Period
to 27 January 2021

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 27 January 2021 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK > England
6 months to
27 Jan 2021
Same period 2020 Same period 2019
Rank 350 316 357
Rank change year-on-year -34 +41 -21
Permanent jobs citing CISM 492 1,122 1,257
As % of all permanent jobs advertised in England 0.84% 0.97% 0.90%
As % of the Qualifications category 4.12% 4.43% 3.71%
Number of salaries quoted 426 969 970
Median annual salary £65,000 £63,500 £65,000
Median salary % change year-on-year +2.36% -2.31% -
10th Percentile £41,750 £42,500 £41,250
90th Percentile £88,750 £94,000 £97,500
UK median annual salary £65,000 £62,500 £65,000
% change year-on-year +4.00% -3.85% -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
England
Permanent vacancies requiring academic qualifications or professional certifications 11,933 25,343 33,918
As % of all permanent IT jobs advertised in England 20.30% 21.96% 24.35%
Number of salaries quoted 8,851 19,236 25,307
Median annual salary £55,000 £50,000 £50,000
Median salary % change year-on-year +10.00% - +5.26%
10th Percentile £31,250 £27,500 £26,250
90th Percentile £85,000 £83,750 £82,500
UK median annual salary £55,000 £50,000 £50,000
% change year-on-year +10.00% - +5.26%

CISM
Job Vacancy Trend in England

Job postings citing CISM as a proportion of all IT jobs advertised in England.

Job vacancy trend for CISM in England

CISM
Salary Trend in England

3-month moving average salary quoted in jobs citing CISM in England.

Salary trend for CISM in England

CISM
Salary Histogram in England

Salary distribution for jobs citing CISM in England over the 6 months to 27 January 2021.

Salary histogram for CISM in England

CISM
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the England region over the 6 months to 27 January 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London +50 263 £65,000 -7.47% 33
North of England +45 85 £55,000 -1.79% 20
South East +20 79 £60,000 -7.69% 17
North West +55 49 £52,500 -7.26% 16
Midlands -46 33 £67,500 +25.00% 7
West Midlands -55 23 £67,500 +27.49% 6
Yorkshire +4 20 £62,500 +11.61% 2
North East +30 19 £56,645 +41.61% 2
South West +10 17 £65,000 +12.07% 2
East Midlands +38 10 £68,750 +25.00% 1
East of England +69 9 £65,000 +4.00% 2
CISM
UK

For the 6 months to 27 January 2021, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for CISM.

1 451 (91.67%) CISSP
2 346 (70.33%) Information Security
3 275 (55.89%) Cybersecurity
4 256 (52.03%) ISO/IEC 27001
5 163 (33.13%) CISA
6 155 (31.50%) Management Information System
7 151 (30.69%) Risk Management
8 145 (29.47%) NIST
9 137 (27.85%) Firewall
10 133 (27.03%) Azure
11 116 (23.58%) SIEM
12 110 (22.36%) GDPR
13 107 (21.75%) Finance
14 99 (20.12%) Degree
15 94 (19.11%) Security Management
16 89 (18.09%) Identity Access Management
17 88 (17.89%) Security Architecture
18 79 (16.06%) Intrusion Detection
19 78 (15.85%) Microsoft
20 72 (14.63%) Cyberthreat
21 68 (13.82%) Cyber Essentials
22 67 (13.62%) Active Directory
23 66 (13.41%) Windows
24 64 (13.01%) AWS
25 63 (12.80%) CRISC
25 63 (12.80%) ITIL
26 62 (12.60%) Cisco Certification
26 62 (12.60%) CESG Certified Professional
27 59 (11.99%) Vulnerability Management
28 57 (11.59%) IaaS

