Period
to 24 July 2021

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for CISA qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 24 July 2021 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Systems Auditor (CISA)
UK > England
6 months to
24 Jul 2021
Same period 2020 Same period 2019
Rank 643 468 514
Rank change year-on-year -175 +46 -69
Permanent jobs citing CISA 321 329 744
As % of all permanent jobs advertised in England 0.32% 0.50% 0.56%
As % of the Qualifications category 1.54% 2.28% 2.28%
Number of salaries quoted 283 290 613
10th Percentile £42,500 £41,250 £42,500
25th Percentile £52,500 £46,563 £51,250
Median annual salary (50th Percentile) £65,000 £60,000 £65,000
Median % change year-on-year +8.33% -7.69% -
75th Percentile £81,250 £80,000 £82,500
90th Percentile £91,000 £86,250 £99,500
UK median annual salary £64,236 £60,000 £65,000
% change year-on-year +7.06% -7.69% -

CISA is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
England
Permanent vacancies requiring academic qualifications or professional certifications 20,892 14,431 32,692
As % of all permanent IT jobs advertised in England 20.83% 22.14% 24.45%
Number of salaries quoted 12,624 10,878 24,115
10th Percentile £31,250 £30,000 £26,750
25th Percentile £41,250 £38,475 £35,000
Median annual salary (50th Percentile) £55,000 £52,500 £50,000
Median % change year-on-year +4.76% +5.00% -
75th Percentile £72,500 £70,000 £67,500
90th Percentile £87,500 £85,000 £83,000
UK median annual salary £55,000 £52,500 £50,000
% change year-on-year +4.76% +5.00% -

CISA
Job Vacancy Trend in England

Job postings citing CISA as a proportion of all IT jobs advertised in England.

Job vacancy trend for CISA in England

CISA
Salary Trend in England

3-month moving average salary quoted in jobs citing CISA in England.

Salary trend for CISA in England

CISA
Salary Histogram in England

Salary distribution for jobs citing CISA in England over the 6 months to 24 July 2021.

Salary histogram for CISA in England

CISA
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISA within the England region over the 6 months to 24 July 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London -125 166 £70,000 +7.69% 18
South East -85 57 £62,500 +7.76% 14
Midlands -64 27 £61,250 +16.67% 6
North of England -84 27 £55,000 - 14
West Midlands -52 24 £62,500 +16.28% 6
East of England -27 22 £77,500 +29.17% 1
South West -55 15 £42,500 -39.29% 5
Yorkshire -58 13 £55,000 - 3
North West -57 12 £50,000 -6.89% 11
North East -19 2 £80,000 +23.08%
CISA
UK

For the 6 months to 24 July 2021, IT jobs citing CISA also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for CISA.

1 268 (83.49%) CISSP
2 245 (76.32%) CISM
3 189 (58.88%) Information Security
4 155 (48.29%) ISO/IEC 27001
5 134 (41.74%) Cybersecurity
6 106 (33.02%) Risk Management
7 105 (32.71%) Social Skills
8 94 (29.28%) SIEM
9 93 (28.97%) NIST
10 76 (23.68%) Management Information System
11 71 (22.12%) Finance
12 69 (21.50%) Azure
13 64 (19.94%) Firewall
14 61 (19.00%) ITIL
15 59 (18.38%) Security Management
15 59 (18.38%) Security Architecture
16 57 (17.76%) Microsoft
17 56 (17.45%) Security Operations
18 54 (16.82%) Vulnerability Management
19 53 (16.51%) CRISC
20 52 (16.20%) COBIT
21 48 (14.95%) Degree
22 47 (14.64%) GDPR
23 46 (14.33%) AWS
24 43 (13.40%) Identity Access Management
25 42 (13.08%) CEH
26 41 (12.77%) Network Security
26 41 (12.77%) GRC
27 39 (12.15%) Penetration Testing
27 39 (12.15%) Incident Management

