Period
to 4 April 2020

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 4 April 2020 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK > England
6 months to
4 Apr 2020
Same period 2019 Same period 2018
Rank 315 351 332
Rank change year-on-year +36 -19 -20
Permanent jobs citing CISM 1,023 1,262 1,648
As % of all permanent jobs advertised in England 0.95% 0.92% 0.99%
As % of the Qualifications category 4.42% 3.72% 4.18%
Number of salaries quoted 875 948 1,356
Median annual salary £63,500 £65,000 £65,000
Median salary % change year-on-year -2.31% - -
10th Percentile £45,000 £42,500 £45,000
90th Percentile £92,500 £99,500 £97,500
UK median annual salary £63,500 £65,000 £65,000
% change year-on-year -2.31% - -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
England
Permanent vacancies requiring academic qualifications or professional certifications 23,153 33,881 39,423
As % of all permanent IT jobs advertised in England 21.53% 24.66% 23.77%
Number of salaries quoted 17,125 24,633 30,535
Median annual salary £52,500 £50,000 £48,500
Median salary % change year-on-year +5.00% +3.09% +7.78%
10th Percentile £28,250 £26,750 £26,250
90th Percentile £83,750 £82,500 £80,000
UK median annual salary £50,000 £50,000 £47,500
% change year-on-year - +5.26% +5.56%

CISM
Job Vacancy Trend in England

Job postings citing CISM as a proportion of all IT jobs advertised in England.

Job vacancy trend for CISM in England

CISM
Salary Trend in England

3-month moving average salary quoted in jobs citing CISM in England.

Salary trend for CISM in England

CISM
Salary Histogram in England

Salary distribution for jobs citing CISM in England over the 6 months to 4 April 2020.

Salary histogram for CISM in England

CISM
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the England region over the 6 months to 4 April 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London +45 475 £67,500 -10.00% 26
South East +31 197 £63,500 +5.83% 9
North of England +2 130 £57,055 -4.91% 23
Midlands +56 123 £55,000 -4.35% 7
West Midlands +68 101 £55,000 -4.35% 6
South West +3 74 £57,500 -1.71% 5
North West +7 66 £55,000 -15.61% 12
Yorkshire +14 62 £57,500 +4.55% 10
East of England +9 29 £65,000 +8.33% 7
East Midlands +30 20 £55,000 -12.00% 1
North East +1 2 £70,000 +5.38% 1
CISM
UK

For the 6 months to 4 April 2020, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for CISM.

1 961 (93.94%) CISSP
2 781 (76.34%) Information Security
3 593 (57.97%) Cybersecurity
4 506 (49.46%) ISO/IEC 27001
5 366 (35.78%) CISA
6 303 (29.62%) Risk Management
7 277 (27.08%) Finance
8 237 (23.17%) Firewall
9 225 (21.99%) GDPR
10 207 (20.23%) Management Information System
11 187 (18.28%) Degree
11 187 (18.28%) PCI DSS
12 186 (18.18%) SIEM
13 175 (17.11%) NIST
14 168 (16.42%) Cisco Certification
15 165 (16.13%) Security Management
15 165 (16.13%) Data Protection
16 156 (15.25%) CRISC
17 139 (13.59%) Security Cleared
18 138 (13.49%) Security Architecture
19 131 (12.81%) Penetration Testing
20 129 (12.61%) CESG Certified Professional
21 127 (12.41%) Agile Software Development
22 123 (12.02%) Risk Assessment
23 120 (11.73%) Azure
24 119 (11.63%) CEH
25 116 (11.34%) Security Operations
26 111 (10.85%) Legal
27 108 (10.56%) Information Security Management
27 108 (10.56%) ITIL

CISM
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 65 (6.35%) IIS
2 9 (0.88%) SharePoint
3 3 (0.29%) MS Exchange
4 1 (0.098%) Apache
4 1 (0.098%) Confluence
4 1 (0.098%) Elasticsearch
4 1 (0.098%) JBoss
4 1 (0.098%) Tomcat
4 1 (0.098%) WebLogic
4 1 (0.098%) WebSphere
Applications
1 20 (1.96%) Microsoft Excel
2 16 (1.56%) Microsoft PowerPoint
3 10 (0.98%) Microsoft Office
4 4 (0.39%) MS Visio
5 1 (0.098%) Microsoft Project
Business Applications
1 4 (0.39%) Sentinel
2 2 (0.20%) Dynamics CRM
2 2 (0.20%) Dynamics NAV
3 1 (0.098%) Sparx Enterprise Architect
Cloud Services
1 120 (11.73%) Azure
2 89 (8.70%) AWS
3 61 (5.96%) Office 365
4 35 (3.42%) PaaS
5 34 (3.32%) IaaS
6 23 (2.25%) Cloud Computing
7 18 (1.76%) SaaS
8 12 (1.17%) Serverless
9 10 (0.98%) Azure Active Directory
9 10 (0.98%) G Suite
9 10 (0.98%) GCP
9 10 (0.98%) Mimecast
10 6 (0.59%) Power Platform
11 5 (0.49%) PowerApps
12 2 (0.20%) Dynamics 365
13 1 (0.098%) AWS CloudFormation
13 1 (0.098%) AWS CodeDeploy
13 1 (0.098%) Microsoft Flow
Communications & Networking
1 237 (23.17%) Firewall
2 90 (8.80%) Network Security
3 79 (7.72%) Intrusion Detection
4 45 (4.40%) Internet
5 28 (2.74%) LAN
6 26 (2.54%) TCP/IP
7 25 (2.44%) WAN
8 22 (2.15%) DNS
9 21 (2.05%) VPN
10 11 (1.08%) DHCP
10 11 (1.08%) Wireshark
11 10 (0.98%) HTTP
11 10 (0.98%) SAN
11 10 (0.98%) SMTP
12 9 (0.88%) Wi-Fi
13 7 (0.68%) Broadband
13 7 (0.68%) Cisco ASA
13 7 (0.68%) NAS
13 7 (0.68%) SNMP
14 6 (0.59%) PPP
Database & Business Intelligence
1 8 (0.78%) SQL Server
2 6 (0.59%) Power BI
3 5 (0.49%) Big Data
4 2 (0.20%) Maltego
5 1 (0.098%) Data Warehouse
5 1 (0.098%) GIS
5 1 (0.098%) Informix
Development Applications
1 10 (0.98%) Burp Suite
1 10 (0.98%) Metasploit
2 7 (0.68%) WinDbg
3 2 (0.20%) JIRA
4 1 (0.098%) AppScan
4 1 (0.098%) Jenkins
4 1 (0.098%) Snyk
4 1 (0.098%) SonarQube
4 1 (0.098%) Sonatype Nexus
4 1 (0.098%) Team Foundation Server
General
1 277 (27.08%) Finance
2 111 (10.85%) Legal
3 73 (7.14%) Public Sector
4 71 (6.94%) Law
5 37 (3.62%) Retail
6 28 (2.74%) Marketing
7 22 (2.15%) Telecoms
8 21 (2.05%) Banking
9 11 (1.08%) Aerospace
9 11 (1.08%) Manufacturing
10 9 (0.88%) Advertising
11 8 (0.78%) Electronics
11 8 (0.78%) Military
12 7 (0.68%) Financial Institution
13 5 (0.49%) Games
14 4 (0.39%) Back Office
14 4 (0.39%) Local Government
15 3 (0.29%) Police
15 3 (0.29%) Retail Banking
16 2 (0.20%) International Banking
Job Titles
1 226 (22.09%) Security Manager
2 192 (18.77%) Analyst
3 165 (16.13%) Security Analyst
4 153 (14.96%) Information Security Manager
5 149 (14.57%) Information Manager
6 147 (14.37%) Consultant
7 137 (13.39%) Security Consultant
8 101 (9.87%) Security Engineer
9 99 (9.68%) Information Analyst
9 99 (9.68%) Information Security Analyst
10 79 (7.72%) Architect
11 78 (7.62%) Security Architect
12 72 (7.04%) Cybersecurity Consultant
13 69 (6.74%) Security Specialist
14 47 (4.59%) Security Officer
15 42 (4.11%) IT Manager
16 39 (3.81%) IT Security Manager
17 37 (3.62%) Head of Security
18 35 (3.42%) Information Security Engineer
18 35 (3.42%) IT Security Engineer
Libraries, Frameworks & Software Standards
1 40 (3.91%) SailPoint
2 11 (1.08%) Middleware
3 7 (0.68%) ModSecurity
3 7 (0.68%) Regular Expression
4 3 (0.29%) Web Services
5 2 (0.20%) .NET
5 2 (0.20%) RESTful
5 2 (0.20%) TensorFlow
6 1 (0.098%) D3.js
6 1 (0.098%) LDAP
6 1 (0.098%) OAuth
6 1 (0.098%) OAuth2
6 1 (0.098%) OpenID
6 1 (0.098%) XACML
Miscellaneous
1 207 (20.23%) Management Information System
2 62 (6.06%) Analytical Skills
3 45 (4.40%) Self-Motivation
4 43 (4.20%) Cyberthreat
5 37 (3.62%) Data Protection Act
6 28 (2.74%) Cyberattack
6 28 (2.74%) Security Operations Centre
7 24 (2.35%) Data Centre
8 21 (2.05%) User Experience
9 20 (1.96%) Cyber Defence
10 18 (1.76%) Public Cloud
11 13 (1.27%) Enterprise Software
12 11 (1.08%) CESG
12 11 (1.08%) Reinsurance
13 9 (0.88%) BYOD
13 9 (0.88%) Greenfield Project
13 9 (0.88%) Mobile Computing
14 8 (0.78%) Distributed Denial-of-Service
14 8 (0.78%) SWIFT
15 7 (0.68%) Driving Licence
Operating Systems
1 93 (9.09%) Linux
2 78 (7.62%) Windows
3 33 (3.23%) Unix
4 17 (1.66%) Windows Server
5 13 (1.27%) Windows Server 2012
6 6 (0.59%) Kali Linux
6 6 (0.59%) Windows 10
7 4 (0.39%) Windows 7
7 4 (0.39%) Windows Server 2008
8 2 (0.20%) Apple iOS
8 2 (0.20%) Windows Server 2016
9 1 (0.098%) Android
Processes & Methodologies
1 781 (76.34%) Information Security
2 593 (57.97%) Cybersecurity
3 303 (29.62%) Risk Management
4 186 (18.18%) SIEM
5 165 (16.13%) Data Protection
5 165 (16.13%) Security Management
6 138 (13.49%) Security Architecture
7 131 (12.81%) Penetration Testing
8 127 (12.41%) Agile Software Development
9 123 (12.02%) Risk Assessment
10 116 (11.34%) Security Operations
11 108 (10.56%) Information Security Management
11 108 (10.56%) ITIL
12 106 (10.36%) Information Assurance
13 102 (9.97%) Vulnerability Management
14 98 (9.58%) ISMS
15 88 (8.60%) Stakeholder Management
16 80 (7.82%) TOGAF
17 78 (7.62%) Threat Intelligence
18 73 (7.14%) OWASP
