Period
to 26 April 2018

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 26 April 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK > England
6 months to
26 Apr 2018
Same period 2017 Same period 2016
Rank 314 304 339
Rank change year-on-year -10 +35 +193
Permanent jobs citing CISM 1,677 1,717 1,897
As % of all permanent IT jobs advertised in England 1.01% 1.07% 0.99%
As % of the Qualifications category 4.32% 4.27% 3.55%
Number of salaries quoted 1,326 1,336 1,549
England median annual salary £65,000 £65,000 £60,000
Median salary % change year-on-year - +8.33% -
10th Percentile £45,000 £41,250 £42,500
90th Percentile £97,500 £90,000 £90,000
UK median annual salary £65,000 £65,000 £60,000
% change year-on-year - +8.33% -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
England
Permanent vacancies requiring academic qualifications or professional certifications 38,860 40,235 53,391
As % of all permanent IT jobs advertised in England 23.48% 25.13% 27.73%
Number of salaries quoted 29,910 31,950 43,281
England median annual salary £49,500 £45,000 £46,912
Median salary % change year-on-year +10.00% -4.07% +4.25%
10th Percentile £26,250 £26,250 £26,250
90th Percentile £80,000 £77,500 £76,250
UK median annual salary £47,500 £45,000 £45,000
% change year-on-year +5.56% - -

CISM
Job Vacancy Trend in England

Job postings citing CISM as a percentage of all IT jobs advertised in England.

Job vacancy trend for CISM in England

CISM
Salary Trend in England

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM in England.

Salary trend for CISM in England

CISM
Salary Histogram in England

The salary distribution of IT jobs citing CISM in England over the 6 months to 26 April 2018.

Salary histogram for CISM in England

CISM
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the England region over the 6 months to 26 April 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London -27 895 £72,500 +3.57% 73
South East +83 310 £60,000 - 33
North of England -7 216 £57,500 +27.78% 23
Midlands -9 161 £55,000 +15.79% 23
West Midlands -15 113 £55,000 +15.79% 16
North West -32 108 £57,500 +2.68% 14
Yorkshire +18 94 £57,000 +42.50% 6
East of England -68 64 £56,250 +10.29% 9
East Midlands +12 46 £62,500 +42.05% 7
South West -30 30 £55,000 -8.33% 3
North East -21 14 £49,250 +9.44% 3
CISM
UK

For the 6 months to 26 April 2018, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for CISM.

1 1,625 (96.90%) CISSP
2 1,251 (74.60%) Information Security
3 844 (50.33%) CISA
4 838 (49.97%) ISO/IEC 27001
5 674 (40.19%) Cybersecurity
6 559 (33.33%) Finance
7 441 (26.30%) Risk Management
8 408 (24.33%) GDPR
9 387 (23.08%) SIEM
10 379 (22.60%) Firewall
11 351 (20.93%) PCI DSS
12 338 (20.16%) Management Information System
13 326 (19.44%) Degree
14 320 (19.08%) Data Protection
15 292 (17.41%) ITIL
16 282 (16.82%) Penetration Testing
17 278 (16.58%) Security Architecture
18 251 (14.97%) Security Operations
19 237 (14.13%) Vulnerability Management
20 233 (13.89%) CRISC
21 230 (13.71%) SANS
22 217 (12.94%) Windows
23 209 (12.46%) Security Management
23 209 (12.46%) GIAC
24 199 (11.87%) CEH
25 188 (11.21%) Network Security
26 185 (11.03%) COBIT
26 185 (11.03%) Stakeholder Management
27 180 (10.73%) Agile Software Development
28 165 (9.84%) Legal

CISM
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 50 (2.98%) IIS
2 28 (1.67%) SharePoint
3 13 (0.78%) WebSphere
4 8 (0.48%) Apache
5 7 (0.42%) MS Exchange
6 3 (0.18%) Confluence
7 2 (0.12%) CMS
7 2 (0.12%) SAS
Applications
1 21 (1.25%) Microsoft Office
2 5 (0.30%) MS Visio
3 4 (0.24%) Microsoft PowerPoint
4 3 (0.18%) Microsoft Excel
5 2 (0.12%) Microsoft Project
Business Applications
1 23 (1.37%) Dynamics CRM
2 3 (0.18%) assyst
3 2 (0.12%) Distributed Ledger
Cloud Services
1 126 (7.51%) Amazon AWS
2 115 (6.86%) Microsoft Azure
3 66 (3.94%) Office 365
4 32 (1.91%) SaaS
5 31 (1.85%) Google Cloud Platform
6 29 (1.73%) Mimecast
7 27 (1.61%) OneDrive
8 19 (1.13%) IaaS
9 18 (1.07%) PaaS
10 4 (0.24%) Cloud Computing
11 3 (0.18%) Azure Active Directory
11 3 (0.18%) Virtual Private Cloud
Communications & Networking
1 379 (22.60%) Firewall
2 188 (11.21%) Network Security
3 100 (5.96%) Intrusion Detection
4 79 (4.71%) TCP/IP
5 57 (3.40%) VPN
6 48 (2.86%) Internet
7 43 (2.56%) WAN
8 35 (2.09%) SSL
9 25 (1.49%) LAN
10 19 (1.13%) DKIM
10 19 (1.13%) DMARC
10 19 (1.13%) HTTP
11 18 (1.07%) IPsec
12 15 (0.89%) SCCP
13 14 (0.83%) Cisco IPT
14 13 (0.78%) DNS
14 13 (0.78%) Wireless
15 12 (0.72%) VoIP
16 8 (0.48%) SMTP
16 8 (0.48%) SNMP
Database & Business Intelligence
1 24 (1.43%) Big Data
2 13 (0.78%) MySQL
2 13 (0.78%) SQL Server
3 7 (0.42%) Oracle Database
4 4 (0.24%) Blockchain
5 3 (0.18%) GIS
6 1 (0.060%) PostgreSQL
6 1 (0.060%) Power BI
6 1 (0.060%) RDBMS
6 1 (0.060%) Relational Database
Development Applications
1 14 (0.83%) AppScan
2 5 (0.30%) Burp Suite
3 4 (0.24%) Metasploit
4 3 (0.18%) JIRA
4 3 (0.18%) SonarQube
5 2 (0.12%) Jenkins
5 2 (0.12%) WebScarab
6 1 (0.060%) Git (software)
6 1 (0.060%) Subversion
General
1 559 (33.33%) Finance
2 165 (9.84%) Legal
3 111 (6.62%) Banking
4 72 (4.29%) Retail
5 49 (2.92%) Law
6 46 (2.74%) Telecoms
7 26 (1.55%) Games
8 21 (1.25%) Investment Banking
9 20 (1.19%) Marketing
10 15 (0.89%) Back Office
10 15 (0.89%) Billing
11 14 (0.83%) Retail Banking
12 13 (0.78%) Pharmaceutical
12 13 (0.78%) Private Banking
13 11 (0.66%) Manufacturing
14 10 (0.60%) Front Office
15 9 (0.54%) Corporate Banking
16 8 (0.48%) Publishing
17 7 (0.42%) Advertising
17 7 (0.42%) Military
Job Titles
1 460 (27.43%) Security Manager
2 289 (17.23%) Analyst
3 259 (15.44%) Information Security Manager
4 245 (14.61%) Information Manager
4 245 (14.61%) Security Analyst
5 213 (12.70%) Consultant
6 189 (11.27%) Security Consultant
7 164 (9.78%) Architect
8 162 (9.66%) Security Architect
9 134 (7.99%) Information Analyst