CISA
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 19 (5.92%) IIS
2 10 (3.12%) SharePoint
3 1 (0.31%) Appian
3 1 (0.31%) Elasticsearch
Applications
1 7 (2.18%) Microsoft Excel
1 7 (2.18%) Microsoft PowerPoint
1 7 (2.18%) MS Visio
2 1 (0.31%) Microsoft Office
Business Applications
1 8 (2.49%) Sentinel
2 1 (0.31%) Oracle ERP
2 1 (0.31%) Oracle Financials
2 1 (0.31%) Oracle Procure-to-Pay
2 1 (0.31%) SAP BPC
2 1 (0.31%) SAP GRC
2 1 (0.31%) SAP Oil and Gas
Cloud Services
1 69 (21.50%) Azure
2 46 (14.33%) AWS
3 31 (9.66%) Microsoft 365
4 22 (6.85%) SaaS
5 21 (6.54%) Cloud Computing
5 21 (6.54%) PaaS
6 20 (6.23%) IaaS
7 18 (5.61%) Azure Sentinel
8 13 (4.05%) Azure Active Directory
9 10 (3.12%) Serverless
10 6 (1.87%) Azure Service Bus
11 5 (1.56%) Akamai
11 5 (1.56%) BPaaS
11 5 (1.56%) Power Platform
11 5 (1.56%) PowerApps
12 3 (0.93%) GCP
13 2 (0.62%) Azure Key Vault
13 2 (0.62%) Mimecast
14 1 (0.31%) Amazon GuardDuty
14 1 (0.31%) IBM Cloud
Communications & Networking
1 64 (19.94%) Firewall
2 41 (12.77%) Network Security
3 32 (9.97%) Intrusion Detection
4 24 (7.48%) VPN
5 13 (4.05%) TCP/IP
6 11 (3.43%) DNS
7 9 (2.80%) Internet
8 8 (2.49%) Reverse Proxy
9 6 (1.87%) DHCP
9 6 (1.87%) GSM
9 6 (1.87%) HTTP
9 6 (1.87%) LAN
9 6 (1.87%) WAN
9 6 (1.87%) Wireless
10 5 (1.56%) DMZ
10 5 (1.56%) SD-WAN
10 5 (1.56%) SSL
10 5 (1.56%) WAAS
10 5 (1.56%) Wireless Security
11 4 (1.25%) Unified Communications
Database & Business Intelligence
1 9 (2.80%) SQL Server
2 7 (2.18%) Oracle Database
3 6 (1.87%) MySQL
4 5 (1.56%) Azure SQL Database
4 5 (1.56%) Data Warehouse
4 5 (1.56%) RDBMS
4 5 (1.56%) Relational Database
5 3 (0.93%) Blockchain
6 2 (0.62%) DB2
6 2 (0.62%) Oracle Database 11g
7 1 (0.31%) Oracle Reports
7 1 (0.31%) Power BI
7 1 (0.31%) SAP HANA
7 1 (0.31%) Tableau
Development Applications
1 5 (1.56%) JIRA
1 5 (1.56%) SoapUI
2 1 (0.31%) SonarQube
2 1 (0.31%) TeamCity
General
1 105 (32.71%) Social Skills
2 71 (22.12%) Finance
3 38 (11.84%) Analytical Skills
4 28 (8.72%) Presentation Skills
5 27 (8.41%) Legal
6 16 (4.98%) Banking
7 13 (4.05%) Retail
8 11 (3.43%) Public Sector
9 10 (3.12%) Law
10 8 (2.49%) French Language
10 8 (2.49%) Telecoms
11 7 (2.18%) Influencing Skills
12 6 (1.87%) Documentation Skills
13 3 (0.93%) Advertising
13 3 (0.93%) Inclusion and Diversity
13 3 (0.93%) Manufacturing
14 2 (0.62%) Back Office
14 2 (0.62%) Financial Institution
14 2 (0.62%) Investment Banking
