Period
to 24 September 2017

The following table provides summary statistics for contract job vacancies with a requirement for CISM qualifications. Included is a benchmarking guide to the contractor rates offered over the 6 months to 24 September 2017 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISACA Certified Information Security Manager (CISM)
UK
6 months to
24 Sep 2017
Same period 2016 Same period 2015
Rank 464 421 520
Rank change year-on-year -43 +99 +30
Contract jobs citing CISM 458 577 428
As % of all contract IT jobs advertised in the UK 0.47% 0.54% 0.37%
As % of the Qualifications category 2.50% 2.55% 1.95%
Number of daily rates quoted 252 300 292
UK median daily rate £500 £500 £475
Median daily rate % change year-on-year - +5.26% +5.56%
10th Percentile £377 £363 £313
90th Percentile £638 £696 £650
UK excluding London median daily rate £488 £475 £425
% change year-on-year +2.63% +11.76% -5.56%
Number of hourly rates quoted 3 8 0
UK median hourly rate £46.00 £44.25 -
Median hourly rate % change year-on-year +3.95% - -
UK excluding London median hourly rate £46.00 £46.00 -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Contract vacancies requiring academic qualifications or professional certifications 18292 22652 21985
As % of all contract IT jobs advertised in the UK 18.79% 21.24% 19.26%
Number of daily rates quoted 11092 14079 13040
UK median daily rate £425 £405 £400
Median daily rate % change year-on-year +4.94% +1.25% +3.90%
10th Percentile £235 £240 £240
90th Percentile £600 £588 £571
UK excluding London median daily rate £400 £375 £375
% change year-on-year +6.67% - +4.17%
Number of hourly rates quoted 889 825 1091
UK median hourly rate £29.00 £27.50 £22.50
Median hourly rate % change year-on-year +5.45% +22.22% +12.50%
10th Percentile £12.00 £12.25 £11.50
90th Percentile £51.19 £47.93 £48.75
UK excluding London median hourly rate £32.00 £27.61 £24.00
% change year-on-year +15.90% +15.04% +20.00%

CISM
Job Vacancy Trend

Job postings citing CISM as a percentage of all IT jobs advertised.

Job vacancy trend for CISM in the UK

CISM
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing CISM.

Contractor daily rate trend for CISM in the UK

CISM
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing CISM over the 6 months to 24 September 2017.

Contractor daily rate histogram for CISM in the UK

CISM
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing CISM.

Contractor hourly rate trend for CISM in the UK

CISM
Top 14 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing CISM within the UK over the 6 months to 24 September 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -22 445 £500 - 71
UK excluding London +23 290 £488 +2.63% 40
London -74 166 £500 -6.98% 33
South East +42 118 £475 - 10
North of England +55 80 £550 +37.50% 11
North West +21 62 £564 +47.80% 6
East of England -20 44 £463 +5.59% 9
South West +10 24 £500 - 5
Yorkshire +29 14 £550 +12.82% 5
Scotland +27 12 £406 -7.67% 2
Midlands +8 12 £425 -14.14% 3
East Midlands +5 9 £425 - 1
North East +66 4 £525 +31.31%
West Midlands +12 2 £325 -30.48% 1

For the 6 months to 24 September 2017, IT contractor jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all contract ads with a requirement for CISM.

1 441 (96.29%) CISSP
2 316 (69.00%) Information Security
3 222 (48.47%) ISO/IEC 27001
4 159 (34.72%) Finance
5 150 (32.75%) Cybersecurity
6 143 (31.22%) Risk Management
7 131 (28.60%) CISA
8 130 (28.38%) PCI DSS
9 103 (22.49%) Management Information System
10 99 (21.62%) Degree
11 80 (17.47%) Firewall
12 78 (17.03%) SIEM
13 66 (14.41%) COBIT
13 66 (14.41%) ITIL
14 65 (14.19%) Cisco Certification
15 62 (13.54%) Agile Software Development
15 62 (13.54%) CRISC
16 59 (12.88%) Penetration Testing
17 58 (12.66%) Project Management
18 57 (12.45%) Windows
19 56 (12.23%) Banking
19 56 (12.23%) Stakeholder Management
19 56 (12.23%) Vulnerability Management
20 54 (11.79%) GDPR
21 47 (10.26%) Linux
22 46 (10.04%) Security Management
22 46 (10.04%) Security Architecture
22 46 (10.04%) ISMS
23 44 (9.61%) Security Operations
23 44 (9.61%) Analytical Skills

CISM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 8 (1.75%) IIS
2 7 (1.53%) OpenStack
3 6 (1.31%) Apache
3 6 (1.31%) SharePoint
4 5 (1.09%) Apache Pig
5 4 (0.87%) Apache Solr
5 4 (0.87%) Elasticsearch
5 4 (0.87%) WebSphere
6 3 (0.66%) JBoss
6 3 (0.66%) Mule
6 3 (0.66%) Tomcat
7 2 (0.44%) Apache Spark
7 2 (0.44%) Confluence
7 2 (0.44%) Oracle SOA Suite
8 1 (0.22%) Adobe Experience Manager
8 1 (0.22%) CMS
Applications
1 12 (2.62%) Microsoft Office
2 10 (2.18%) Microsoft Excel
3 8 (1.75%) MS Visio
4 3 (0.66%) Microsoft PowerPoint
5 2 (0.44%) Microsoft Project
6 1 (0.22%) Spreadsheet
Business Applications
1 1 (0.22%) SAP Oil and Gas
Cloud Services
1 40 (8.73%) Amazon AWS
2 30 (6.55%) Microsoft Azure
3 20 (4.37%) Cloud Computing
4 12 (2.62%) Mimecast
5 11 (2.40%) SaaS
6 9 (1.97%) PaaS
7 8 (1.75%) IaaS
8 5 (1.09%) Office 365
9 3 (0.66%) Google Cloud Platform
10 2 (0.44%) Cloudflare
11 1 (0.22%) Amazon EC2
11 1 (0.22%) Amazon ELB
11 1 (0.22%) Amazon S3
11 1 (0.22%) AWS Lambda
11 1 (0.22%) Azure Active Directory
11 1 (0.22%) Virtual Private Cloud
Communications & Networking
1 80 (17.47%) Firewall
2 40 (8.73%) Network Security
3 26 (5.68%) Intrusion Detection
4 18 (3.93%) Internet
5 14 (3.06%) TCP/IP
6 12 (2.62%) SAN
7 11 (2.40%) VLAN
8 7 (1.53%) NAS
8 7 (1.53%) VPN
9 6 (1.31%) LAN
9 6 (1.31%) Radio Access Network
10 5 (1.09%) DNS
11 4 (0.87%) Diameter Protocol
11 4 (0.87%) MVNO
11 4 (0.87%) SS7
11 4 (0.87%) Value-Added Service
11 4 (0.87%) VoLTE
11 4 (0.87%) VoWiFi
11 4 (0.87%) WAN
11 4 (0.87%) Wireless
Database & Business Intelligence
1 7 (1.53%) Hadoop
2 6 (1.31%) MongoDB
3 5 (1.09%) Apache Cassandra
3 5 (1.09%) Star Schema
4 4 (0.87%) Big Data
4 4 (0.87%) DataStax
4 4 (0.87%) Maltego
4 4 (0.87%) MySQL
4 4 (0.87%) Relational Database
5 3 (0.66%) NoSQL
5 3 (0.66%) SQL Server
6 2 (0.44%) Apache Hive
6 2 (0.44%) HBase
6 2 (0.44%) Sqoop
7 1 (0.22%) Data Mining
7 1 (0.22%) MariaDB
Development Applications
1 5 (1.09%) JIRA
2 2 (0.44%) AppScan
2 2 (0.44%) Git (software)
2 2 (0.44%) Hudson
2 2 (0.44%) Jenkins
2 2 (0.44%) Pylint
3 1 (0.22%) Rational DOORS
General
1 159 (34.72%) Finance
2 56 (12.23%) Banking
3 41 (8.95%) Telecoms
4 27 (5.90%) Legal
5 25 (5.46%) Retail
6 20 (4.37%) Law
7 13 (2.84%) Manufacturing
7 13 (2.84%) Marketing
8 11 (2.40%) Electronics
9 7 (1.53%) Retail Banking
10 6 (1.31%) International Banking
11 5 (1.09%) Automotive
11 5 (1.09%) Billing
11 5 (1.09%) Financial Institution
11 5 (1.09%) Investment Banking
12 2 (0.44%) Back Office
12 2 (0.44%) Publishing
13 1 (0.22%) French Language
13 1 (0.22%) Local Government
