Period
to 23 October 2021

The following table provides summary statistics for contract job vacancies with a requirement for CRISC qualifications. Included is a benchmarking guide to the contractor rates offered over the 6 months to 23 October 2021 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISACA Certified in Risk and Information Systems Control (CRISC)
UK
6 months to
23 Oct 2021
Same period 2020 Same period 2019
Rank 632 495 735
Rank change year-on-year -137 +240 +76
Contract jobs citing CRISC 173 47 84
As % of all contract jobs advertised in the UK 0.21% 0.15% 0.099%
As % of the Qualifications category 1.10% 0.60% 0.49%
Number of daily rates quoted 108 32 58
10th Percentile £450 £268 £413
25th Percentile £523 £444 £481
Median daily rate (50th Percentile) £600 £563 £550
Median % change year-on-year +6.67% +2.27% -
75th Percentile £725 £675 £638
90th Percentile £775 £748 £733
UK excluding London median daily rate £588 £550 £525
% change year-on-year +6.82% +4.76% -19.23%
Number of hourly rates quoted 10 0 0
Median hourly rate £51.00 - -
UK excluding London median hourly rate £51.00 - -

CRISC is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Contract vacancies requiring academic qualifications or professional certifications 15,666 7,854 16,997
As % of all contract IT jobs advertised in the UK 18.63% 24.54% 20.06%
Number of daily rates quoted 10,141 5,278 10,837
10th Percentile £313 £290 £260
25th Percentile £413 £383 £363
Median daily rate (50th Percentile) £500 £475 £463
Median % change year-on-year +5.26% +2.70% +2.78%
75th Percentile £600 £569 £563
90th Percentile £688 £638 £644
UK excluding London median daily rate £475 £455 £443
% change year-on-year +4.51% +2.70% +6.63%
Number of hourly rates quoted 698 322 786
10th Percentile £12.30 £15.00 £14.04
25th Percentile £16.25 £20.77 £17.50
Median hourly rate £32.25 £31.81 £39.34
Median % change year-on-year +1.40% -19.15% +71.55%
75th Percentile £53.75 £50.00 £50.00
90th Percentile £65.68 £64.50 £58.75
UK excluding London median hourly rate £28.57 £27.50 £40.00
% change year-on-year +3.88% -31.25% +73.91%

CRISC
Job Vacancy Trend

Job postings citing CRISC as a proportion of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing CRISC.

Daily rate trend for CRISC in the UK

CRISC
Daily Rate Histogram

Daily rate distribution for jobs citing CRISC over the 6 months to 23 October 2021.

Daily rate histogram for CRISC in the UK

CRISC
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing CRISC.

Hourly rate trend for CRISC in the UK

CRISC
Hourly Rate Histogram

Hourly rate distribution of jobs citing CRISC over the 6 months to 23 October 2021.

Hourly rate histogram for CRISC in the UK

CRISC
Top 12 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing CRISC within the UK over the 6 months to 23 October 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -153 136 £600 +7.87% 21
London -121 102 £600 - 9
Work from Home -160 79 £600 +20.00% 3
UK excluding London -139 46 £588 +6.82% 13
Scotland -60 18 £535 -17.69%
South East -87 18 £663 +32.50% 5
South West -45 5 £500 - 2
Midlands -71 3 £588 +6.82%
West Midlands - 3 £588 -
North West -57 1 £675 +22.73% 2
East of England -59 1 £500 +53.85%
North of England -74 1 £675 +22.73% 5

For the 6 months to 23 October 2021, IT contractor jobs citing CRISC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for CRISC.

1 147 (84.97%) CISSP
2 135 (78.03%) CISM
3 111 (64.16%) Information Security
4 89 (51.45%) Finance
4 89 (51.45%) CISA
5 81 (46.82%) Risk Management
6 63 (36.42%) Cybersecurity
7 60 (34.68%) ISO/IEC 27001
8 52 (30.06%) Social Skills
9 42 (24.28%) NIST
10 39 (22.54%) Management Information System
11 38 (21.97%) Agile Software Development
12 35 (20.23%) COBIT
13 31 (17.92%) GAP Analysis
14 30 (17.34%) CGEIT
14 30 (17.34%) Security Architecture
14 30 (17.34%) Internal Audit
15 29 (16.76%) GDPR
15 29 (16.76%) Sarbanes-Oxley
16 28 (16.18%) Risk Assessment
17 27 (15.61%) Security Management
17 27 (15.61%) Degree
18 26 (15.03%) CEH
19 25 (14.45%) Banking
19 25 (14.45%) AWS
19 25 (14.45%) Vulnerability Management
19 25 (14.45%) SABSA
20 24 (13.87%) Azure
20 24 (13.87%) Firewall
21 23 (13.29%) Cisco Certification