14 2 (0.62%) Japanese Language
Job Titles
1 65 (20.25%) Analyst
2 56 (17.45%) Security Analyst
3 46 (14.33%) Architect
4 41 (12.77%) Security Manager
5 37 (11.53%) Security Architect
6 34 (10.59%) IT Analyst
7 30 (9.35%) IT Security Analyst
8 24 (7.48%) Security Engineer
9 23 (7.17%) IT Manager
10 21 (6.54%) Consultant
11 19 (5.92%) Information Manager
11 19 (5.92%) Information Security Manager
12 18 (5.61%) Security Officer
12 18 (5.61%) Security Specialist
13 15 (4.67%) Head of Security
13 15 (4.67%) Risk Manager
14 14 (4.36%) Information Analyst
14 14 (4.36%) Information Security Analyst
15 13 (4.05%) CISSP Architect
15 13 (4.05%) Security Consultant
Libraries, Frameworks & Software Standards
1 14 (4.36%) .NET
2 9 (2.80%) SOAP
3 7 (2.18%) Web Services
4 6 (1.87%) Middleware
4 6 (1.87%) OAuth
4 6 (1.87%) SAML
5 5 (1.56%) ISPF
6 4 (1.25%) .NET Core
6 4 (1.25%) .NET Framework
6 4 (1.25%) ASP.NET
6 4 (1.25%) J2EE
6 4 (1.25%) RESTful
6 4 (1.25%) XML
7 3 (0.93%) SailPoint
8 1 (0.31%) LDAP
8 1 (0.31%) Oracle Fusion
8 1 (0.31%) Regular Expression
8 1 (0.31%) REST
Miscellaneous
1 76 (23.68%) Management Information System
2 17 (5.30%) Cyberthreat
3 16 (4.98%) Data Centre
4 10 (3.12%) Security Operations Centre
5 8 (2.49%) Cyber Kill Chain
5 8 (2.49%) Data Protection Act
5 8 (2.49%) Distributed Denial-of-Service
5 8 (2.49%) Public Cloud
6 5 (1.56%) Cloud Native
6 5 (1.56%) Cyberattack
6 5 (1.56%) Digital Media
6 5 (1.56%) Enterprise Software
6 5 (1.56%) Virtual Team
7 4 (1.25%) Hybrid Cloud
7 4 (1.25%) Smartphone
8 3 (0.93%) PKI
8 3 (0.93%) Private Cloud
8 3 (0.93%) Reinsurance
8 3 (0.93%) SCADA
8 3 (0.93%) Social Media
Operating Systems
1 36 (11.21%) Windows
2 32 (9.97%) Linux
3 9 (2.80%) Mac OS
3 9 (2.80%) Windows Server
4 7 (2.18%) Unix
5 5 (1.56%) Solaris
6 4 (1.25%) Red Hat Enterprise Linux
6 4 (1.25%) SUSE
6 4 (1.25%) Windows 10
7 2 (0.62%) AIX
Processes & Methodologies
1 189 (58.88%) Information Security
2 134 (41.74%) Cybersecurity
3 106 (33.02%) Risk Management
4 94 (29.28%) SIEM
5 61 (19.00%) ITIL
6 59 (18.38%) Security Architecture
6 59 (18.38%) Security Management
7 56 (17.45%) Security Operations
8 54 (16.82%) Vulnerability Management
9 43 (13.40%) Identity Access Management
10 39 (12.15%) Incident Management
10 39 (12.15%) Penetration Testing
11 33 (10.28%) Stakeholder Management
12 32 (9.97%) IT Audit
12 32 (9.97%) Security Monitoring
13 30 (9.35%) Continuous Improvement
