Period
to 17 September 2021

The following table provides summary statistics for contract job vacancies with a requirement for CISM qualifications. Included is a benchmarking guide to the contractor rates offered over the 6 months to 17 September 2021 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISACA Certified Information Security Manager (CISM)
UK
6 months to
17 Sep 2021
Same period 2020 Same period 2019
Rank 458 334 473
Rank change year-on-year -124 +139 -15
Contract jobs citing CISM 374 202 419
As % of all contract jobs advertised in the UK 0.47% 0.67% 0.47%
As % of the Qualifications category 2.52% 2.63% 2.41%
Number of daily rates quoted 249 134 303
10th Percentile £450 £327 £405
25th Percentile £513 £420 £463
Median daily rate (50th Percentile) £600 £544 £550
Median % change year-on-year +10.34% -1.14% +4.76%
75th Percentile £688 £647 £675
90th Percentile £775 £725 £750
UK excluding London median daily rate £588 £502 £516
% change year-on-year +17.15% -2.81% +3.20%
Number of hourly rates quoted 11 2 0
Median hourly rate £57.77 £69.00 -
Median % change year-on-year -16.28% - -
UK excluding London median hourly rate £57.77 £69.00 -
% change year-on-year -16.28% - -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Contract vacancies requiring academic qualifications or professional certifications 14,829 7,690 17,392
As % of all contract IT jobs advertised in the UK 18.69% 25.51% 19.44%
Number of daily rates quoted 9,614 5,146 10,964
10th Percentile £313 £291 £263
25th Percentile £408 £388 £363
Median daily rate (50th Percentile) £500 £475 £465
Median % change year-on-year +5.26% +2.15% +3.33%
75th Percentile £600 £575 £569
90th Percentile £679 £650 £650
UK excluding London median daily rate £475 £450 £440
% change year-on-year +5.56% +2.27% +6.02%
Number of hourly rates quoted 684 281 771
10th Percentile £12.30 £16.00 £13.75
25th Percentile £16.25 £21.05 £17.50
Median hourly rate £33.00 £32.00 £39.18
Median % change year-on-year +3.13% -18.32% +73.84%
75th Percentile £53.75 £48.75 £49.95
90th Percentile £65.53 £64.50 £57.50
UK excluding London median hourly rate £31.22 £31.39 £40.00
% change year-on-year -0.55% -21.53% +74.18%

CISM
Job Vacancy Trend

Job postings citing CISM as a proportion of all IT jobs advertised.

Job vacancy trend for CISM in the UK

CISM
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing CISM.

Daily rate trend for CISM in the UK

CISM
Daily Rate Histogram

Daily rate distribution for jobs citing CISM over the 6 months to 17 September 2021.

Daily rate histogram for CISM in the UK

CISM
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing CISM.

Hourly rate trend for CISM in the UK

CISM
Hourly Rate Histogram

Hourly rate distribution of jobs citing CISM over the 6 months to 17 September 2021.

Hourly rate histogram for CISM in the UK

CISM
Top 14 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing CISM within the UK over the 6 months to 17 September 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -113 299 £600 +13.21% 126
London -94 171 £600 +4.35% 52
UK excluding London -120 140 £588 +17.15% 85
Work from Home -154 140 £630 +21.27% 20
South East -65 53 £650 +18.18% 21
South West -42 29 £550 +11.68% 14
Scotland -67 29 £650 +11.59% 7
North of England -80 12 £585 +10.38% 17
North West -54 9 £550 +22.91% 8
Midlands -72 9 £575 +21.05% 14
East of England -36 8 £445 +37.00% 8
West Midlands -59 8 £581 +22.37% 9
Yorkshire -49 3 £685 +34.31% 8
East Midlands -39 1 £275 -63.33% 5

For the 6 months to 17 September 2021, IT contractor jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for CISM.