9 134 (7.99%) Information Security Analyst
10 132 (7.87%) Security Engineer
11 123 (7.33%) IT Manager
12 120 (7.16%) Security Officer
13 95 (5.66%) Information Security Officer
14 86 (5.13%) Information Officer
15 85 (5.07%) IT Security Manager
16 84 (5.01%) Information Security Consultant
17 81 (4.83%) Cybersecurity Manager
18 75 (4.47%) Risk Manager
Libraries, Frameworks & Software Standards
1 23 (1.37%) SailPoint
2 22 (1.31%) Web Services
3 17 (1.01%) Middleware
4 13 (0.78%) MSMQ
4 13 (0.78%) WebSphere MQ
5 7 (0.42%) .NET
6 3 (0.18%) ADSI
6 3 (0.18%) LDAP
7 2 (0.12%) HTML
7 2 (0.12%) RESTful
8 1 (0.060%) Java EE
8 1 (0.060%) LAMP
8 1 (0.060%) OAuth
8 1 (0.060%) OpenID
8 1 (0.060%) Regular Expression
8 1 (0.060%) XACML
Miscellaneous
1 338 (20.16%) Management Information System
2 153 (9.12%) Analytical Skills
3 115 (6.86%) Computer Science
4 108 (6.44%) Data Protection Act
5 98 (5.84%) Cyberthreat
6 67 (4.00%) PKI
7 63 (3.76%) Data Centre
8 55 (3.28%) Security Operations Centre
9 37 (2.21%) Cyberattack
10 32 (1.91%) CESG
11 30 (1.79%) Self-Motivation
12 28 (1.67%) Distributed Denial-of-Service
13 25 (1.49%) Cyber Defence
14 20 (1.19%) BYOD
15 19 (1.13%) Fintech
15 19 (1.13%) NHS
15 19 (1.13%) Public Cloud
16 16 (0.95%) Enterprise Software
17 15 (0.89%) Greenfield Project
17 15 (0.89%) Mainframe
Operating Systems
1 217 (12.94%) Windows
2 153 (9.12%) Linux
3 97 (5.78%) Unix
4 80 (4.77%) Windows Server
5 25 (1.49%) Apple iOS
6 22 (1.31%) Mac OS X
7 14 (0.83%) Kali Linux
8 12 (0.72%) AIX
8 12 (0.72%) Windows Server 2008
8 12 (0.72%) Windows Server 2012
9 11 (0.66%) VMS
10 8 (0.48%) FreeBSD
11 7 (0.42%) Solaris
12 3 (0.18%) Android
12 3 (0.18%) CentOS
12 3 (0.18%) Red Hat Enterprise Linux
12 3 (0.18%) Ubuntu
12 3 (0.18%) Windows 10
12 3 (0.18%) Windows Server 2003
12 3 (0.18%) Windows XP
Processes & Methodologies
1 1,251 (74.60%) Information Security
2 674 (40.19%) Cybersecurity
3 441 (26.30%) Risk Management
4 387 (23.08%) SIEM
5 320 (19.08%) Data Protection
6 292 (17.41%) ITIL
7 282 (16.82%) Penetration Testing
8 278 (16.58%) Security Architecture
9 251 (14.97%) Security Operations
10 237 (14.13%) Vulnerability Management
11 209 (12.46%) Security Management
12 185 (11.03%) Stakeholder Management
13 180 (10.73%) Agile Software Development
14 161 (9.60%) Information Security Management
15 154 (9.18%) Incident Management
16 145 (8.65%) Problem-Solving
17 143 (8.53%) Data Loss Prevention
17 143 (8.53%) OWASP
18 131 (7.81%) Identity Access Management
19 130 (7.75%) Risk Assessment
Programming Languages
1 40 (2.39%) Python