Job Titles
1 144 (31.44%) Consultant
2 131 (28.60%) Security Consultant
3 96 (20.96%) Analyst
4 82 (17.90%) Security Analyst
5 51 (11.14%) Security Manager
6 40 (8.73%) Architect
7 37 (8.08%) Security Specialist
8 36 (7.86%) Security Architect
9 26 (5.68%) Information Analyst
10 25 (5.46%) Information Security Analyst
10 25 (5.46%) Information Security Consultant
11 24 (5.24%) Information Manager
12 23 (5.02%) Information Security Manager
12 23 (5.02%) IT Consultant
13 22 (4.80%) IT Security Consultant
14 21 (4.59%) CISSP Consultant
15 20 (4.37%) IT Analyst
16 18 (3.93%) Risk Consultant
16 18 (3.93%) Senior Consultant
17 17 (3.71%) Senior Security Consultant
Libraries, Frameworks & Software Standards
1 15 (3.28%) Middleware
2 9 (1.97%) Web Services
3 7 (1.53%) Elastic Stack
4 3 (0.66%) AngularJS
4 3 (0.66%) CSS
4 3 (0.66%) CSS3
4 3 (0.66%) HTML
4 3 (0.66%) HTML5
4 3 (0.66%) jQuery
4 3 (0.66%) REST
4 3 (0.66%) RESTful
4 3 (0.66%) WebSphere MQ
5 2 (0.44%) .NET
5 2 (0.44%) JAX-WS
5 2 (0.44%) JMS
5 2 (0.44%) JSP
5 2 (0.44%) SAML
5 2 (0.44%) Servlets
5 2 (0.44%) SOAP
5 2 (0.44%) Struts
Miscellaneous
1 103 (22.49%) Management Information System
2 44 (9.61%) Analytical Skills
3 28 (6.11%) Distributed Denial-of-Service
3 28 (6.11%) Virtual Team
4 25 (5.46%) CESG
5 22 (4.80%) Data Centre
5 22 (4.80%) PKI
6 14 (3.06%) Computer Science
7 11 (2.40%) Data Protection Act
8 10 (2.18%) Cyberthreat
8 10 (2.18%) Public Cloud
9 7 (1.53%) Security Operations Centre
9 7 (1.53%) Smart Energy
10 6 (1.31%) CESG CLAS
10 6 (1.31%) PMI
10 6 (1.31%) Private Cloud
11 5 (1.09%) Mainframe
11 5 (1.09%) NHS
12 4 (0.87%) Client/Server
12 4 (0.87%) Online Banking
Operating Systems
1 57 (12.45%) Windows
2 47 (10.26%) Linux
3 35 (7.64%) Unix
4 13 (2.84%) Windows Server
5 8 (1.75%) Solaris
6 7 (1.53%) Mac OS X
7 6 (1.31%) Red Hat Enterprise Linux
8 5 (1.09%) Windows 7
9 4 (0.87%) Apple iOS
9 4 (0.87%) HPUX
9 4 (0.87%) Kali Linux
10 2 (0.44%) Android
10 2 (0.44%) Windows 10
10 2 (0.44%) Windows NT
Processes & Methodologies
1 316 (69.00%) Information Security
2 150 (32.75%) Cybersecurity
3 143 (31.22%) Risk Management
4 78 (17.03%) SIEM
5 66 (14.41%) ITIL
6 62 (13.54%) Agile Software Development
7 59 (12.88%) Penetration Testing
8 58 (12.66%) Project Management
9 56 (12.23%) Stakeholder Management
9 56 (12.23%) Vulnerability Management
10 46 (10.04%) ISMS
10 46 (10.04%) Security Architecture
10 46 (10.04%) Security Management
11 44 (9.61%) Security Operations
12 43 (9.39%) Data Protection
13 35 (7.64%) Incident Management
14 34 (7.42%) Information Security Management
