CISM is associated with the highest average salary ($127,063) while CISSP certified professionals report the second highest average salary ($117,030).
CISM and CISSP certifications is that the former is focused more on management and strategy, and only covers technical topics in a cursory way, while the latter addresses the tactical aspects of security operations and delves much deeper into those areas.
The CISM covers topics such as:
- Regulatory issues
- Information security governance
- Cost-benefit analysis of risk mitigation
- Risk management
- Disaster recovery
The eight competencies covered by CISSP are: