Period
to 29 November 2021

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 29 November 2021 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK > England
6 months to
29 Nov 2021
Same period 2020 Same period 2019
Rank 463 328 334
Rank change year-on-year -135 +6 +8
Permanent jobs citing CISM 719 436 1,205
As % of all permanent jobs advertised in England 0.64% 0.88% 0.96%
As % of the Qualifications category 3.01% 4.20% 4.24%
Number of salaries quoted 496 345 950
10th Percentile £43,500 £42,500 £42,500
25th Percentile £53,813 £51,250 £52,028
Median annual salary (50th Percentile) £67,500 £65,000 £65,000
Median % change year-on-year +3.85% - -
75th Percentile £80,000 £77,500 £81,250
90th Percentile £94,375 £90,000 £97,500
UK median annual salary £67,500 £65,000 £63,500
% change year-on-year +3.85% +2.36% -2.31%

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
England
Permanent vacancies requiring academic qualifications or professional certifications 23,913 10,375 28,391
As % of all permanent IT jobs advertised in England 21.26% 20.97% 22.70%
Number of salaries quoted 13,829 8,135 21,567
10th Percentile £30,997 £31,250 £27,500
25th Percentile £40,500 £41,250 £36,000
Median annual salary (50th Percentile) £55,000 £55,000 £50,000
Median % change year-on-year - +10.00% -
75th Percentile £72,500 £71,250 £67,500
90th Percentile £90,000 £87,500 £82,700
UK median annual salary £55,000 £55,000 £50,000
% change year-on-year - +10.00% -

CISM
Job Vacancy Trend in England

Job postings citing CISM as a proportion of all IT jobs advertised in England.

Job vacancy trend for CISM in England

CISM
Salary Trend in England

3-month moving average salary quoted in jobs citing CISM in England.

Salary trend for CISM in England

CISM
Salary Histogram in England

Salary distribution for jobs citing CISM in England over the 6 months to 29 November 2021.

Salary histogram for CISM in England

CISM
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the England region over the 6 months to 29 November 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London -195 306 £71,066 +9.33% 54
South East -42 166 £60,000 +9.09% 17
Midlands -68 80 £65,000 +13.04% 17
South West -42 68 £62,500 -3.85% 14
North of England -100 67 £62,500 +13.64% 20
West Midlands -81 53 £66,250 +20.45% 13
North West -87 43 £62,500 -3.85% 9
East Midlands -50 23 £62,125 -11.25% 4
Yorkshire -90 21 £62,500 +15.74% 8
East of England -103 17 £66,750 +2.69% 10
North East - 7 £62,500 - 3
CISM
UK

For the 6 months to 29 November 2021, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for CISM.

1 684 (95.13%) CISSP
2 506 (70.38%) Information Security
3 436 (60.64%) Cybersecurity
4 361 (50.21%) ISO/IEC 27001
5 303 (42.14%) Risk Management
6 262 (36.44%) Social Skills
7 236 (32.82%) CISA
8 206 (28.65%) NIST
9 180 (25.03%) Finance
10 165 (22.95%) CRISC
11 161 (22.39%) Degree
12 145 (20.17%) GDPR
13 140 (19.47%) Management Information System
14 131 (18.22%) Security Architecture
15 126 (17.52%) SIEM
16 125 (17.39%) ITIL
17 122 (16.97%) Agile Software Development
18 117 (16.27%) Azure
19 113 (15.72%) Security Cleared
19 113 (15.72%) Data Protection
19 113 (15.72%) Regulatory Compliance
20 112 (15.58%) Security Management
21 109 (15.16%) Risk Assessment
22 107 (14.88%) Continuous Improvement
23 105 (14.60%) PCI DSS
24 103 (14.33%) Cyber Essentials
25 95 (13.21%) Analytical Skills
26 93 (12.93%) Security Operations
27 91 (12.66%) Firewall
28 90 (12.52%) CEH