15 32 (6.99%) Risk Assessment
16 31 (6.77%) PRINCE2
16 31 (6.77%) Vulnerability Scanning
Programming Languages
1 8 (1.75%) SQL
2 6 (1.31%) Python
3 5 (1.09%) Java
4 3 (0.66%) JavaScript
5 2 (0.44%) PowerShell
5 2 (0.44%) Shell Script
6 1 (0.22%) C
6 1 (0.22%) C#
6 1 (0.22%) C++
Qualifications
1 441 (96.29%) CISSP
2 131 (28.60%) CISA
3 99 (21.62%) Degree
4 65 (14.19%) Cisco Certification
5 62 (13.54%) CRISC
6 43 (9.39%) Security Cleared
7 39 (8.52%) SANS
8 34 (7.42%) (ISC)2 CCSP
9 31 (6.77%) CEH
10 29 (6.33%) CCSP
10 29 (6.33%) ISO 27001 Lead Auditor
11 27 (5.90%) CESG Certified Professional
11 27 (5.90%) CLAS
11 27 (5.90%) SSCP
12 24 (5.24%) CCNP
13 22 (4.80%) SC Cleared
14 19 (4.15%) CompTIA Security+
14 19 (4.15%) Security+ Certification
15 16 (3.49%) IISP
16 15 (3.28%) ISACA
Quality Assurance & Compliance
1 222 (48.47%) ISO/IEC 27001
2 130 (28.38%) PCI DSS
3 66 (14.41%) COBIT
4 54 (11.79%) GDPR
5 21 (4.59%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 19 (4.15%) HMG Security Policy Framework
6 19 (4.15%) Sarbanes-Oxley
7 12 (2.62%) RMADS
8 11 (2.40%) JSP 440
9 9 (1.97%) QA
10 8 (1.75%) Cyber Essentials
11 7 (1.53%) ISO 22301
12 5 (1.09%) ISAE 3402
12 5 (1.09%) ISO/IEC 27005
12 5 (1.09%) SSAE 16
13 4 (0.87%) COSO
13 4 (0.87%) SLA
14 3 (0.66%) FedRAMP
15 2 (0.44%) Basel III
15 2 (0.44%) PMO
System Software
1 18 (3.93%) Active Directory
2 4 (0.87%) Apache Flume
2 4 (0.87%) vSphere
3 2 (0.44%) HDFS
3 2 (0.44%) Hyper-V
3 2 (0.44%) IAG
3 2 (0.44%) Virtual Machines
3 2 (0.44%) VMware Infrastructure
4 1 (0.22%) Docker
4 1 (0.22%) Microsoft App-V
4 1 (0.22%) VMware ESXi
4 1 (0.22%) VMware NSX
4 1 (0.22%) XenApp
4 1 (0.22%) XenDesktop
Systems Management
1 9 (1.97%) Nessus
2 5 (1.09%) Nmap
3 4 (0.87%) Kibana
3 4 (0.87%) logstash
3 4 (0.87%) Systems Management Server (SMS)
4 3 (0.66%) Host Intrusion Detection System
4 3 (0.66%) McAfee ePO
4 3 (0.66%) Terraform
5 2 (0.44%) Nexpose
5 2 (0.44%) Puppet
6 1 (0.22%) Computer Emergency Response Teams
6 1 (0.22%) Computer Incident Response Team
6 1 (0.22%) CSIRT
6 1 (0.22%) HP Fortify
6 1 (0.22%) Microsoft Intune
6 1 (0.22%) RSA Archer
6 1 (0.22%) SCCM
6 1 (0.22%) WSUS
Vendors
1 33 (7.21%) Microsoft
2 30 (6.55%) Qualys
3 28 (6.11%) Splunk
4 27 (5.90%) Cisco
5 19 (4.15%) CheckPoint
6 16 (3.49%) Oracle
7 14 (3.06%) McAfee
8 12 (2.62%) SAP
9 11 (2.40%) LogRhythm
9 11 (2.40%) Symantec
9 11 (2.40%) Tufin
10 7 (1.53%) Forcepoint
11 6 (1.31%) HP
11 6 (1.31%) IBM
11 6 (1.31%) Palo Alto
11 6 (1.31%) Red Hat
11 6 (1.31%) VMware
12 5 (1.09%) Remedy
13 4 (0.87%) NetApp
13 4 (0.87%) Tripwire