1 348 (93.05%) CISSP
2 237 (63.37%) Information Security
3 187 (50.00%) Cybersecurity
4 138 (36.90%) Finance
5 128 (34.22%) Risk Management
6 126 (33.69%) ISO/IEC 27001
7 120 (32.09%) CRISC
8 100 (26.74%) CISA
9 88 (23.53%) Social Skills
10 87 (23.26%) Degree
11 76 (20.32%) NIST
12 66 (17.65%) Security Cleared
13 65 (17.38%) Management Information System
14 61 (16.31%) Security Architecture
15 56 (14.97%) Security Operations
16 55 (14.71%) Azure
17 54 (14.44%) Agile Software Development
17 54 (14.44%) Security Management
18 51 (13.64%) TOGAF
18 51 (13.64%) Vulnerability Management
19 50 (13.37%) Firewall
19 50 (13.37%) Cisco Certification
20 49 (13.10%) SC Cleared
21 48 (12.83%) SIEM
22 47 (12.57%) SABSA
23 45 (12.03%) Network Security
24 42 (11.23%) GDPR
25 41 (10.96%) Information Security Management
25 41 (10.96%) Penetration Testing
26 40 (10.70%) GCP

CISM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 6 (1.60%) IIS
2 5 (1.34%) SharePoint
3 3 (0.80%) Confluence
4 1 (0.27%) OpenStack
Applications
1 9 (2.41%) Microsoft Office
2 5 (1.34%) Microsoft Excel
3 3 (0.80%) Microsoft PowerPoint
4 2 (0.53%) MS Visio
Business Applications
1 4 (1.07%) Sentinel
2 3 (0.80%) iTrent
2 3 (0.80%) Oracle EBS
2 3 (0.80%) Unit4 Business World
3 2 (0.53%) Dynamics CRM
Cloud Services
1 55 (14.71%) Azure
2 40 (10.70%) GCP
3 36 (9.63%) AWS
4 20 (5.35%) SaaS
5 13 (3.48%) IaaS
5 13 (3.48%) Microsoft 365
6 11 (2.94%) Cloud Computing
7 9 (2.41%) PaaS
8 8 (2.14%) Azure Active Directory
8 8 (2.14%) Azure Sentinel
9 2 (0.53%) Amazon EC2
9 2 (0.53%) Amazon Kinesis
9 2 (0.53%) Amazon S3
9 2 (0.53%) Amazon SageMaker
9 2 (0.53%) AWS Data Pipeline
9 2 (0.53%) Dynamics 365
9 2 (0.53%) Mimecast
9 2 (0.53%) OpenShift
9 2 (0.53%) Power Platform
9 2 (0.53%) Serverless
Communications & Networking
1 50 (13.37%) Firewall
2 45 (12.03%) Network Security
3 15 (4.01%) Internet
4 9 (2.41%) Intrusion Detection
5 7 (1.87%) VPN
6 6 (1.60%) FTP
7 5 (1.34%) LAN
7 5 (1.34%) TCP/IP
8 4 (1.07%) Intranet
9 3 (0.80%) Cisco IOS
9 3 (0.80%) HTTP
9 3 (0.80%) SSL
9 3 (0.80%) Unified Communications
9 3 (0.80%) WAN
10 2 (0.53%) Cisco ASA
10 2 (0.53%) IPsec
10 2 (0.53%) VoIP
10 2 (0.53%) Wi-Fi
11 1 (0.27%) DMZ
11 1 (0.27%) Wireless
Database & Business Intelligence
1 4 (1.07%) Big Data
1 4 (1.07%) Data Lake
2 3 (0.80%) NoSQL
2 3 (0.80%) SQL Server
3 2 (0.53%) Amazon Athena
3 2 (0.53%) Amazon DynamoDB
3 2 (0.53%) Data Warehouse
3 2 (0.53%) Hadoop
3 2 (0.53%) MongoDB
3 2 (0.53%) Power BI
4 1 (0.27%) MS Access
4 1 (0.27%) Relational Database
Development Applications
1 4 (1.07%) JIRA
2 2 (0.53%) Git (software)
2 2 (0.53%) Jenkins
2 2 (0.53%) Maven
3 1 (0.27%) Metasploit
3 1 (0.27%) Spinnaker
General
1 138 (36.90%) Finance
2 88 (23.53%) Social Skills
3 37 (9.89%) Banking
4 30 (8.02%) Analytical Skills
5 25 (6.68%) Legal
6 21 (5.61%) Public Sector
7 13 (3.48%) Investment Banking
8 10 (2.67%) Influencing Skills
8 10 (2.67%) Presentation Skills
8 10 (2.67%) Telecoms
9 7 (1.87%) Electronics
9 7 (1.87%) Manufacturing
9 7 (1.87%) Marketing
10 6 (1.60%) Financial Institution
10 6 (1.60%) Organisational Skills
11 5 (1.34%) Law
11 5 (1.34%) Retail Banking
12 4 (1.07%) Automotive
12 4 (1.07%) International Banking
13 3 (0.80%) Retail
Job Titles
1 101 (27.01%) Architect
2 97 (25.94%) Security Architect
3 78 (20.86%) Consultant
4 65 (17.38%) Security Consultant
5 60 (16.04%) Security Manager
6 49 (13.10%) Analyst
7 34 (9.09%) Information Security Consultant
8 33 (8.82%) Security Analyst
9 25 (6.68%) Information Security Manager
10 23 (6.15%) Information Manager
11 22 (5.88%) Cybersecurity Manager
12 20 (5.35%) Cloud Architect
13 14 (3.74%) Project Manager
13 14 (3.74%) Risk Analyst
13 14 (3.74%) Security Engineer
13 14 (3.74%) Security Project Manager
13 14 (3.74%) Security Specialist
14 12 (3.21%) Security Technical Consultant
14 12 (3.21%) Technical Consultant
14 12 (3.21%) Technical Security Consultant
Libraries, Frameworks & Software Standards
1 8 (2.14%) OAuth
2 7 (1.87%) ModSecurity
3 5 (1.34%) SAML
4 4 (1.07%) Web Services
5 3 (0.80%) Oracle Fusion
5 3 (0.80%) SailPoint
6 2 (0.53%) Ruby on Rails
6 2 (0.53%) SOAP
7 1 (0.27%) .NET
7 1 (0.27%) GraphQL
7 1 (0.27%) JSON
7 1 (0.27%) LDAP
7 1 (0.27%) Middleware
7 1 (0.27%) Regular Expression
Miscellaneous
1 65 (17.38%) Management Information System
2 28 (7.49%) Cyberthreat
3 13 (3.48%) Self-Motivation
4 12 (3.21%) Cyberattack
5 11 (2.94%) Security Operations Centre
6 9 (2.41%) Public Cloud
7 6 (1.60%) Data Protection Act
7 6 (1.60%) Distributed Denial-of-Service
8 5 (1.34%) Cyber Defence
8 5 (1.34%) Cybercrime
8 5 (1.34%) iPad
8 5 (1.34%) PKI
8 5 (1.34%) User Experience
9 4 (1.07%) Virtual Team
10 3 (0.80%) FMCG
11 2 (0.53%) Client/Server
11 2 (0.53%) Enterprise Cloud
11 2 (0.53%) Hedge funds
11 2 (0.53%) IVR
11 2 (0.53%) SCADA
Operating Systems
1 24 (6.42%) Windows
2 15 (4.01%) Linux
3 9 (2.41%) Unix
4 3 (0.80%) VMS
5 2 (0.53%) Windows 10
5 2 (0.53%) Windows Server
6 1 (0.27%) Windows 7
Processes & Methodologies
1 237 (63.37%) Information Security
2 187 (50.00%) Cybersecurity
3 128 (34.22%) Risk Management
4 61 (16.31%) Security Architecture
5 56 (14.97%) Security Operations
6 54 (14.44%) Agile Software Development
6 54 (14.44%) Security Management
7 51 (13.64%) TOGAF
7 51 (13.64%) Vulnerability Management
8 48 (12.83%) SIEM
9 47 (12.57%) SABSA
10 41 (10.96%) Information Security Management
10 41 (10.96%) Penetration Testing