13 30 (9.35%) Internal Audit
13 30 (9.35%) Vulnerability Assessment
14 26 (8.10%) Data Privacy
15 23 (7.17%) Risk Assessment
Programming Languages
1 23 (7.17%) SQL
2 15 (4.67%) PowerShell
3 10 (3.12%) Python
4 8 (2.49%) Go
5 6 (1.87%) C
5 6 (1.87%) VB.NET
5 6 (1.87%) VBScript
6 5 (1.56%) Java
7 3 (0.93%) VBA
8 1 (0.31%) C++
8 1 (0.31%) JavaScript
8 1 (0.31%) R
8 1 (0.31%) VB
Qualifications
1 268 (83.49%) CISSP
2 245 (76.32%) CISM
3 53 (16.51%) CRISC
4 48 (14.95%) Degree
5 42 (13.08%) CEH
6 31 (9.66%) Cisco Certification
7 26 (8.10%) OSCP
8 24 (7.48%) SANS
9 23 (7.17%) CompTIA Security+
10 22 (6.85%) (ISC)2 CCSP
11 17 (5.30%) ISO 27001 Lead Auditor
12 16 (4.98%) GIAC
12 16 (4.98%) IISP
13 14 (4.36%) CCSA
13 14 (4.36%) CGEIT
14 11 (3.43%) CCSP
15 10 (3.12%) CISMP
15 10 (3.12%) Security Cleared
16 9 (2.80%) CCNA
17 8 (2.49%) Microsoft Certification
Quality Assurance & Compliance
1 155 (48.29%) ISO/IEC 27001
2 93 (28.97%) NIST
3 52 (16.20%) COBIT
4 47 (14.64%) GDPR
5 41 (12.77%) GRC
6 32 (9.97%) PCI DSS
7 25 (7.79%) Cyber Essentials
8 19 (5.92%) Sarbanes-Oxley
9 10 (3.12%) NCSC
10 9 (2.80%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
11 8 (2.49%) ITGC
12 6 (1.87%) ISO 9001
12 6 (1.87%) QA
13 5 (1.56%) 21 CFR Part 11
13 5 (1.56%) HIPAA
13 5 (1.56%) SOC 2
14 4 (1.25%) COSO
14 4 (1.25%) IASME
14 4 (1.25%) NIST 800
14 4 (1.25%) PMO
System Software
1 23 (7.17%) Active Directory
2 5 (1.56%) Virtual Machines
3 4 (1.25%) Virtual Desktop
4 3 (0.93%) VMware Infrastructure
Systems Management
1 24 (7.48%) QRadar
2 11 (3.43%) Single Sign-On
3 8 (2.49%) Kibana
4 6 (1.87%) Active Directory Federation Services
4 6 (1.87%) RSA Archer
5 5 (1.56%) HP ALM
5 5 (1.56%) HP Fortify
5 5 (1.56%) WebInspect
6 4 (1.25%) CSIRT
6 4 (1.25%) EMC NetWorker
6 4 (1.25%) Kubernetes
6 4 (1.25%) Puppet
7 2 (0.62%) Data Guard
7 2 (0.62%) Oracle Identity Management
7 2 (0.62%) Oracle Identity Manager
8 1 (0.31%) CASB
8 1 (0.31%) DatAdvantage
8 1 (0.31%) Jamf Pro
8 1 (0.31%) Nessus
Vendors
1 57 (17.76%) Microsoft
2 24 (7.48%) Splunk
3 19 (5.92%) Oracle
4 18 (5.61%) AlienVault
5 13 (4.05%) Palo Alto
6 11 (3.43%) CheckPoint
6 11 (3.43%) Cisco
7 10 (3.12%) Qualys
8 9 (2.80%) Symantec
9 7 (2.18%) ArcSight
10 5 (1.56%) Black Duck
10 5 (1.56%) ForgeRock
10 5 (1.56%) HP
10 5 (1.56%) Micro Focus
10 5 (1.56%) Sonatype
10 5 (1.56%) Tripwire
11 4 (1.25%) McAfee
11 4 (1.25%) Meraki
11 4 (1.25%) Rapid7
11 4 (1.25%) VMware