Salary · Cybersecurity
CISA (ISACA) salary: what it pays (2026)
Indicative pay ranges for roles that commonly value CISA - broken down by role and by market. These are orientation figures, not a salary survey, so use them to compare and plan, then verify for your own city and year.
Indicative ranges for orientation only - not surveyed data, and not financial or career advice.
What CISA tends to pay
CISA is the standard credential for IS audit and assurance, and pay reflects that. US holders in IT-audit and IT-risk roles commonly report roughly US$95k-150k, with senior audit managers higher, and the credential is frequently required for IS-audit postings.
Pay by role (indicative)
| IT Auditor | ~$80k-115k |
|---|---|
| IS / IT Audit Senior | ~$100k-135k |
| IT Audit Manager | ~$120k-160k |
| IT Risk / Controls Analyst | ~$90k-130k |
| Director of IT Audit (with experience) | ~$150k-200k+ |
Bands are indicative US figures unless stated. Actual pay depends on experience, employer, city and year.
Other markets (indicative)
| United Kingdom | ~£50k-80k |
|---|---|
| Canada | ~CA$90k-135k |
Jobs that often ask for it
- IS / IT Auditor
- IT Audit Manager
- Internal Auditor (IT)
- IT Risk & Controls Analyst
- Compliance / Assurance Lead
Weigh the pay against the cost
Salary is only half the picture. Before you commit, check what CISA actually costs to sit and maintain, and where it can take you over a career.
- See the full fee breakdown in the CISA cost and overview (exam fee, retake, materials and renewal).
- Estimate your total spend, including a possible retake, with our exam cost calculator.