Period
to 22 September 2018

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 22 September 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK > England
6 months to
22 Sep 2018
Same period 2017 Same period 2016
Rank 322 323 343
Rank change year-on-year +1 +20 +133
Permanent jobs citing CISM 1,580 1,728 1,740
As % of all permanent IT jobs advertised in England 1.02% 1.04% 0.95%
As % of the Qualifications category 4.30% 4.27% 3.59%
Number of salaries quoted 1,144 1,373 1,387
England median annual salary £65,000 £65,000 £65,000
10th Percentile £42,500 £42,500 £41,250
90th Percentile £97,125 £91,250 £88,750
UK median annual salary £65,000 £65,000 £65,000

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
England
Permanent vacancies requiring academic qualifications or professional certifications 36,777 40,468 48,508
As % of all permanent IT jobs advertised in England 23.69% 24.39% 26.50%
Number of salaries quoted 27,454 31,270 39,484
England median annual salary £50,000 £47,500 £46,500
Median salary % change year-on-year +5.26% +2.15% +3.33%
10th Percentile £26,250 £26,250 £26,250
90th Percentile £81,250 £77,500 £76,250
UK median annual salary £50,000 £46,000 £45,000
% change year-on-year +8.70% +2.22% -

CISM
Job Vacancy Trend in England

Job postings citing CISM as a percentage of all IT jobs advertised in England.

Job vacancy trend for CISM in England

CISM
Salary Trend in England

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM in England.

Salary trend for CISM in England

CISM
Salary Histogram in England

The salary distribution of IT jobs citing CISM in England over the 6 months to 22 September 2018.

Salary histogram for CISM in England

CISM
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the England region over the 6 months to 22 September 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London -42 729 £75,000 +7.14% 72
South East +54 308 £60,000 - 39
North of England -23 182 £55,000 - 30
East of England +74 172 £70,000 +27.27% 8
Midlands +58 129 £57,500 +4.55% 20
West Midlands +52 107 £57,000 +14.00% 15
North West -47 84 £55,000 - 18
Yorkshire +44 78 £55,000 +4.76% 10
South West +5 49 £57,500 +4.55% 16
North East -19 20 £65,750 +1.15% 2
East Midlands +9 19 £66,000 +20.00% 5
CISM
UK

For the 6 months to 22 September 2018, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for CISM.

1 1,524 (96.46%) CISSP
2 1,118 (70.76%) Information Security
3 780 (49.37%) CISA
4 722 (45.70%) ISO/IEC 27001
5 664 (42.03%) Cybersecurity
6 468 (29.62%) Risk Management
7 414 (26.20%) Finance
8 379 (23.99%) PCI DSS
9 348 (22.03%) GDPR
10 347 (21.96%) SIEM
11 278 (17.59%) Management Information System
12 271 (17.15%) Degree
13 269 (17.03%) Security Architecture
14 268 (16.96%) ITIL
15 267 (16.90%) Data Protection
16 253 (16.01%) Firewall
17 241 (15.25%) Penetration Testing
18 231 (14.62%) CEH
19 226 (14.30%) CRISC
20 214 (13.54%) Windows
21 209 (13.23%) SANS
22 199 (12.59%) Stakeholder Management
23 193 (12.22%) GIAC
24 181 (11.46%) Vulnerability Management
25 158 (10.00%) Security Management
26 155 (9.81%) Agile Software Development
26 155 (9.81%) Analytical Skills
27 154 (9.75%) COBIT
28 153 (9.68%) Security Operations
29 149 (9.43%) Linux