11 39 (10.43%) Project Management
12 38 (10.16%) Data Protection
13 37 (9.89%) Risk Assessment
14 36 (9.63%) Identity Access Management
15 34 (9.09%) Incident Management
16 29 (7.75%) Internal Audit
16 29 (7.75%) ITIL
Programming Languages
1 24 (6.42%) Python
2 10 (2.67%) Java
3 7 (1.87%) SQL
4 6 (1.60%) Go
4 6 (1.60%) Groovy
4 6 (1.60%) JavaScript
4 6 (1.60%) Ruby
4 6 (1.60%) VBA
5 5 (1.34%) Scala
6 4 (1.07%) Bash Shell
7 3 (0.80%) C
7 3 (0.80%) PowerShell
8 1 (0.27%) C#
8 1 (0.27%) C++
8 1 (0.27%) PHP
8 1 (0.27%) Shell Script
Qualifications
1 348 (93.05%) CISSP
2 120 (32.09%) CRISC
3 100 (26.74%) CISA
4 87 (23.26%) Degree
5 66 (17.65%) Security Cleared
6 50 (13.37%) Cisco Certification
7 49 (13.10%) SC Cleared
8 31 (8.29%) (ISC)2 CCSP
9 30 (8.02%) CESG Certified Professional
10 26 (6.95%) GIAC
11 22 (5.88%) CGEIT
12 21 (5.61%) CEH
13 17 (4.55%) Computer Science Degree
13 17 (4.55%) DV Cleared
13 17 (4.55%) SANS
14 15 (4.01%) CCSP
15 14 (3.74%) PMI Certification
15 14 (3.74%) PMP
16 13 (3.48%) SSCP
17 12 (3.21%) CCNP
Quality Assurance & Compliance
1 126 (33.69%) ISO/IEC 27001
2 76 (20.32%) NIST
3 42 (11.23%) GDPR
4 30 (8.02%) COBIT
5 28 (7.49%) NCSC
6 26 (6.95%) PCI DSS
7 24 (6.42%) GRC
7 24 (6.42%) Sarbanes-Oxley
8 21 (5.61%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 20 (5.35%) SOC 2
10 18 (4.81%) Cyber Essentials
11 14 (3.74%) HMG Security Policy Framework
12 11 (2.94%) ITGC
12 11 (2.94%) QA
13 10 (2.67%) NIST 800
14 8 (2.14%) Cyber Essentials PLUS
15 6 (1.60%) JSP 440
16 5 (1.34%) RMADS
17 3 (0.80%) ISO/IEC 27005
18 2 (0.53%) ISO 31000
System Software
1 10 (2.67%) Active Directory
2 4 (1.07%) Docker
3 3 (0.80%) BitLocker
4 2 (0.53%) Virtual Machines
4 2 (0.53%) VMware ESXi
4 2 (0.53%) VMware Infrastructure
Systems Management
1 10 (2.67%) Kubernetes
2 8 (2.14%) CSIRT
3 5 (1.34%) Active Directory Federation Services
3 5 (1.34%) Single Sign-On
4 4 (1.07%) Microsoft Intune
4 4 (1.07%) QRadar
4 4 (1.07%) RSA Archer
4 4 (1.07%) Terraform
5 3 (0.80%) EnCase
5 3 (0.80%) FTK
5 3 (0.80%) Network Intrusion Detection System
6 2 (0.53%) CA Single Sign-On
6 2 (0.53%) Host Intrusion Detection System
6 2 (0.53%) Nessus
6 2 (0.53%) WMI
7 1 (0.27%) HP Fortify
7 1 (0.27%) McAfee ePO
7 1 (0.27%) SCCM
7 1 (0.27%) SolarWinds Orion
7 1 (0.27%) Tivoli
Vendors
1 37 (9.89%) Microsoft
2 29 (7.75%) Google
3 12 (3.21%) Cisco
3 12 (3.21%) SAP
3 12 (3.21%) Splunk
4 10 (2.67%) Oracle
5 7 (1.87%) CyberArk
6 6 (1.60%) McAfee
7 5 (1.34%) Palo Alto
7 5 (1.34%) Qualys
8 4 (1.07%) VMware
9 3 (0.80%) Capita
9 3 (0.80%) Cellebrite
9 3 (0.80%) CheckPoint
9 3 (0.80%) ServiceNow
9 3 (0.80%) Snow
9 3 (0.80%) Tanium
9 3 (0.80%) Veracode
10 2 (0.53%) Darktrace
10 2 (0.53%) LogRhythm