Period
to 15 June 2021

The following table provides summary statistics for contract job vacancies with a requirement for CISM qualifications. Included is a benchmarking guide to the contractor rates offered over the 6 months to 15 June 2021 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISACA Certified Information Security Manager (CISM)
UK
6 months to
15 Jun 2021
Same period 2020 Same period 2019
Rank 400 375 474
Rank change year-on-year -25 +99 -36
Contract jobs citing CISM 334 238 397
As % of all contract jobs advertised in the UK 0.54% 0.55% 0.44%
As % of the Qualifications category 2.70% 2.29% 2.33%
Number of daily rates quoted 215 159 254
10th Percentile £413 £363 £413
25th Percentile £475 £431 £457
Median daily rate (50th Percentile) £550 £575 £540
Median % change year-on-year -4.35% +6.48% +2.86%
75th Percentile £663 £713 £645
90th Percentile £745 £825 £738
UK excluding London median daily rate £525 £550 £511
% change year-on-year -4.55% +7.58% +7.63%
Number of hourly rates quoted 7 1 0
Median hourly rate £60.35 £44.00 -
Median % change year-on-year +37.16% - -
UK excluding London median hourly rate £60.35 £44.00 -
% change year-on-year +37.16% - -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Contract vacancies requiring academic qualifications or professional certifications 12,353 10,405 17,023
As % of all contract IT jobs advertised in the UK 20.02% 23.86% 18.79%
Number of daily rates quoted 8,002 6,693 10,597
10th Percentile £306 £281 £263
25th Percentile £400 £385 £363
Median daily rate (50th Percentile) £500 £475 £475
Median % change year-on-year +5.26% - +5.56%
75th Percentile £586 £575 £569
90th Percentile £675 £650 £650
UK excluding London median daily rate £460 £455 £445
% change year-on-year +1.10% +2.25% +7.88%
Number of hourly rates quoted 601 402 737
10th Percentile £13.25 £15.26 £12.46
25th Percentile £17.47 £18.44 £17.09
Median hourly rate £34.01 £30.03 £31.50
Median % change year-on-year +13.26% -4.68% +44.40%
75th Percentile £51.63 £49.88 £46.00
90th Percentile £63.00 £57.50 £53.20
UK excluding London median hourly rate £30.57 £25.50 £31.71
% change year-on-year +19.87% -19.58% +40.50%

CISM
Job Vacancy Trend

Job postings citing CISM as a proportion of all IT jobs advertised.

Job vacancy trend for CISM in the UK

CISM
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing CISM.

Daily rate trend for CISM in the UK

CISM
Daily Rate Histogram

Daily rate distribution for jobs citing CISM over the 6 months to 15 June 2021.

Daily rate histogram for CISM in the UK

CISM
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing CISM.

Hourly rate trend for CISM in the UK

CISM
Hourly Rate Histogram

Hourly rate distribution of jobs citing CISM over the 6 months to 15 June 2021.

Hourly rate histogram for CISM in the UK

CISM
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing CISM within the UK over the 6 months to 15 June 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -10 260 £550 -4.35% 87
London -30 139 £600 +4.35% 34
UK excluding London -11 132 £525 -4.55% 71
Work from Home -174 120 £550 - 20
South East +20 49 £500 -9.09% 23
South West +23 24 £550 +18.92% 9
Scotland -31 21 £663 +55.88% 15
Midlands -5 18 £475 -11.63% 4
West Midlands -3 16 £475 -1.30% 4
North of England -28 12 £575 -11.54% 14
East of England +11 7 £538 +65.38% 3
Yorkshire -3 6 £680 +4.62% 3
North West -16 6 £500 -23.08% 8
East Midlands +2 2 £363 -46.30%
Channel Islands - 1 £550 -

For the 6 months to 15 June 2021, IT contractor jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for CISM.