CISM
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 33 (2.09%) IIS
2 16 (1.01%) SharePoint
3 6 (0.38%) Confluence
4 5 (0.32%) MS Exchange
5 4 (0.25%) Apache
6 1 (0.063%) JBoss
6 1 (0.063%) Tomcat
6 1 (0.063%) WebLogic
Applications
1 10 (0.63%) Microsoft Office
2 9 (0.57%) MS Visio
3 1 (0.063%) Microsoft Project
3 1 (0.063%) Spreadsheet
Business Applications
1 9 (0.57%) assyst
2 7 (0.44%) Distributed Ledger
2 7 (0.44%) SAP GRC
2 7 (0.44%) Sentinel
3 3 (0.19%) Infor M3
4 1 (0.063%) Oracle Applications
Cloud Services
1 85 (5.38%) Amazon AWS
2 79 (5.00%) Microsoft Azure
3 38 (2.41%) Office 365
4 22 (1.39%) SaaS
5 18 (1.14%) Mimecast
6 17 (1.08%) Google Cloud Platform
7 9 (0.57%) Cloud Computing
8 6 (0.38%) IaaS
9 4 (0.25%) OneDrive
10 3 (0.19%) PaaS
11 2 (0.13%) Virtual Private Cloud
12 1 (0.063%) Yammer
Communications & Networking
1 253 (16.01%) Firewall
2 115 (7.28%) Network Security
3 87 (5.51%) Intrusion Detection
4 53 (3.35%) TCP/IP
5 48 (3.04%) WAN
6 40 (2.53%) Internet
7 39 (2.47%) LAN
8 22 (1.39%) SCCP
8 22 (1.39%) VPN
9 16 (1.01%) DNS
10 15 (0.95%) DKIM
10 15 (0.95%) DMARC
11 14 (0.89%) VoIP
12 13 (0.82%) Broadband
12 13 (0.82%) SSL
13 12 (0.76%) IPsec
13 12 (0.76%) Wireless
14 11 (0.70%) HTTP
15 10 (0.63%) Cisco Firepower
15 10 (0.63%) Cisco IPT
Database & Business Intelligence
1 16 (1.01%) Big Data
2 8 (0.51%) GIS
3 7 (0.44%) Blockchain
3 7 (0.44%) Geospatial Data
4 2 (0.13%) MySQL
5 1 (0.063%) BusinessObjects
Development Applications
1 15 (0.95%) Metasploit
2 7 (0.44%) AppScan
2 7 (0.44%) Burp Suite
3 6 (0.38%) JIRA
4 2 (0.13%) SonarQube
General
1 414 (26.20%) Finance
2 113 (7.15%) Legal
3 88 (5.57%) Retail
4 87 (5.51%) Banking
5 42 (2.66%) Telecoms
6 40 (2.53%) Investment Banking
7 24 (1.52%) Law
8 19 (1.20%) Manufacturing
9 16 (1.01%) Marketing
10 15 (0.95%) Financial Institution
11 13 (0.82%) Games
12 10 (0.63%) Local Government
13 9 (0.57%) Publishing
14 7 (0.44%) Pharmaceutical
15 6 (0.38%) Billing
16 5 (0.32%) Advertising
17 4 (0.25%) Aerospace
17 4 (0.25%) Front Office
17 4 (0.25%) Retail Banking
18 3 (0.19%) Spanish Language
Job Titles
1 412 (26.08%) Security Manager
2 256 (16.20%) Analyst
3 231 (14.62%) Information Manager
4 225 (14.24%) Information Security Manager
5 199 (12.59%) Security Analyst
6 184 (11.65%) Consultant
7 167 (10.57%) Security Consultant
8 142 (8.99%) Architect
9 141 (8.92%) Security Architect
10 138 (8.73%) Security Engineer
11 124 (7.85%) Security Officer
12 121 (7.66%) Information Analyst
12 121 (7.66%) Information Security Analyst
13 109 (6.90%) IT Manager
14 94 (5.95%) Information Security Officer
15 86 (5.44%) Information Officer
16 76 (4.81%) Risk Manager
17 74 (4.68%) Cybersecurity Consultant
18 73 (4.62%) Head of Security
19 71 (4.49%) IT Security Manager
Libraries, Frameworks & Software Standards
1 28 (1.77%) Web Services
2 21 (1.33%) SailPoint
3 19 (1.20%) Elastic Stack
4 13 (0.82%) .NET
5 12 (0.76%) Middleware
6 9 (0.57%) LDAP
7 4 (0.25%) ASP.NET
7 4 (0.25%) LAMP
7 4 (0.25%) ModSecurity
8 3 (0.19%) Spring
9 2 (0.13%) SAML
10 1 (0.063%) 802.1X
10 1 (0.063%) HTML
10 1 (0.063%) HTML5
10 1 (0.063%) OAuth
10 1 (0.063%) Regular Expression
10 1 (0.063%) REST
10 1 (0.063%) SPNEGO
10 1 (0.063%) XACML
Miscellaneous
1 278 (17.59%) Management Information System
2 155 (9.81%) Analytical Skills
3 86 (5.44%) Computer Science
4 85 (5.38%) Data Protection Act
5 71 (4.49%) Data Centre
6 67 (4.24%) PKI
7 59 (3.73%) Security Operations Centre
8 49 (3.10%) Self-Motivation
9 48 (3.04%) CESG
10 34 (2.15%) Cyberattack
10 34 (2.15%) Distributed Denial-of-Service
11 32 (2.03%) Cyberthreat
12 21 (1.33%) Enterprise Software
12 21 (1.33%) Fintech
13 17 (1.08%) Freedom of Information