CISM
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 15 (2.09%) IIS
2 11 (1.53%) MTS
3 4 (0.56%) SharePoint
Applications
1 4 (0.56%) Microsoft Office
2 3 (0.42%) Microsoft PowerPoint
3 1 (0.14%) Microsoft Excel
3 1 (0.14%) Microsoft Project
3 1 (0.14%) MS Visio
Business Applications
1 3 (0.42%) Sentinel
2 1 (0.14%) NetSuite
2 1 (0.14%) Unit4 Business World
Cloud Services
1 117 (16.27%) Azure
2 70 (9.74%) AWS
3 52 (7.23%) Microsoft 365
4 17 (2.36%) Cloud Computing
5 13 (1.81%) SaaS
6 11 (1.53%) IaaS
6 11 (1.53%) Mimecast
7 10 (1.39%) GCP
7 10 (1.39%) PaaS
8 8 (1.11%) Azure Sentinel
9 3 (0.42%) Akamai
9 3 (0.42%) Serverless
9 3 (0.42%) Sumo Logic
10 2 (0.28%) Azure Active Directory
10 2 (0.28%) GitHub
11 1 (0.14%) Dynamics 365
Communications & Networking
1 91 (12.66%) Firewall
2 59 (8.21%) Network Security
3 19 (2.64%) Intrusion Detection
3 19 (2.64%) WAN
4 18 (2.50%) LAN
5 16 (2.23%) Internet
6 15 (2.09%) Cisco ISE
7 11 (1.53%) TCP/IP
7 11 (1.53%) Wireless
8 10 (1.39%) VPN
8 10 (1.39%) Wi-Fi
9 9 (1.25%) HTTP
10 7 (0.97%) SCCP
10 7 (0.97%) Wireless Security
11 6 (0.83%) Cisco IPT
11 6 (0.83%) DNS
11 6 (0.83%) Unified Communications
12 5 (0.70%) DHCP
12 5 (0.70%) Kerberos
12 5 (0.70%) SSL
Database & Business Intelligence
1 9 (1.25%) Blockchain
2 4 (0.56%) DB2
3 2 (0.28%) Big Data
3 2 (0.28%) DTS
3 2 (0.28%) GIS
4 1 (0.14%) SQL Server
Development Applications
1 1 (0.14%) Jenkins
1 1 (0.14%) JIRA
1 1 (0.14%) Sonatype Nexus
General
1 262 (36.44%) Social Skills
2 180 (25.03%) Finance
3 95 (13.21%) Analytical Skills
4 81 (11.27%) Legal
5 36 (5.01%) Inclusion and Diversity
6 31 (4.31%) Presentation Skills
7 30 (4.17%) Law
8 29 (4.03%) Police
9 26 (3.62%) Influencing Skills
10 23 (3.20%) Public Sector
10 23 (3.20%) Telecoms
11 20 (2.78%) Retail
12 15 (2.09%) Manufacturing
13 12 (1.67%) Banking
14 8 (1.11%) Marketing
15 7 (0.97%) Back Office
15 7 (0.97%) Electronics
15 7 (0.97%) French Language
15 7 (0.97%) Pharmaceutical
16 5 (0.70%) Billing
Job Titles
1 128 (17.80%) Consultant
1 128 (17.80%) Security Manager
2 102 (14.19%) Security Consultant
3 92 (12.80%) Analyst
4 80 (11.13%) Security Analyst
5 75 (10.43%) Architect
5 75 (10.43%) Security Architect
6 69 (9.60%) Information Manager
6 69 (9.60%) Information Security Manager
7 62 (8.62%) Cybersecurity Consultant
8 45 (6.26%) Security Engineer
9 40 (5.56%) Security Officer
10 39 (5.42%) Information Analyst
11 38 (5.29%) Information Security Analyst
12 36 (5.01%) Cybersecurity Manager
13 35 (4.87%) Auditor
14 33 (4.59%) IT Auditor
15 32 (4.45%) Information Security Consultant
16 30 (4.17%) Head of Security
17 29 (4.03%) Junior Consultant
Libraries, Frameworks & Software Standards
1 6 (0.83%) SAML
2 5 (0.70%) LDAP
3 2 (0.28%) .NET
3 2 (0.28%) .NET Framework
4 1 (0.14%) J2EE
4 1 (0.14%) REST
4 1 (0.14%) SOAP
Miscellaneous
1 140 (19.47%) Management Information System
2 79 (10.99%) Cyberthreat
3 29 (4.03%) Smart Meter
4 27 (3.76%) Cyberattack
4 27 (3.76%) Data Protection Act
5 22 (3.06%) Self-Motivation
6 18 (2.50%) Cyber Kill Chain
7 15 (2.09%) Public Cloud
7 15 (2.09%) Security Operations Centre
8 12 (1.67%) Data Centre
9 10 (1.39%) Fibre Optics
10 9 (1.25%) PKI
11 8 (1.11%) Distributed Denial-of-Service
11 8 (1.11%) Robotics
11 8 (1.11%) SCADA
12 7 (0.97%) Cyber Defence
12 7 (0.97%) Virtual Team