1 319 (95.51%) CISSP
2 205 (61.38%) Information Security
3 170 (50.90%) Cybersecurity
4 123 (36.83%) ISO/IEC 27001
5 107 (32.04%) Finance
6 102 (30.54%) Risk Management
7 89 (26.65%) CISA
8 82 (24.55%) CRISC
9 79 (23.65%) Social Skills
10 75 (22.46%) Degree
11 69 (20.66%) Security Architecture
12 67 (20.06%) NIST
13 65 (19.46%) Azure
14 64 (19.16%) Security Cleared
15 56 (16.77%) Security Management
16 55 (16.47%) Network Security
17 54 (16.17%) TOGAF
18 53 (15.87%) Management Information System
19 49 (14.67%) SABSA
20 48 (14.37%) SC Cleared
21 47 (14.07%) GCP
21 47 (14.07%) Microsoft
22 45 (13.47%) AWS
23 43 (12.87%) Firewall
24 39 (11.68%) ITIL
25 37 (11.08%) Google
25 37 (11.08%) Information Security Management
26 36 (10.78%) Agile Software Development
26 36 (10.78%) PCI DSS
26 36 (10.78%) CESG Certified Professional

CISM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 6 (1.80%) IIS
2 5 (1.50%) SharePoint
3 4 (1.20%) Confluence
4 3 (0.90%) SharePoint Server
Applications
1 8 (2.40%) Microsoft Excel
2 5 (1.50%) Microsoft PowerPoint
3 3 (0.90%) Microsoft Office
3 3 (0.90%) Microsoft Project
4 2 (0.60%) MS Visio
Business Applications
1 4 (1.20%) iTrent
1 4 (1.20%) Oracle EBS
1 4 (1.20%) Sentinel
1 4 (1.20%) Unit4 Business World
2 2 (0.60%) Dynamics CRM
Cloud Services
1 65 (19.46%) Azure
2 47 (14.07%) GCP
3 45 (13.47%) AWS
4 27 (8.08%) SaaS
5 18 (5.39%) IaaS
6 17 (5.09%) PaaS
7 14 (4.19%) Microsoft 365
8 13 (3.89%) Cloud Computing
9 7 (2.10%) Azure Active Directory
10 6 (1.80%) Azure Sentinel
11 4 (1.20%) Amazon EC2
11 4 (1.20%) Amazon S3
12 3 (0.90%) Mimecast
13 2 (0.60%) Dynamics 365
13 2 (0.60%) Power Platform
13 2 (0.60%) Virtual Private Cloud
14 1 (0.30%) Azure Service Bus
14 1 (0.30%) Azure Stack
14 1 (0.30%) Serverless
14 1 (0.30%) Snowflake
Communications & Networking
1 55 (16.47%) Network Security
2 43 (12.87%) Firewall
3 21 (6.29%) Internet
4 10 (2.99%) LAN
5 9 (2.69%) VPN
6 8 (2.40%) Intrusion Detection
6 8 (2.40%) WAN
7 6 (1.80%) Wi-Fi
8 5 (1.50%) DNS
9 4 (1.20%) Intranet
9 4 (1.20%) NAS
9 4 (1.20%) Wireless
10 3 (0.90%) SSL
10 3 (0.90%) Unified Communications
11 2 (0.60%) Cisco ISE
11 2 (0.60%) Cisco Nexus
11 2 (0.60%) DHCP
11 2 (0.60%) Kerberos
11 2 (0.60%) SMTP
11 2 (0.60%) WLAN
Database & Business Intelligence
1 5 (1.50%) Big Data
2 4 (1.20%) Data Warehouse
3 2 (0.60%) Data Lake
3 2 (0.60%) Power BI
3 2 (0.60%) Relational Database
4 1 (0.30%) Azure SQL Database
4 1 (0.30%) BigQuery
4 1 (0.30%) Looker
4 1 (0.30%) MS Access
4 1 (0.30%) NoSQL
4 1 (0.30%) Oracle Database
4 1 (0.30%) Oracle Database 11g
4 1 (0.30%) SQL Server
Development Applications
1 4 (1.20%) JIRA
2 2 (0.60%) SonarQube
3 1 (0.30%) Git (software)
3 1 (0.30%) GitLab
3 1 (0.30%) Jenkins
3 1 (0.30%) Metasploit
General
1 107 (32.04%) Finance