14 16 (1.01%) Public Cloud
15 15 (0.95%) Algorithms
15 15 (0.95%) BYOD
15 15 (0.95%) Cyber Kill Chain
16 12 (0.76%) Life Science
Operating Systems
1 214 (13.54%) Windows
2 149 (9.43%) Linux
3 108 (6.84%) Unix
4 39 (2.47%) Windows Server
5 16 (1.01%) Kali Linux
6 15 (0.95%) AIX
7 14 (0.89%) Windows Server 2008
7 14 (0.89%) Windows Server 2012
8 13 (0.82%) CentOS
9 9 (0.57%) HPUX
9 9 (0.57%) Red Hat Enterprise Linux
9 9 (0.57%) Windows Server 2003
9 9 (0.57%) Windows XP
10 1 (0.063%) VMS
Processes & Methodologies
1 1,118 (70.76%) Information Security
2 664 (42.03%) Cybersecurity
3 468 (29.62%) Risk Management
4 347 (21.96%) SIEM
5 269 (17.03%) Security Architecture
6 268 (16.96%) ITIL
7 267 (16.90%) Data Protection
8 241 (15.25%) Penetration Testing
9 199 (12.59%) Stakeholder Management
10 181 (11.46%) Vulnerability Management
11 158 (10.00%) Security Management
12 155 (9.81%) Agile Software Development
13 153 (9.68%) Security Operations
14 136 (8.61%) Problem-Solving
15 132 (8.35%) OWASP
16 128 (8.10%) Identity Access Management
17 112 (7.09%) Information Security Management
18 110 (6.96%) Data Privacy
18 110 (6.96%) Risk Assessment
19 109 (6.90%) Cryptography
Programming Languages
1 21 (1.33%) Python
2 16 (1.01%) Java
2 16 (1.01%) Perl
3 15 (0.95%) C
3 15 (0.95%) PHP
4 9 (0.57%) Go
4 9 (0.57%) Ruby
5 8 (0.51%) Bash Shell
6 6 (0.38%) PowerShell
7 5 (0.32%) Shell Script
8 3 (0.19%) C++
9 2 (0.13%) C#
Qualifications
1 1,524 (96.46%) CISSP
2 780 (49.37%) CISA
3 271 (17.15%) Degree
4 231 (14.62%) CEH
5 226 (14.30%) CRISC
6 209 (13.23%) SANS
7 193 (12.22%) GIAC
8 139 (8.80%) SSCP
9 105 (6.65%) Cisco Certification
10 98 (6.20%) CESG Certified Professional
11 97 (6.14%) Security Cleared
12 93 (5.89%) CompTIA Security+
13 85 (5.38%) CSSLP
14 59 (3.73%) SC Cleared
15 58 (3.67%) CREST Certified
16 52 (3.29%) (ISC)2 CCSP
17 49 (3.10%) Computer Science Degree
17 49 (3.10%) ISO 27001 Lead Auditor
18 34 (2.15%) CCNA
19 33 (2.09%) CISMP
Quality Assurance & Compliance
1 722 (45.70%) ISO/IEC 27001
2 379 (23.99%) PCI DSS
3 348 (22.03%) GDPR
4 154 (9.75%) COBIT
5 106 (6.71%) Cyber Essentials
6 80 (5.06%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 55 (3.48%) Sarbanes-Oxley
8 48 (3.04%) HMG Security Policy Framework
9 41 (2.59%) Cyber Essentials PLUS
10 35 (2.22%) HIPAA
11 28 (1.77%) ISO 22301
12 27 (1.71%) QA
13 22 (1.39%) ISO 9001
14 21 (1.33%) MiFID
15 18 (1.14%) NIST 800
16 16 (1.01%) ISO/IEC 20000
17 12 (0.76%) IASME
17 12 (0.76%) ISO/IEC 27005
18 10 (0.63%) ISAE 3402
19 8 (0.51%) ISO 31000
System Software
1 28 (1.77%) Active Directory
2 20 (1.27%) Snort
3 10 (0.63%) Hyper-V
4 6 (0.38%) VMware Infrastructure
5 5 (0.32%) vSphere
6 2 (0.13%) Docker
7 1 (0.063%) Firmware
7 1 (0.063%) ProxySG
Systems Management
1 52 (3.29%) Nessus
2 22 (1.39%) OSSEC
3 19 (1.20%) QRadar
4 17 (1.08%) Core Impact
4 17 (1.08%) Nexpose
4 17 (1.08%) OpenVAS
4 17 (1.08%) Single Sign-On
5 11 (0.70%) Nmap
6 10 (0.63%) CASB
7 8 (0.51%) Norton AntiVirus
8 6 (0.38%) HP Fortify
9 5 (0.32%) CSIRT
10 4 (0.25%) Ansible
10 4 (0.25%) RSA Archer
11 3 (0.19%) Host Intrusion Detection System
11 3 (0.19%) Microsoft Intune
12 2 (0.13%) IBM BigFix
12 2 (0.13%) SCCM
12 2 (0.13%) Trend Micro Deep Security
12 2 (0.13%) WSUS
Vendors
1 98 (6.20%) Microsoft
2 72 (4.56%) Symantec
3 69 (4.37%) Sophos
4 63 (3.99%) Cisco
5 62 (3.92%) Qualys
6 46 (2.91%) LogRhythm
7 45 (2.85%) Splunk
8 26 (1.65%) ArcSight
9 24 (1.52%) CyberArk
9 24 (1.52%) Forcepoint
10 23 (1.46%) CheckPoint
11 20 (1.27%) Rapid7
11 20 (1.27%) SolarWinds
12 18 (1.14%) AlienVault
13 17 (1.08%) Aveksa
13 17 (1.08%) Bomgar
14 16 (1.01%) Sun
15 14 (0.89%) McAfee
15 14 (0.89%) Oracle
15 14 (0.89%) Veracode