CRISC
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 2 (1.16%) Drupal
2 1 (0.58%) OpenStack
2 1 (0.58%) SharePoint
Applications
1 15 (8.67%) Microsoft Office
2 1 (0.58%) Microsoft Excel
Business Applications
1 1 (0.58%) Sentinel
Cloud Services
1 25 (14.45%) AWS
2 24 (13.87%) Azure
3 16 (9.25%) GCP
4 15 (8.67%) SaaS
5 10 (5.78%) IaaS
6 6 (3.47%) Microsoft 365
7 4 (2.31%) GitHub
7 4 (2.31%) Serverless
8 3 (1.73%) Amazon EC2
8 3 (1.73%) Amazon S3
8 3 (1.73%) AWS KMS
8 3 (1.73%) Cloud Computing
8 3 (1.73%) Power Platform
8 3 (1.73%) Virtual Private Cloud
9 2 (1.16%) OpenShift
9 2 (1.16%) PaaS
10 1 (0.58%) Akamai
10 1 (0.58%) Amazon CloudWatch
10 1 (0.58%) AWS Lambda
10 1 (0.58%) CloudFront
Communications & Networking
1 24 (13.87%) Firewall
2 11 (6.36%) Network Security
3 6 (3.47%) Intrusion Detection
3 6 (3.47%) TCP/IP
4 4 (2.31%) HTTP
4 4 (2.31%) Intranet
4 4 (2.31%) VoIP
5 2 (1.16%) Cisco ASA
5 2 (1.16%) IPsec
5 2 (1.16%) SSL
5 2 (1.16%) VPN
Database & Business Intelligence
1 4 (2.31%) Amazon RDS
2 1 (0.58%) Big Data
2 1 (0.58%) Power BI
2 1 (0.58%) Spotfire
2 1 (0.58%) SQL Server
2 1 (0.58%) Tableau
Development Applications
1 3 (1.73%) Jenkins
1 3 (1.73%) Sonatype Nexus
General
1 89 (51.45%) Finance
2 52 (30.06%) Social Skills
3 25 (14.45%) Banking
4 15 (8.67%) Analytical Skills
5 12 (6.94%) Investment Banking
6 11 (6.36%) Influencing Skills
7 10 (5.78%) Legal
8 9 (5.20%) Presentation Skills
9 4 (2.31%) Pharmaceutical
10 3 (1.73%) Automotive
10 3 (1.73%) Inclusion and Diversity
10 3 (1.73%) Telecoms
11 2 (1.16%) Law
12 1 (0.58%) Financial Institution
12 1 (0.58%) International Banking
12 1 (0.58%) Police
12 1 (0.58%) Polish Language
12 1 (0.58%) Public Sector
12 1 (0.58%) Retail
12 1 (0.58%) Retail Banking
Job Titles
1 46 (26.59%) Architect
2 45 (26.01%) Consultant
3 43 (24.86%) Security Architect
4 41 (23.70%) Security Consultant
5 33 (19.08%) Information Security Consultant
6 24 (13.87%) Analyst
7 17 (9.83%) Security Manager
8 16 (9.25%) Risk Analyst
9 12 (6.94%) Security Analyst
10 11 (6.36%) Project Manager
10 11 (6.36%) Senior Architect
10 11 (6.36%) Senior Security Architect
11 9 (5.20%) Information Security Manager
12 8 (4.62%) Security Project Manager
13 7 (4.05%) Information Manager
13 7 (4.05%) Risk Consultant
13 7 (4.05%) Security Risk Analyst
14 6 (3.47%) Risk Manager
14 6 (3.47%) Security Specialist
14 6 (3.47%) Technical Security Consultant
Libraries, Frameworks & Software Standards
1 3 (1.73%) REST
1 3 (1.73%) SOAP
2 1 (0.58%) .NET
2 1 (0.58%) .NET Framework
2 1 (0.58%) J2EE
2 1 (0.58%) Middleware
Miscellaneous
1 39 (22.54%) Management Information System
2 10 (5.78%) Public Cloud
3 8 (4.62%) Self-Motivation
4 7 (4.05%) Cyberthreat
5 6 (3.47%) FMCG
5 6 (3.47%) Security Operations Centre
6 4 (2.31%) Distributed Denial-of-Service
6 4 (2.31%) PKI
7 3 (1.73%) Cyber Kill Chain
7 3 (1.73%) Data Centre
7 3 (1.73%) Hybrid Cloud