2 79 (23.65%) Social Skills
3 35 (10.48%) Analytical Skills
4 24 (7.19%) Legal
5 23 (6.89%) Public Sector
6 21 (6.29%) Banking
7 12 (3.59%) Telecoms
8 11 (3.29%) Presentation Skills
9 6 (1.80%) Influencing Skills
9 6 (1.80%) Local Government
10 5 (1.50%) Financial Institution
10 5 (1.50%) Law
10 5 (1.50%) Retail Banking
11 4 (1.20%) Electronics
11 4 (1.20%) Manufacturing
11 4 (1.20%) Marketing
11 4 (1.20%) Organisational Skills
12 3 (0.90%) Documentation Skills
12 3 (0.90%) Retail
13 2 (0.60%) Investment Banking
Job Titles
1 88 (26.35%) Architect
2 83 (24.85%) Consultant
2 83 (24.85%) Security Architect
3 71 (21.26%) Security Consultant
4 39 (11.68%) Security Manager
5 32 (9.58%) Information Security Consultant
6 31 (9.28%) Analyst
7 24 (7.19%) Security Analyst
8 20 (5.99%) Cloud Architect
9 18 (5.39%) Cybersecurity Consultant
10 15 (4.49%) Cybersecurity Manager
11 14 (4.19%) Information Manager
12 13 (3.89%) Azure Architect
12 13 (3.89%) Information Security Manager
12 13 (3.89%) Lead Architect
13 12 (3.59%) Lead Security Architect
13 12 (3.59%) Security Specialist
14 11 (3.29%) Information Analyst
14 11 (3.29%) Information Security Analyst
15 10 (2.99%) Coordinator
Libraries, Frameworks & Software Standards
1 11 (3.29%) Regular Expression
2 10 (2.99%) OAuth
3 8 (2.40%) ModSecurity
4 7 (2.10%) JSON
4 7 (2.10%) SAML
4 7 (2.10%) Web Services
5 5 (1.50%) SailPoint
6 4 (1.20%) Oracle Fusion
7 3 (0.90%) SOAP
8 2 (0.60%) .NET
8 2 (0.60%) RESTful
8 2 (0.60%) XML
9 1 (0.30%) .NET Core
9 1 (0.30%) .NET Framework
9 1 (0.30%) GraphQL
9 1 (0.30%) Grok
9 1 (0.30%) LDAP
9 1 (0.30%) Middleware
Miscellaneous
1 53 (15.87%) Management Information System
2 14 (4.19%) Cyberthreat
3 11 (3.29%) Public Cloud
4 8 (2.40%) Data Centre
5 7 (2.10%) Data Protection Act
5 7 (2.10%) Self-Motivation
6 5 (1.50%) Cyberattack
6 5 (1.50%) Virtual Team
7 4 (1.20%) Cloud Native
7 4 (1.20%) Cyber Defence
7 4 (1.20%) iPad
7 4 (1.20%) NHS
7 4 (1.20%) User Experience
8 3 (0.90%) CMDB
8 3 (0.90%) Enterprise Cloud
8 3 (0.90%) Freedom of Information
8 3 (0.90%) Freedom of Information Act
8 3 (0.90%) Security Operations Centre
8 3 (0.90%) Smart Energy
8 3 (0.90%) Smartcard
Operating Systems
1 27 (8.08%) Windows
2 24 (7.19%) Linux
3 15 (4.49%) Unix
4 4 (1.20%) Windows Server
5 2 (0.60%) Windows 10
6 1 (0.30%) Red Hat Enterprise Linux
6 1 (0.30%) SUSE
6 1 (0.30%) Windows Server 2016
Processes & Methodologies
1 205 (61.38%) Information Security
2 170 (50.90%) Cybersecurity
3 102 (30.54%) Risk Management
4 69 (20.66%) Security Architecture
5 56 (16.77%) Security Management
6 54 (16.17%) TOGAF
7 49 (14.67%) SABSA
8 39 (11.68%) ITIL
9 37 (11.08%) Information Security Management
10 36 (10.78%) Agile Software Development
11 32 (9.58%) SIEM
12 31 (9.28%) Risk Assessment
13 28 (8.38%) Penetration Testing
14 27 (8.08%) Data Protection
14 27 (8.08%) Incident Management
15 26 (7.78%) Identity Access Management
15 26 (7.78%) Security Operations
16 24 (7.19%) Project Management
17 23 (6.89%) Remediation Plan
17 23 (6.89%) Vulnerability Management
Programming Languages
1 12 (3.59%) Python
2 7 (2.10%) Java
3 6 (1.80%) JavaScript
3 6 (1.80%) SQL
4 5 (1.50%) Go
5 4 (1.20%) Groovy
5 4 (1.20%) Ruby
5 4 (1.20%) Scala
6 2 (0.60%) C
6 2 (0.60%) PowerShell
6 2 (0.60%) Shell Script
7 1 (0.30%) Bash Shell
7 1 (0.30%) C#
7 1 (0.30%) C++
Qualifications
1 319 (95.51%) CISSP
2 89 (26.65%) CISA
3 82 (24.55%) CRISC
4 75 (22.46%) Degree
5 64 (19.16%) Security Cleared
6 48 (14.37%) SC Cleared
7 36 (10.78%) CESG Certified Professional
8 33 (9.88%) Cisco Certification
9 31 (9.28%) GIAC
10 21 (6.29%) (ISC)2 CCSP
11 17 (5.09%) CEH
11 17 (5.09%) CREST Certified
12 16 (4.79%) DV Cleared
12 16 (4.79%) ISO 27001 Lead Auditor
13 12 (3.59%) ISO 27001 Lead Implementer
14 11 (3.29%) CGEIT
14 11 (3.29%) GSEC
14 11 (3.29%) SSCP
15 10 (2.99%) CCNP
15 10 (2.99%) CCSP
Quality Assurance & Compliance
1 123 (36.83%) ISO/IEC 27001
2 67 (20.06%) NIST
3 36 (10.78%) PCI DSS
4 33 (9.88%) COBIT
4 33 (9.88%) GDPR
5 31 (9.28%) NCSC
6 26 (7.78%) HMG Security Policy Framework
7 25 (7.49%) Sarbanes-Oxley
8 17 (5.09%) GRC
9 15 (4.49%) Cyber Essentials
9 15 (4.49%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 13 (3.89%) JSP 440
10 13 (3.89%) RMADS
11 12 (3.59%) NIST 800
12 11 (3.29%) QA
13 9 (2.69%) SOC 2
14 8 (2.40%) ITGC
15 6 (1.80%) ISO/IEC 27005
16 5 (1.50%) ISO 31000
17 4 (1.20%) Cyber Essentials PLUS
System Software
1 10 (2.99%) Active Directory
2 7 (2.10%) BitLocker
3 4 (1.20%) Docker
3 4 (1.20%) Virtual Machines
4 2 (0.60%) Terminal Server
5 1 (0.30%) Virtual Desktop
5 1 (0.30%) VMware Infrastructure
Systems Management
1 10 (2.99%) Kubernetes
2 9 (2.69%) Single Sign-On
3 7 (2.10%) EnCase
3 7 (2.10%) FTK
4 5 (1.50%) Active Directory Federation Services
4 5 (1.50%) Microsoft Intune
5 4 (1.20%) Network Intrusion Detection System
5 4 (1.20%) SCCM
6 3 (0.90%) CASB
6 3 (0.90%) Computer Emergency Response Teams
6 3 (0.90%) McAfee ePO
6 3 (0.90%) Nessus
6 3 (0.90%) SCOM
6 3 (0.90%) SolarWinds Orion
6 3 (0.90%) Terraform
7 2 (0.60%) Ansible
7 2 (0.60%) CA Single Sign-On
7 2 (0.60%) IBM Guardium
7 2 (0.60%) QRadar
7 2 (0.60%) Trend Micro Deep Security
Vendors
1 47 (14.07%) Microsoft
2 37 (11.08%) Google
3 14 (4.19%) Splunk
4 12 (3.59%) Cisco
5 10 (2.99%) Oracle
6 9 (2.69%) SAP
7 7 (2.10%) ArcSight
7 7 (2.10%) Cellebrite
7 7 (2.10%) McAfee
7 7 (2.10%) Qualys
7 7 (2.10%) SolarWinds
7 7 (2.10%) VMware
8 6 (1.80%) Palo Alto
9 5 (1.50%) Citrix
9 5 (1.50%) LogRhythm
9 5 (1.50%) Tripwire
10 4 (1.20%) CyberArk
10 4 (1.20%) ServiceNow
11 3 (0.90%) EMC
11 3 (0.90%) Fortinet