Period
to 7 March 2021

The following table provides summary statistics for contract job vacancies with a requirement for CISM qualifications. Included is a benchmarking guide to the contractor rates offered over the 6 months to 7 March 2021 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISACA Certified Information Security Manager (CISM)
UK
6 months to
7 Mar 2021
Same period 2020 Same period 2019
Rank 391 405 448
Rank change year-on-year +14 +43 +6
Contract jobs citing CISM 249 332 504
As % of all contract jobs advertised in the UK 0.52% 0.50% 0.52%
As % of the Qualifications category 2.35% 2.33% 2.66%
Number of daily rates quoted 205 251 324
Median daily rate £500 £550 £540
Median daily rate % change year-on-year -9.09% +1.85% +3.85%
10th Percentile £350 £388 £383
90th Percentile £738 £775 £688
UK excluding London median daily rate £475 £550 £525
% change year-on-year -13.64% +4.76% +5.00%
Number of hourly rates quoted 4 2 1
Median hourly rate £56.50 £59.50 £72.50
Median hourly rate % change year-on-year -5.04% -17.93% -
10th Percentile £48.00 £46.85 £71.25
90th Percentile £69.25 £74.15 £73.75
UK excluding London median hourly rate £67.50 £59.50 -
% change year-on-year +13.45% - -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Contract vacancies requiring academic qualifications or professional certifications 10,576 14,238 18,932
As % of all contract IT jobs advertised in the UK 21.99% 21.56% 19.49%
Number of daily rates quoted 6,873 9,234 11,729
Median daily rate £475 £471 £450
Median daily rate % change year-on-year +0.85% +4.67% +2.86%
10th Percentile £290 £259 £263
90th Percentile £650 £638 £638
UK excluding London median daily rate £450 £450 £425
% change year-on-year - +5.88% +6.25%
Number of hourly rates quoted 560 579 830
Median hourly rate £40.00 £31.50 £26.69
Median hourly rate % change year-on-year +26.98% +18.01% +6.81%
10th Percentile £15.00 £14.48 £12.50
90th Percentile £64.50 £57.50 £51.00
Median hourly rate £33.50 £26.15 £26.89
% change year-on-year +28.11% -2.73% +7.54%

CISM
Job Vacancy Trend

Job postings citing CISM as a proportion of all IT jobs advertised.

Job vacancy trend for CISM in the UK

CISM
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing CISM.

Daily rate trend for CISM in the UK

CISM
Daily Rate Histogram

Daily rate distribution for jobs citing CISM over the 6 months to 7 March 2021.

Daily rate histogram for CISM in the UK

CISM
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing CISM.

Hourly rate trend for CISM in the UK

CISM
Hourly Rate Histogram

Hourly rate distribution of jobs citing CISM over the 6 months to 7 March 2021.

Hourly rate histogram for CISM in the UK

CISM
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing CISM within the UK over the 6 months to 7 March 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +75 213 £500 -9.09% 115
UK excluding London +71 112 £475 -13.64% 58
London +43 101 £550 - 60
Work from Home -170 80 £500 -9.09% 16
South East +96 49 £357 -26.72% 20
South West +68 18 £503 -8.64% 6
North of England +36 17 £475 -24.00% 19
Midlands +42 15 £475 -8.43% 8
West Midlands +34 12 £475 -12.64% 4
Yorkshire +24 9 £413 -25.00% 7
Scotland +8 9 £613 +36.11% 3
North West +30 8 £488 -25.00% 8
East of England +57 3 £598 +54.19% 2
East Midlands +21 3 £450 -7.69% 4
Wales - 1 £675 -

For the 6 months to 7 March 2021, IT contractor jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for CISM.

1 238 (95.58%) CISSP
2 149 (59.84%) Information Security
3 127 (51.00%) Cybersecurity
4 110 (44.18%) ISO/IEC 27001
5 68 (27.31%) Risk Management
6 66 (26.51%) Security Cleared
7 63 (25.30%) CISA
8 60 (24.10%) NIST
9 57 (22.89%) CRISC
10 51 (20.48%) Azure
10 51 (20.48%) CESG Certified Professional
11 47 (18.88%) Finance
12 45 (18.07%) Security Architecture
12 45 (18.07%) PCI DSS
13 43 (17.27%) AWS
14 38 (15.26%) Degree
14 38 (15.26%) ITIL
14 38 (15.26%) NCSC
15 37 (14.86%) Management Information System
15 37 (14.86%) SIEM
16 34 (13.65%) SC Cleared
16 34 (13.65%) Microsoft
17 33 (13.25%) Risk Assessment
18 32 (12.85%) TOGAF
18 32 (12.85%) Cisco Certification
19 29 (11.65%) Security Management
19 29 (11.65%) COBIT
20 28 (11.24%) Analytical Skills
20 28 (11.24%) Firewall
21 27 (10.84%) SABSA

CISM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 4 (1.61%) IIS
1 4 (1.61%) SharePoint
2 3 (1.20%) Moodle
2 3 (1.20%) SharePoint Server
3 2 (0.80%) Confluence
4 1 (0.40%) BizTalk Server
4 1 (0.40%) CMS
Applications
1 4 (1.61%) Microsoft Excel
2 3 (1.20%) Microsoft Project
3 2 (0.80%) Microsoft Office
3 2 (0.80%) Microsoft PowerPoint
Business Applications
1 2 (0.80%) Sparx Enterprise Architect
2 1 (0.40%) Dynamics CRM
2 1 (0.40%) iTrent
2 1 (0.40%) Oracle EBS
2 1 (0.40%) Sentinel
2 1 (0.40%) Unit4 Business World
Cloud Services
1 51 (20.48%) Azure
2 43 (17.27%) AWS
3 26 (10.44%) SaaS
4 19 (7.63%) PaaS
5 17 (6.83%) GCP
5 17 (6.83%) IaaS
6 16 (6.43%) Cloud Computing
7 13 (5.22%) Microsoft 365
8 3 (1.20%) Azure Active Directory
9 1 (0.40%) Amazon EC2
9 1 (0.40%) Amazon S3
9 1 (0.40%) AWS CloudFormation
9 1 (0.40%) Azure Stack
9 1 (0.40%) BPaaS
9 1 (0.40%) Mimecast
9 1 (0.40%) Serverless
9 1 (0.40%) Virtual Private Cloud
Communications & Networking
1 28 (11.24%) Firewall
2 26 (10.44%) Network Security
3 18 (7.23%) Intrusion Detection
4 7 (2.81%) Internet
4 7 (2.81%) VPN
5 5 (2.01%) LAN
5 5 (2.01%) WAN
6 4 (1.61%) SSL
7 3 (1.20%) Wi-Fi
8 2 (0.80%) DNS
8 2 (0.80%) NAS
8 2 (0.80%) Wireshark
9 1 (0.40%) Cisco ISE
9 1 (0.40%) Cisco Nexus
9 1 (0.40%) DHCP
9 1 (0.40%) Kerberos
9 1 (0.40%) Reverse Proxy
9 1 (0.40%) TCP/IP
9 1 (0.40%) VoIP
9 1 (0.40%) WLAN
Database & Business Intelligence
1 6 (2.41%) Big Data
2 2 (0.80%) Data Warehouse
3 1 (0.40%) Azure SQL Database
3 1 (0.40%) BigQuery
3 1 (0.40%) Looker
3 1 (0.40%) NoSQL
3 1 (0.40%) Oracle Database
3 1 (0.40%) Oracle Database 11g
3 1 (0.40%) Snowflake Schema
3 1 (0.40%) SQL Server
Development Applications
1 3 (1.20%) Git (software)
1 3 (1.20%) GitLab
1 3 (1.20%) Jenkins
1 3 (1.20%) SonarQube
2 2 (0.80%) Hudson
2 2 (0.80%) JIRA
General
1 47 (18.88%) Finance
2 17 (6.83%) Public Sector
3 14 (5.62%) Banking
4 13 (5.22%) Legal
5 5 (2.01%) Local Government
5 5 (2.01%) Marketing
5 5 (2.01%) Telecoms
6 4 (1.61%) Law
7 3 (1.20%) Automotive
8 2 (0.80%) Electronics
8 2 (0.80%) Financial Institution
8 2 (0.80%) Investment Banking
8 2 (0.80%) Manufacturing
8 2 (0.80%) Pharmaceutical
8 2 (0.80%) Polish Language
9 1 (0.40%) General Ledger
9 1 (0.40%) Japanese Language
9 1 (0.40%) Military
9 1 (0.40%) Retail
Job Titles
1 81 (32.53%) Consultant
2 70 (28.11%) Security Consultant
3 43 (17.27%) Architect
4 40 (16.06%) Security Architect
5 29 (11.65%) Information Security Consultant
6 26 (10.44%) Analyst
7 22 (8.84%) Security Manager
8 20 (8.03%) Security Analyst
9 17 (6.83%) Cybersecurity Consultant
10 12 (4.82%) Information Analyst
10 12 (4.82%) Information Security Analyst
11 11 (4.42%) Security Specialist
12 9 (3.61%) Coordinator
12 9 (3.61%) Cybersecurity Specialist
12 9 (3.61%) Security Assurance Coordinator
12 9 (3.61%) Security Engineer
13 8 (3.21%) IT Manager
14 7 (2.81%) Cloud Architect
14 7 (2.81%) Information Manager
14 7 (2.81%) Information Security Manager
Libraries, Frameworks & Software Standards
1 9 (3.61%) ModSecurity
2 7 (2.81%) Regular Expression
3 6 (2.41%) JSON
4 4 (1.61%) RESTful
4 4 (1.61%) SailPoint
4 4 (1.61%) SAML
4 4 (1.61%) Web Services
5 3 (1.20%) OAuth
6 2 (0.80%) LDAP
6 2 (0.80%) SOAP
6 2 (0.80%) XML
6 2 (0.80%) YAML
7 1 (0.40%) .NET
7 1 (0.40%) .NET Core
7 1 (0.40%) .NET Framework
7 1 (0.40%) OpenID
7 1 (0.40%) Oracle Fusion
7 1 (0.40%) REST
7 1 (0.40%) XSL
7 1 (0.40%) XSLT
Miscellaneous
1 37 (14.86%) Management Information System
2 28 (11.24%) Analytical Skills
3 9 (3.61%) Data Centre
4 8 (3.21%) Cyberthreat
5 7 (2.81%) Security Operations Centre
6 5 (2.01%) CESG
6 5 (2.01%) Cloud Native
6 5 (2.01%) Cyber Defence
6 5 (2.01%) Distributed Denial-of-Service
7 4 (1.61%) Data Protection Act
7 4 (1.61%) NHS
7 4 (1.61%) PKI
8 3 (1.20%) CMDB
8 3 (1.20%) Embedded Systems
8 3 (1.20%) Freedom of Information
8 3 (1.20%) Freedom of Information Act
8 3 (1.20%) Mobile Payment
8 3 (1.20%) Public Cloud
8 3 (1.20%) Smart Energy
8 3 (1.20%) Smartcard
Operating Systems
1 22 (8.84%) Linux
2 21 (8.43%) Windows
3 16 (6.43%) Unix
4 4 (1.61%) Windows Server
5 2 (0.80%) Solaris
5 2 (0.80%) Windows XP
6 1 (0.40%) Red Hat Enterprise Linux
6 1 (0.40%) SUSE
6 1 (0.40%) Windows 10
6 1 (0.40%) Windows Server 2016
Processes & Methodologies
1 149 (59.84%) Information Security
2 127 (51.00%) Cybersecurity
3 68 (27.31%) Risk Management
4 45 (18.07%) Security Architecture
5 38 (15.26%) ITIL
6 37 (14.86%) SIEM
7 33 (13.25%) Risk Assessment
8 32 (12.85%) TOGAF
9 29 (11.65%) Security Management
10 27 (10.84%) SABSA
11 25 (10.04%) Information Assurance
11 25 (10.04%) Remediation Plan
11 25 (10.04%) Vulnerability Management
12 24 (9.64%) Agile Software Development
13 20 (8.03%) Problem-Solving
14 19 (7.63%) DevOps
15 18 (7.23%) Due Diligence
15 18 (7.23%) Stakeholder Management
16 16 (6.43%) Information Security Management
16 16 (6.43%) SOA
Programming Languages
1 8 (3.21%) SQL
2 4 (1.61%) Python
3 3 (1.20%) C
3 3 (1.20%) Go
3 3 (1.20%) Java
3 3 (1.20%) JavaScript
3 3 (1.20%) Shell Script
4 1 (0.40%) PowerShell
Qualifications
1 238 (95.58%) CISSP
2 66 (26.51%) Security Cleared
3 63 (25.30%) CISA
4 57 (22.89%) CRISC
5 51 (20.48%) CESG Certified Professional
6 38 (15.26%) Degree
7 34 (13.65%) SC Cleared
8 32 (12.85%) Cisco Certification
9 23 (9.24%) (ISC)2 CCSP
9 23 (9.24%) CEH
10 17 (6.83%) GIAC
10 17 (6.83%) ISO 27001 Lead Auditor
11 15 (6.02%) CREST Certified
12 14 (5.62%) CCSP
12 14 (5.62%) DV Cleared
13 9 (3.61%) CCNA
13 9 (3.61%) SSCP
14 8 (3.21%) CCNP
14 8 (3.21%) CISMP
14 8 (3.21%) SANS
Quality Assurance & Compliance
1 110 (44.18%) ISO/IEC 27001
2 60 (24.10%) NIST
3 45 (18.07%) PCI DSS
4 38 (15.26%) NCSC
5 29 (11.65%) COBIT
6 27 (10.84%) HMG Security Policy Framework
7 26 (10.44%) GDPR
8 24 (9.64%) Cyber Essentials
9 19 (7.63%) RMADS
10 17 (6.83%) JSP 440
11 12 (4.82%) NIST 800
11 12 (4.82%) Sarbanes-Oxley
12 10 (4.02%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
13 7 (2.81%) ISO 31000
14 5 (2.01%) QA
15 4 (1.61%) HIPAA
15 4 (1.61%) ISO/IEC 27005
16 3 (1.20%) ISAE 3402
16 3 (1.20%) ISO 22301
16 3 (1.20%) ISO 9001
System Software
1 11 (4.42%) Active Directory
2 6 (2.41%) Virtual Machines
3 4 (1.61%) BitLocker
4 3 (1.20%) Docker
5 2 (0.80%) VMware Infrastructure
6 1 (0.40%) Terminal Server
6 1 (0.40%) Virtual Desktop
Systems Management
1 5 (2.01%) Kubernetes
2 4 (1.61%) EnCase
2 4 (1.61%) FTK
2 4 (1.61%) Nexpose
2 4 (1.61%) QRadar
2 4 (1.61%) Single Sign-On
3 3 (1.20%) Computer Emergency Response Teams
3 3 (1.20%) IBM Guardium
3 3 (1.20%) Nessus
3 3 (1.20%) SCCM
3 3 (1.20%) SCOM
3 3 (1.20%) Trend Micro Deep Security
4 2 (0.80%) Ansible
4 2 (0.80%) CASB
4 2 (0.80%) CSIRT
4 2 (0.80%) Terraform
5 1 (0.40%) Data Guard
5 1 (0.40%) Demisto
5 1 (0.40%) Microsoft Intune
5 1 (0.40%) Network Intrusion Detection System
Vendors
1 34 (13.65%) Microsoft
2 13 (5.22%) Google
3 11 (4.42%) Cisco
3 11 (4.42%) Oracle
4 10 (4.02%) Splunk
5 7 (2.81%) VMware
6 5 (2.01%) ArcSight
6 5 (2.01%) LogRhythm
6 5 (2.01%) Qualys
6 5 (2.01%) Tripwire
7 4 (1.61%) Cellebrite
7 4 (1.61%) Fortinet
7 4 (1.61%) IBM
7 4 (1.61%) Palo Alto
7 4 (1.61%) SAP
8 3 (1.20%) Centrify
8 3 (1.20%) EMC
8 3 (1.20%) Juniper
8 3 (1.20%) Sun
8 3 (1.20%) Sybase