implementing solutions to deal with them. The average salary for CISA holders is around £55,750 per annum.

ISACA Control Objectives for Information and Related Technology (COBIT) - £57,500

ISACA’s COBIT framework helps you to maximise the value of Information Technology within your organisation. With this certification under your belt, you’ll know how to achieve strategic goals and minimise risks, whilst optimising the cost of IT services. COBIT certified professionals earn an average salary of £57,500.

There you have it, the worth of some of the top security certs expressed in monetary terms. And don’t forget, the more experience you have, the closer you get to making these numbers even bigger.

About the Author:       
Sarah writes for Firebrand Training on a number of IT related topics. This includes exams, training, certification trends, project management, certification, careers advice and the industry itself. Sarah has 11 years of experience in the IT industry. 

Monday, 6 January 2014

Tech Resolutions for 2014 by ISACA


The New Year is here and we must be prepared for everything it may bring. According to global non-profit IT association ISACA, IT and cyber-security professionals will have to switch gears if they want to successfully deal with the challenges of 2014, especially in cyber-security, data privacy and big data.

“The pace of change expected in 2014 will put incredible pressure on technology professionals in the workplace with a focus on keeping IT risk in check while at the same time delivering value to the business. But this is also a chance for the IT department to be a strategic partner with the business on navigating these issues and opportunities,” said Bhavesh Bhagat, CISM, CGEIT, CEO of EnCrisp, co-founder of Confident Governance and member of ISACA’s new Emerging Business and Technology Committee.

ISACA’s Top 5 Tech Resolutions for 2014
  • Prepare for Privacy 2.0 - Attitudes toward data privacy are unlikely to reach a consensus in 2014. Instead, be prepared to accommodate both those with little expectation of privacy and those who view their personal data as currency and want to control how that currency is spent.
  • Slim down big data - Explosive data volumes were the #1 issue posed by big data in ISACA’s 2013 IT Risk/Reward Barometer. Unmanageable data creates redundancies and is difficult to keep safe. In 2014, eliminate the excess and consolidate what remains, to promote sharing and protect using better controls.
  • Plan to compete for cyber-security and data analytics experts - Demand for smart analytics people and cyber-security defenders with the right certifications is only going to increase in 2014—the year of the data professional. If you plan to recruit , make sure your salary package and job descriptions are competitive.
  • Rethink how your organisation is using your information security experts - With some elements of IT security operational responsibility (including malware detection, event analysis and control operation) increasingly being outsourced to cloud providers, smart leaders are enabling their internal security experts to become hunters instead of just defenders. This allows them to proactively deal with the most hard-to-detect threats, build internal intelligence capabilities, construct better metrics and invest in operational risk analysis.
  • Ramp up for the Internet of even more Things - With 50 billion devices expected to be connected to the Internet by 2020, start working now on a policy for governing connected devices—many invisible to the end user—if your enterprise doesn’t have one already.
Learn more about information security management, risk management or governance of IT on our ISACA courses.

About the Author:       
Sarah writes for Firebrand Training on a number of IT related topics. This includes exams, training, certification trends, project management, certification, careers advice and the industry itself. Sarah has 11 years of experience in the IT industry. 

Thursday, 30 August 2012

Seminar: Improving Business Performance

Sapphire and their partners are hosting a seminar on “Improving Business Performance”.

Pomme D'or Hotel, Jersey
Pomme D'or Hotel, Jersey
The seminar will cover the latest edition of ISACA’s globally accepted framework: COBIT 5, the challenges surrounding secure information sharing and how to protect information in today's mobile society.

The seminar will be taking place on Thursday 20 September in The Pomme D’or Hotel, Jersey. Registration will take place between 13.30 and 14.00.

To download the agenda and view the presentation synopsis, please click on the link below.

After the seminar attendees will be invited to join the presenters at The Blind Pig Speakeasy for networking and for “a couple of cocktails and canapés”.

For information, follow this link:
To register for the event, follow this link:

For any other questions contact Tina Deighton ( on 0845 58 27001.

Thursday, 26 April 2012

New resource content available by ISACA for COBIT 5

ISACA has released the first three COBIT 5 publications as complimentary PDF downloads to ISACA members: