Period
to 30 October 2020

The following table provides summary statistics for contract job vacancies with a requirement for CISM qualifications. Included is a benchmarking guide to the contractor rates offered over the 6 months to 30 October 2020 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISACA Certified Information Security Manager (CISM)
UK
6 months to
30 Oct 2020
Same period 2019 Same period 2018
Rank 331 443 445
Rank change year-on-year +112 +2 +19
Contract jobs citing CISM 213 411 533
As % of all contract jobs advertised in the UK 0.65% 0.48% 0.51%
As % of the Qualifications category 2.67% 2.40% 2.78%
Number of daily rates quoted 144 310 388
Median daily rate £513 £550 £531
Median daily rate % change year-on-year -6.82% +3.53% +6.25%
10th Percentile £325 £406 £375
90th Percentile £675 £750 £688
UK excluding London median daily rate £499 £525 £525
% change year-on-year -5.00% - +5.00%
Number of hourly rates quoted 3 2 2
Median hourly rate £72.00 £45.00 £69.75
Median hourly rate % change year-on-year +60.00% -35.48% -
10th Percentile £64.80 £42.50 £67.43
90th Percentile £158.40 £47.50 £73.08
UK excluding London median hourly rate £69.00 - £67.00

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Contract vacancies requiring academic qualifications or professional certifications 7,984 17,099 19,203
As % of all contract IT jobs advertised in the UK 24.33% 20.15% 18.54%
Number of daily rates quoted 4,826 10,515 11,338
Median daily rate £475 £463 £450
Median daily rate % change year-on-year +2.70% +2.78% +5.88%
10th Percentile £285 £260 £250
90th Percentile £638 £638 £625
UK excluding London median daily rate £450 £450 £418
% change year-on-year - +7.78% +4.38%
Number of hourly rates quoted 444 854 951
Median hourly rate £35.00 £35.70 £25.00
Median hourly rate % change year-on-year -1.96% +42.80% -9.09%
10th Percentile £15.18 £14.42 £13.00
90th Percentile £64.50 £58.75 £51.00
Median hourly rate £35.00 £35.07 £25.75
% change year-on-year -0.19% +36.17% -14.17%

CISM
Job Vacancy Trend

Job postings citing CISM as a proportion of all IT jobs advertised.

Job vacancy trend for CISM in the UK

CISM
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing CISM.

Daily rate trend for CISM in the UK

CISM
Daily Rate Histogram

Daily rate distribution for jobs citing CISM over the 6 months to 30 October 2020.

Daily rate histogram for CISM in the UK

CISM
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing CISM.

Hourly rate trend for CISM in the UK

CISM
Hourly Rate Histogram

Hourly rate distribution of jobs citing CISM over the 6 months to 30 October 2020.

Hourly rate histogram for CISM in the UK

CISM
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing CISM within the UK over the 6 months to 30 October 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +139 178 £500 -9.09% 72
UK excluding London +182 118 £499 -5.00% 48
London +97 81 £525 -12.50% 25
Work from Home -73 45 £500 -9.09% 3
South East +166 35 £500 -4.76% 18
South West +99 33 £488 -15.95% 6
Scotland +79 25 £590 +38.82% 1
North of England +73 14 £444 -19.32% 15
North West +70 9 £469 -19.18% 7
Midlands +71 8 £513 -6.82% 5
West Midlands +54 6 £463 -11.90% 4
Yorkshire +52 5 £388 -29.55% 7
East of England +86 2 £325 -13.33% 3
East Midlands +46 2 £650 +18.18% 1
Wales +36 1 £675 +73.08%

For the 6 months to 30 October 2020, IT contractor jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for CISM.

1 205 (96.24%) CISSP
2 152 (71.36%) Information Security
3 111 (52.11%) ISO/IEC 27001
4 108 (50.70%) Cybersecurity
5 78 (36.62%) CISA
6 76 (35.68%) Risk Management
7 63 (29.58%) NIST
8 62 (29.11%) Management Information System
9 61 (28.64%) Security Cleared
10 52 (24.41%) CESG Certified Professional
11 49 (23.00%) CRISC
12 41 (19.25%) Security Management
13 40 (18.78%) NCSC
14 38 (17.84%) Analytical Skills
14 38 (17.84%) PCI DSS
14 38 (17.84%) Degree
15 37 (17.37%) Cisco Certification
16 36 (16.90%) ITIL
16 36 (16.90%) Finance
16 36 (16.90%) COBIT
16 36 (16.90%) Azure
17 34 (15.96%) Security Architecture
17 34 (15.96%) SC Cleared
18 33 (15.49%) Agile Software Development
19 30 (14.08%) Risk Assessment
20 29 (13.62%) Incident Management
20 29 (13.62%) Microsoft
20 29 (13.62%) Public Sector
20 29 (13.62%) HMG Security Policy Framework
21 28 (13.15%) Cyber Essentials