7 3 (1.73%) Mobile App
7 3 (1.73%) Virtual Team
8 2 (1.16%) Cyberattack
8 2 (1.16%) Taxonomies
9 1 (0.58%) Cloud Native
9 1 (0.58%) Data Protection Act
9 1 (0.58%) NHS
9 1 (0.58%) PMI
9 1 (0.58%) Social Media
Operating Systems
1 3 (1.73%) Linux
1 3 (1.73%) Unix
1 3 (1.73%) Windows
2 1 (0.58%) Android
2 1 (0.58%) Apple iOS
Processes & Methodologies
1 111 (64.16%) Information Security
2 81 (46.82%) Risk Management
3 63 (36.42%) Cybersecurity
4 38 (21.97%) Agile Software Development
5 31 (17.92%) GAP Analysis
6 30 (17.34%) Internal Audit
6 30 (17.34%) Security Architecture
7 28 (16.18%) Risk Assessment
8 27 (15.61%) Security Management
9 25 (14.45%) SABSA
9 25 (14.45%) Vulnerability Management
10 23 (13.29%) Remediation Plan
11 22 (12.72%) IT Audit
12 21 (12.14%) Information Security Management
12 21 (12.14%) ITIL
13 18 (10.40%) Stakeholder Management
13 18 (10.40%) TOGAF
14 17 (9.83%) ISMS
15 15 (8.67%) Change Management
16 14 (8.09%) SIEM
Programming Languages
1 3 (1.73%) Python
2 2 (1.16%) Java
3 1 (0.58%) SQL
Qualifications
1 147 (84.97%) CISSP
2 135 (78.03%) CISM
3 89 (51.45%) CISA
4 30 (17.34%) CGEIT
5 27 (15.61%) Degree
6 26 (15.03%) CEH
7 23 (13.29%) Cisco Certification
7 23 (13.29%) GIAC
8 14 (8.09%) (ISC)2 CCSP
9 13 (7.51%) SANS
10 12 (6.94%) GSEC
10 12 (6.94%) ISACA
10 12 (6.94%) Security Cleared
11 10 (5.78%) ISO 27001 Lead Auditor
11 10 (5.78%) ISO 27001 Lead Implementer
11 10 (5.78%) PMI Certification
11 10 (5.78%) SC Cleared
12 9 (5.20%) FFIEC
12 9 (5.20%) PMP
13 8 (4.62%) CCNP
Quality Assurance & Compliance
1 60 (34.68%) ISO/IEC 27001
2 42 (24.28%) NIST
3 35 (20.23%) COBIT
4 29 (16.76%) GDPR
4 29 (16.76%) Sarbanes-Oxley
5 21 (12.14%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 18 (10.40%) PCI DSS
7 14 (8.09%) GRC
7 14 (8.09%) ITGC
8 12 (6.94%) NIST 800
9 8 (4.62%) Cyber Essentials
10 7 (4.05%) SOC 2
11 3 (1.73%) HIPAA
11 3 (1.73%) QA
12 2 (1.16%) NCSC
13 1 (0.58%) Actionable Recommendations
13 1 (0.58%) COSO
13 1 (0.58%) ISO 31000
13 1 (0.58%) ISO 9000
13 1 (0.58%) ISO/IEC 27005
System Software
1 2 (1.16%) VMware ESXi
1 2 (1.16%) VMware Infrastructure
2 1 (0.58%) Active Directory
2 1 (0.58%) Docker
Systems Management
1 6 (3.47%) RSA Archer
2 3 (1.73%) Ansible
2 3 (1.73%) CSIRT
2 3 (1.73%) Opscode Chef
3 2 (1.16%) Host Intrusion Detection System
3 2 (1.16%) Kubernetes
3 2 (1.16%) QRadar
4 1 (0.58%) Computer Emergency Response Teams
4 1 (0.58%) Computer Incident Response Team
4 1 (0.58%) SCCM
4 1 (0.58%) Terraform
4 1 (0.58%) Tivoli
Vendors
1 17 (9.83%) Microsoft
2 11 (6.36%) SAP
3 7 (4.05%) Splunk
4 6 (3.47%) Google
4 6 (3.47%) Qualys
5 5 (2.89%) Cisco
6 4 (2.31%) ServiceNow
7 3 (1.73%) CheckPoint
7 3 (1.73%) Concur
7 3 (1.73%) CyberArk
7 3 (1.73%) Palo Alto
7 3 (1.73%) VMware
8 2 (1.16%) Juniper
8 2 (1.16%) LogLogic
8 2 (1.16%) McAfee
9 1 (0.58%) IBM
9 1 (0.58%) Oracle
9 1 (0.58%) Remedy
9 1 (0.58%) Symantec
9 1 (0.58%) Tripwire