2 37 (2.21%) Bash Shell
3 36 (2.15%) Perl
4 35 (2.09%) PowerShell
5 30 (1.79%) C#
6 27 (1.61%) Ruby
7 25 (1.49%) C
8 23 (1.37%) Bourne shell
8 23 (1.37%) Korn
9 20 (1.19%) SQL
10 15 (0.89%) Java
11 10 (0.60%) C++
12 8 (0.48%) PHP
13 7 (0.42%) Shell Script
14 3 (0.18%) Go
15 2 (0.12%) JavaScript
Qualifications
1 1,625 (96.90%) CISSP
2 844 (50.33%) CISA
3 326 (19.44%) Degree
4 233 (13.89%) CRISC
5 230 (13.71%) SANS
6 209 (12.46%) GIAC
7 199 (11.87%) CEH
8 139 (8.29%) Cisco Certification
9 115 (6.86%) SSCP
10 109 (6.50%) CSSLP
11 93 (5.55%) CompTIA Security+
12 91 (5.43%) Security Cleared
13 69 (4.11%) CESG Certified Professional
14 67 (4.00%) SC Cleared
15 58 (3.46%) (ISC)2 CCSP
16 56 (3.34%) Computer Science Degree
17 55 (3.28%) CCNA
18 47 (2.80%) CCSP
19 44 (2.62%) ISO 27001 Lead Auditor
20 43 (2.56%) CGEIT
Quality Assurance & Compliance
1 838 (49.97%) ISO/IEC 27001
2 408 (24.33%) GDPR
3 351 (20.93%) PCI DSS
4 185 (11.03%) COBIT
5 140 (8.35%) Cyber Essentials
6 97 (5.78%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 61 (3.64%) Sarbanes-Oxley
8 35 (2.09%) HIPAA
9 32 (1.91%) Cyber Essentials PLUS
9 32 (1.91%) ISO 22301
10 31 (1.85%) GCP
11 29 (1.73%) NIST 800
12 27 (1.61%) ISO 31000
13 25 (1.49%) HMG Security Policy Framework
14 24 (1.43%) ISO 9001
15 21 (1.25%) PMO
16 12 (0.72%) COSO
16 12 (0.72%) QA
17 9 (0.54%) ISAE 3402
18 8 (0.48%) ISO/IEC 20000
System Software
1 100 (5.96%) Active Directory
2 21 (1.25%) Hyper-V
3 12 (0.72%) VMware Infrastructure
4 4 (0.24%) vSphere
5 1 (0.060%) Docker
5 1 (0.060%) Virtual Desktop
Systems Management
1 40 (2.39%) Nessus
2 24 (1.43%) QRadar
3 20 (1.19%) CSIRT
4 16 (0.95%) Core Impact
5 14 (0.83%) OpenVAS
6 13 (0.78%) Host Intrusion Detection System
6 13 (0.78%) Single Sign-On
7 10 (0.60%) HP Fortify
7 10 (0.60%) Norton AntiVirus
8 8 (0.48%) Juniper STRM
8 8 (0.48%) RSA enVision
8 8 (0.48%) RSA Security Analytics
9 7 (0.42%) McAfee ePO
9 7 (0.42%) Nexpose
9 7 (0.42%) SCCM
10 6 (0.36%) CASB
10 6 (0.36%) WebInspect
11 5 (0.30%) Network Intrusion Detection System
12 4 (0.24%) Microsoft Intune
13 2 (0.12%) Computer Emergency Response Teams
Vendors
1 126 (7.51%) Microsoft
2 84 (5.01%) Cisco
3 48 (2.86%) Qualys
4 45 (2.68%) Symantec
5 40 (2.39%) Sophos
6 38 (2.27%) CheckPoint
7 37 (2.21%) Veracode
8 35 (2.09%) Forcepoint
9 28 (1.67%) CyberArk
10 26 (1.55%) Palo Alto
11 25 (1.49%) Capita
11 25 (1.49%) IBM
11 25 (1.49%) Splunk
12 23 (1.37%) McAfee
13 22 (1.31%) Apple
14 21 (1.25%) Fortinet
15 18 (1.07%) LogRhythm
15 18 (1.07%) Varonis
16 17 (1.01%) ArcSight
16 17 (1.01%) VMware