CISM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 8 (3.76%) Umbraco
2 4 (1.88%) IIS
2 4 (1.88%) SharePoint
3 1 (0.47%) BizTalk Server
3 1 (0.47%) CMS
3 1 (0.47%) Confluence
Applications
1 10 (4.69%) Microsoft Project
2 7 (3.29%) Microsoft Office
3 4 (1.88%) Microsoft Excel
3 4 (1.88%) MS Visio
4 2 (0.94%) Microsoft PowerPoint
Business Applications
1 2 (0.94%) Sparx Enterprise Architect
2 1 (0.47%) Dynamics CRM
Cloud Services
1 36 (16.90%) Azure
2 22 (10.33%) AWS
3 10 (4.69%) SaaS
4 8 (3.76%) Office 365
4 8 (3.76%) PaaS
5 7 (3.29%) Cloud Computing
5 7 (3.29%) IaaS
6 6 (2.82%) Serverless
7 5 (2.35%) GCP
8 4 (1.88%) Azure Active Directory
9 1 (0.47%) BPaaS
9 1 (0.47%) Power Platform
Communications & Networking
1 22 (10.33%) Firewall
2 13 (6.10%) Intrusion Detection
2 13 (6.10%) Network Security
3 4 (1.88%) TCP/IP
3 4 (1.88%) VPN
4 3 (1.41%) SSL
5 2 (0.94%) Cisco ASA
5 2 (0.94%) Cisco Firepower
5 2 (0.94%) Internet
5 2 (0.94%) LAN
5 2 (0.94%) WAN
5 2 (0.94%) Wireshark
6 1 (0.47%) Cisco IPT
6 1 (0.47%) DNS
6 1 (0.47%) NAS
6 1 (0.47%) SAN
6 1 (0.47%) Software-Defined Networking
Database & Business Intelligence
1 2 (0.94%) Big Data
2 1 (0.47%) Blockchain
2 1 (0.47%) NoSQL
2 1 (0.47%) Power BI
2 1 (0.47%) RDBMS
2 1 (0.47%) Relational Database
2 1 (0.47%) SQL Server
Development Applications
1 3 (1.41%) SonarQube
2 2 (0.94%) Hudson
3 1 (0.47%) Git (software)
3 1 (0.47%) GitLab
3 1 (0.47%) Jenkins
3 1 (0.47%) JIRA
General
1 36 (16.90%) Finance
2 29 (13.62%) Public Sector
3 24 (11.27%) Legal
4 12 (5.63%) Banking
5 4 (1.88%) Telecoms
6 3 (1.41%) Pharmaceutical
7 2 (0.94%) Investment Banking
7 2 (0.94%) Local Government
7 2 (0.94%) Manufacturing
8 1 (0.47%) Electronics
8 1 (0.47%) Law
8 1 (0.47%) Marketing
8 1 (0.47%) Retail Banking
Job Titles
1 62 (29.11%) Consultant
2 54 (25.35%) Security Consultant
3 33 (15.49%) Architect
4 31 (14.55%) Security Architect
5 27 (12.68%) Analyst
6 24 (11.27%) Information Security Consultant
7 22 (10.33%) Security Analyst
7 22 (10.33%) Security Manager
8 13 (6.10%) Cybersecurity Consultant
8 13 (6.10%) Security Engineer
9 11 (5.16%) Information Analyst
9 11 (5.16%) Information Manager
9 11 (5.16%) Information Officer
9 11 (5.16%) Information Security Manager
9 11 (5.16%) Security Specialist
10 10 (4.69%) Information Assurance Consultant
10 10 (4.69%) Information Security Analyst
10 10 (4.69%) Security Officer
11 9 (4.23%) Cybersecurity Specialist
11 9 (4.23%) Information Security Officer
Libraries, Frameworks & Software Standards
1 4 (1.88%) ModSecurity
1 4 (1.88%) Web Services
2 3 (1.41%) SAML
3 2 (0.94%) LDAP
3 2 (0.94%) YAML
4 1 (0.47%) .NET
4 1 (0.47%) J2EE
4 1 (0.47%) JSON
4 1 (0.47%) Regular Expression
4 1 (0.47%) REST
4 1 (0.47%) RESTful
4 1 (0.47%) SailPoint
4 1 (0.47%) SOAP
4 1 (0.47%) XML
4 1 (0.47%) XSL
4 1 (0.47%) XSLT
Miscellaneous
1 62 (29.11%) Management Information System
2 38 (17.84%) Analytical Skills
3 13 (6.10%) CESG
4 8 (3.76%) Security Operations Centre
5 7 (3.29%) BYOD
5 7 (3.29%) Data Protection Act
6 5 (2.35%) Cyberthreat
6 5 (2.35%) Data Centre
6 5 (2.35%) Freedom of Information
6 5 (2.35%) Freedom of Information Act
6 5 (2.35%) PKI
7 4 (1.88%) Cyber Defence
8 3 (1.41%) Cloud Native
8 3 (1.41%) Clustering
8 3 (1.41%) Embedded Systems
8 3 (1.41%) Life Science
8 3 (1.41%) Mobile Payment
8 3 (1.41%) Smartcard
9 2 (0.94%) N-Tier
9 2 (0.94%) Robotics
Operating Systems
1 11 (5.16%) Linux
1 11 (5.16%) Windows
2 9 (4.23%) Unix
3 4 (1.88%) Windows Server
4 2 (0.94%) Apple iOS
4 2 (0.94%) Solaris
4 2 (0.94%) Windows XP
5 1 (0.47%) AIX
5 1 (0.47%) Android
5 1 (0.47%) Mac OS X
Processes & Methodologies
1 152 (71.36%) Information Security
2 108 (50.70%) Cybersecurity
3 76 (35.68%) Risk Management
4 41 (19.25%) Security Management
5 36 (16.90%) ITIL
6 34 (15.96%) Security Architecture
7 33 (15.49%) Agile Software Development
8 30 (14.08%) Risk Assessment
9 29 (13.62%) Incident Management
10 28 (13.15%) Information Assurance
10 28 (13.15%) Information Security Management
10 28 (13.15%) Vulnerability Management
11 27 (12.68%) Security Testing
11 27 (12.68%) SIEM
12 24 (11.27%) Project Management
13 23 (10.80%) Data Protection
14 21 (9.86%) Due Diligence
15 20 (9.39%) Stakeholder Management
16 19 (8.92%) DevOps
16 19 (8.92%) Remediation Plan
Programming Languages
1 5 (2.35%) C
2 3 (1.41%) SQL
3 2 (0.94%) Java
4 1 (0.47%) Go
4 1 (0.47%) JavaScript
4 1 (0.47%) Python
4 1 (0.47%) Shell Script
4 1 (0.47%) VB.NET
Qualifications
1 205 (96.24%) CISSP
2 78 (36.62%) CISA
3 61 (28.64%) Security Cleared
4 52 (24.41%) CESG Certified Professional
5 49 (23.00%) CRISC
6 38 (17.84%) Degree
7 37 (17.37%) Cisco Certification
8 34 (15.96%) SC Cleared
9 22 (10.33%) (ISC)2 CCSP
9 22 (10.33%) CEH
10 18 (8.45%) DV Cleared
11 16 (7.51%) CCNA
12 15 (7.04%) CCSP
12 15 (7.04%) GIAC
13 13 (6.10%) CCIE
14 12 (5.63%) CCNP
15 11 (5.16%) ISO 27001 Lead Auditor
16 10 (4.69%) SSCP
17 8 (3.76%) CISMP
17 8 (3.76%) CLAS
Quality Assurance & Compliance
1 111 (52.11%) ISO/IEC 27001
2 63 (29.58%) NIST
3 40 (18.78%) NCSC
4 38 (17.84%) PCI DSS
5 36 (16.90%) COBIT
6 29 (13.62%) HMG Security Policy Framework
7 28 (13.15%) Cyber Essentials
8 27 (12.68%) GDPR
9 16 (7.51%) NIST 800
10 14 (6.57%) JSP 440
10 14 (6.57%) RMADS
11 13 (6.10%) Cyber Essentials PLUS
12 11 (5.16%) SLA
13 10 (4.69%) Sarbanes-Oxley
14 8 (3.76%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
15 7 (3.29%) ISO 31000
16 5 (2.35%) QA
17 4 (1.88%) PMO
18 3 (1.41%) ISAE 3402
18 3 (1.41%) ISO 22301
System Software
1 14 (6.57%) Active Directory
2 7 (3.29%) Virtual Machines
3 2 (0.94%) BitLocker
4 1 (0.47%) Docker
4 1 (0.47%) VMware Infrastructure
Systems Management
1 8 (3.76%) QRadar
2 7 (3.29%) Nexpose
3 4 (1.88%) Nessus
4 3 (1.41%) IBM Guardium
4 3 (1.41%) Single Sign-On
4 3 (1.41%) Trend Micro Deep Security
5 2 (0.94%) CSIRT
6 1 (0.47%) Ansible
6 1 (0.47%) Demisto
6 1 (0.47%) Kubernetes
6 1 (0.47%) Microsoft Intune
6 1 (0.47%) OPNET
6 1 (0.47%) Symantec Endpoint Protection
Vendors
1 29 (13.62%) Microsoft
2 9 (4.23%) Cisco
3 8 (3.76%) LogRhythm
4 6 (2.82%) Oracle
4 6 (2.82%) Splunk
5 4 (1.88%) Google
5 4 (1.88%) IBM
6 3 (1.41%) ArcSight
6 3 (1.41%) Barracuda Networks
6 3 (1.41%) Centrify
6 3 (1.41%) Imperva
6 3 (1.41%) McAfee
6 3 (1.41%) Okta
6 3 (1.41%) Qualys
6 3 (1.41%) ServiceNow
6 3 (1.41%) Sun
6 3 (1.41%) Trend Micro
6 3 (1.41%) Tripwire
6 3 (1.41%) VMware
7 2 (0.94%) Palo Alto