Programming Languages
1 57 (5.57%) Python
2 42 (4.11%) SQL
3 40 (3.91%) Perl
4 37 (3.62%) Bash Shell
5 34 (3.32%) PowerShell
6 23 (2.25%) C
6 23 (2.25%) Java
7 7 (0.68%) C#
7 7 (0.68%) C++
7 7 (0.68%) Ruby
7 7 (0.68%) VBScript
8 2 (0.20%) Go
8 2 (0.20%) Julia
8 2 (0.20%) MATLAB
8 2 (0.20%) R
8 2 (0.20%) Scala
Qualifications
1 961 (93.94%) CISSP
2 366 (35.78%) CISA
3 187 (18.28%) Degree
4 168 (16.42%) Cisco Certification
5 156 (15.25%) CRISC
6 139 (13.59%) Security Cleared
7 129 (12.61%) CESG Certified Professional
8 119 (11.63%) CEH
9 103 (10.07%) (ISC)2 CCSP
10 101 (9.87%) SC Cleared
11 70 (6.84%) IISP
12 64 (6.26%) SANS
13 58 (5.67%) GIAC
14 52 (5.08%) CCSP
15 48 (4.69%) CCNP
16 44 (4.30%) CISMP
17 37 (3.62%) SSCP
18 36 (3.52%) CompTIA Security+
18 36 (3.52%) ISO 27001 Lead Implementer
19 33 (3.23%) ISO 27001 Lead Auditor
Quality Assurance & Compliance
1 506 (49.46%) ISO/IEC 27001
2 225 (21.99%) GDPR
3 187 (18.28%) PCI DSS
4 175 (17.11%) NIST
5 105 (10.26%) Cyber Essentials
6 89 (8.70%) NCSC
7 57 (5.57%) COBIT
8 42 (4.11%) HMG Security Policy Framework
8 42 (4.11%) Sarbanes-Oxley
9 35 (3.42%) SLA
10 31 (3.03%) JSP 440
11 27 (2.64%) NIST 800
12 26 (2.54%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
13 24 (2.35%) QA
13 24 (2.35%) RMADS
14 23 (2.25%) Cyber Essentials PLUS
15 15 (1.47%) HIPAA
16 14 (1.37%) ISO 22301
16 14 (1.37%) ISO 9001
17 12 (1.17%) ISO/IEC 27005
System Software
1 47 (4.59%) Active Directory
2 9 (0.88%) VMware Infrastructure
3 8 (0.78%) Hyper-V
4 2 (0.20%) Virtual Machines
5 1 (0.098%) ACF2
5 1 (0.098%) Docker
Systems Management
1 58 (5.67%) Nessus
2 12 (1.17%) Nmap
2 12 (1.17%) QRadar
3 8 (0.78%) CSIRT
4 7 (0.68%) SCCM
5 6 (0.59%) CASB
5 6 (0.59%) McAfee ePO
6 3 (0.29%) IBM Guardium
6 3 (0.29%) Microsoft Intune
6 3 (0.29%) OSSEC
6 3 (0.29%) Terraform
7 2 (0.20%) Ansible
7 2 (0.20%) Computer Emergency Response Teams
7 2 (0.20%) Host Intrusion Detection System
7 2 (0.20%) HP Fortify
7 2 (0.20%) Single Sign-On
8 1 (0.098%) Computer Incident Response Team
8 1 (0.098%) OpenVAS
8 1 (0.098%) Puppet
Vendors
1 76 (7.43%) Microsoft
2 54 (5.28%) Splunk
3 43 (4.20%) Cisco
4 40 (3.91%) Qualys
5 39 (3.81%) Aveksa
6 37 (3.62%) CyberArk
7 34 (3.32%) Sun
8 32 (3.13%) ArcSight
9 19 (1.86%) McAfee
10 18 (1.76%) Palo Alto
11 17 (1.66%) LogRhythm
12 14 (1.37%) CheckPoint
12 14 (1.37%) Meraki
13 12 (1.17%) Capita
14 11 (1.08%) Citrix
14 11 (1.08%) Intel
14 11 (1.08%) ServiceNow
14 11 (1.08%) VMware
15 9 (0.88%) Apple
15 9 (0.88%) Forcepoint