3. Certified Information Security Manager (CISM): $122,291
Also offered by ISACA, the Certified Information Security Manager (CISM) certification pays nearly as well as the CRISC cert. As the name suggests, CISM is designed for information security managers. Of the more than 32,000 people worldwide who have obtained the certification, more than 7,500 are security directors or managers and more than 3,500 are directors or managers in other parts of IT.
In order to qualify for the CISM, candidates must have at least five years of experience in information security, including at least three years of management experience. They also need to have worked in three of the four CISM domains: information security governance, information risk management, information security program development and management, and information security incident management.
The exam includes 200 questions and lasts four hours. It is available in English, Japanese, Korean or Spanish, and fees start at $450.