13 6 (0.83%) Cybercrime
14 5 (0.70%) Mainframe
14 5 (0.70%) PMI
Operating Systems
1 26 (3.62%) Windows
2 21 (2.92%) Linux
3 7 (0.97%) Windows Server
4 6 (0.83%) Mac OS
4 6 (0.83%) Unix
5 5 (0.70%) Windows 10
6 4 (0.56%) AIX
6 4 (0.56%) zOS
7 1 (0.14%) Android
7 1 (0.14%) Apple iOS
7 1 (0.14%) Windows 7
Processes & Methodologies
1 506 (70.38%) Information Security
2 436 (60.64%) Cybersecurity
3 303 (42.14%) Risk Management
4 131 (18.22%) Security Architecture
5 126 (17.52%) SIEM
6 125 (17.39%) ITIL
7 122 (16.97%) Agile Software Development
8 113 (15.72%) Data Protection
8 113 (15.72%) Regulatory Compliance
9 112 (15.58%) Security Management
10 109 (15.16%) Risk Assessment
11 107 (14.88%) Continuous Improvement
12 93 (12.93%) Security Operations
13 86 (11.96%) Stakeholder Management
14 84 (11.68%) Information Security Management
14 84 (11.68%) Vulnerability Management
15 79 (10.99%) ISMS
16 65 (9.04%) Internal Audit
17 63 (8.76%) Information Assurance
18 62 (8.62%) Incident Management
Programming Languages
1 31 (4.31%) C
2 15 (2.09%) Python
3 6 (0.83%) Bash Shell
4 5 (0.70%) Go
4 5 (0.70%) PowerShell
5 4 (0.56%) SQL
6 1 (0.14%) Java
Qualifications
1 684 (95.13%) CISSP
2 236 (32.82%) CISA
3 165 (22.95%) CRISC
4 161 (22.39%) Degree
5 113 (15.72%) Security Cleared
6 90 (12.52%) CEH
7 73 (10.15%) Cisco Certification
8 53 (7.37%) SC Cleared
9 47 (6.54%) (ISC)2 CCSP
9 47 (6.54%) CESG Certified Professional
10 45 (6.26%) SANS
11 42 (5.84%) ISO 27001 Lead Auditor
12 38 (5.29%) CompTIA Security+
13 28 (3.89%) SSCP
14 24 (3.34%) DV Cleared
15 23 (3.20%) GIAC
16 22 (3.06%) CCNP
17 19 (2.64%) ISSAP
18 18 (2.50%) CCIE
18 18 (2.50%) CCSP
Quality Assurance & Compliance
1 361 (50.21%) ISO/IEC 27001
2 206 (28.65%) NIST
3 145 (20.17%) GDPR
4 105 (14.60%) PCI DSS
5 103 (14.33%) Cyber Essentials
6 73 (10.15%) NCSC
7 65 (9.04%) GRC
8 64 (8.90%) COBIT
9 39 (5.42%) Cyber Essentials PLUS
10 36 (5.01%) ITGC
11 34 (4.73%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
12 17 (2.36%) Sarbanes-Oxley
13 16 (2.23%) NIST 800
13 16 (2.23%) RMADS
14 14 (1.95%) SLA
15 13 (1.81%) HIPAA
15 13 (1.81%) ISO/IEC 20000
15 13 (1.81%) QA
15 13 (1.81%) SOC 2
16 11 (1.53%) IASME
System Software
1 9 (1.25%) Active Directory
2 4 (0.56%) OpenAM
2 4 (0.56%) OpenIDM
2 4 (0.56%) RACF
3 3 (0.42%) BitLocker
4 2 (0.28%) VMware Infrastructure
5 1 (0.14%) Forefront TMG
5 1 (0.14%) Virtual Machines
Systems Management
1 11 (1.53%) QRadar
1 11 (1.53%) Single Sign-On
2 10 (1.39%) Kubernetes
3 8 (1.11%) CASB
4 7 (0.97%) Microsoft Intune
5 5 (0.70%) Kibana
6 4 (0.56%) CA Single Sign-On
6 4 (0.56%) Nessus
6 4 (0.56%) Oracle Identity Management
7 3 (0.42%) EMC NetWorker
8 2 (0.28%) CSIRT
8 2 (0.28%) EnCase
8 2 (0.28%) FTK
8 2 (0.28%) Nexpose
8 2 (0.28%) SCCM
9 1 (0.14%) Active Directory Federation Services
9 1 (0.14%) AirWatch
9 1 (0.14%) Ansible
9 1 (0.14%) Forefront Identity Manager
9 1 (0.14%) Terraform
Vendors
1 50 (6.95%) Microsoft
2 25 (3.48%) Cisco
3 15 (2.09%) Google
4 11 (1.53%) Splunk
5 10 (1.39%) SolarWinds
6 9 (1.25%) Palo Alto
7 7 (0.97%) Darktrace
7 7 (0.97%) Oracle
7 7 (0.97%) SAP
8 6 (0.83%) AlienVault
9 5 (0.70%) CA
9 5 (0.70%) CheckPoint
9 5 (0.70%) CyberArk
9 5 (0.70%) Proofpoint
9 5 (0.70%) Varonis
10 4 (0.56%) Apple
10 4 (0.56%) BMC
10 4 (0.56%) ForgeRock
10 4 (0.56%) LogRhythm
10 4 (0.56%) Sophos