CISM
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 1 (0.20%) Apache
1 1 (0.20%) IIS
Applications
1 6 (1.22%) Microsoft Excel
2 5 (1.02%) Microsoft Office
2 5 (1.02%) Microsoft PowerPoint
3 4 (0.81%) MS Visio
Business Applications
1 1 (0.20%) Oracle Applications
1 1 (0.20%) Relativity
Cloud Services
1 133 (27.03%) Azure
2 64 (13.01%) AWS
3 57 (11.59%) IaaS
4 55 (11.18%) Office 365
5 37 (7.52%) SaaS
6 34 (6.91%) PaaS
7 19 (3.86%) Cloud Computing
8 17 (3.46%) BPaaS
9 15 (3.05%) Azure Active Directory
10 10 (2.03%) GCP
10 10 (2.03%) Mimecast
11 4 (0.81%) AWS CloudFormation
12 3 (0.61%) IBM Cloud
13 1 (0.20%) Amazon EC2
13 1 (0.20%) Amazon S3
13 1 (0.20%) Dynamics 365
13 1 (0.20%) OpenShift
Communications & Networking
1 137 (27.85%) Firewall
2 79 (16.06%) Intrusion Detection
3 35 (7.11%) Network Security
4 26 (5.28%) LAN
5 25 (5.08%) VPN
6 18 (3.66%) TCP/IP
6 18 (3.66%) WAN
7 17 (3.46%) WAAS
8 14 (2.85%) DNS
9 10 (2.03%) HTTP
9 10 (2.03%) Wireless
10 8 (1.63%) DHCP
10 8 (1.63%) SSL
11 7 (1.42%) Internet
11 7 (1.42%) SAN
11 7 (1.42%) Unified Communications
12 6 (1.22%) Cisco ASA
12 6 (1.22%) F5 BIG-IP GTM
12 6 (1.22%) Wi-Fi
13 5 (1.02%) MPLS
Database & Business Intelligence
1 9 (1.83%) Big Data
2 5 (1.02%) GIS
3 4 (0.81%) Blockchain
4 1 (0.20%) Data Warehouse
4 1 (0.20%) DB2
4 1 (0.20%) MySQL
4 1 (0.20%) PostgreSQL
4 1 (0.20%) Redis
4 1 (0.20%) SQL Server
4 1 (0.20%) SQL Server 2012
4 1 (0.20%) SQL Server 2014
Development Applications
1 1 (0.20%) GitLab
1 1 (0.20%) SonarQube
1 1 (0.20%) TeamCity
General
1 107 (21.75%) Finance
2 32 (6.50%) Legal
3 31 (6.30%) Banking
4 27 (5.49%) Public Sector
5 21 (4.27%) Aerospace
6 17 (3.46%) Telecoms
7 11 (2.24%) Law
8 8 (1.63%) Manufacturing
8 8 (1.63%) Marketing
8 8 (1.63%) Military
9 5 (1.02%) Investment Banking
10 4 (0.81%) International Banking
11 2 (0.41%) Advertising
11 2 (0.41%) Automotive
11 2 (0.41%) Financial Institution
11 2 (0.41%) Retail
11 2 (0.41%) Retail Banking
12 1 (0.20%) Electronics
12 1 (0.20%) German Language
12 1 (0.20%) Pharmaceutical
Job Titles
1 94 (19.11%) Analyst
1 94 (19.11%) Security Manager
2 78 (15.85%) Security Analyst
3 62 (12.60%) Security Engineer
4 53 (10.77%) Consultant
5 46 (9.35%) Information Manager
6 45 (9.15%) Architect
6 45 (9.15%) Information Security Manager
7 43 (8.74%) Security Specialist
8 40 (8.13%) Security Architect
9 36 (7.32%) Security Consultant
10 34 (6.91%) Information Analyst
10 34 (6.91%) Information Security Analyst
10 34 (6.91%) IT Analyst
11 33 (6.71%) IT Security Analyst
12 31 (6.30%) Cybersecurity Manager
13 29 (5.89%) Security Officer
14 24 (4.88%) Information Security Specialist
14 24 (4.88%) Information Specialist
15 23 (4.67%) Cybersecurity Engineer
Libraries, Frameworks & Software Standards
1 12 (2.44%) Middleware
2 10 (2.03%) .NET
2 10 (2.03%) .NET Framework
2 10 (2.03%) OAuth
3 9 (1.83%) Web Services
4 5 (1.02%) YAML
5 4 (0.81%) LDAP
6 3 (0.61%) Natural Language Processing
6 3 (0.61%) SAML
7 1 (0.20%) LAMP
7 1 (0.20%) LAPP Stack
7 1 (0.20%) Node.js
7 1 (0.20%) REST
7 1 (0.20%) Ruby on Rails
7 1 (0.20%) SailPoint
Miscellaneous
1 155 (31.50%) Management Information System
2 72 (14.63%) Cyberthreat
3 40 (8.13%) Analytical Skills
4 18 (3.66%) Data Protection Act
4 18 (3.66%) Self-Motivation
5 17 (3.46%) Data Centre
5 17 (3.46%) Enterprise Software
6 10 (2.03%) Cyber Kill Chain
7 9 (1.83%) Security Operations Centre
8 8 (1.63%) CESG
9 7 (1.42%) Mobile App
9 7 (1.42%) Public Cloud
10 6 (1.22%) BYOD
10 6 (1.22%) Cyberattack
10 6 (1.22%) Distributed Denial-of-Service
10 6 (1.22%) Robotics
11 5 (1.02%) Cyber Defence
12 4 (0.81%) Social Media
13 3 (0.61%) Blog
13 3 (0.61%) CESG CLAS
Operating Systems
1 66 (13.41%) Windows
2 46 (9.35%) Windows Server
3 26 (5.28%) Linux
4 17 (3.46%) Unix
5 7 (1.42%) Mac OS
6 5 (1.02%) Solaris
6 5 (1.02%) Windows XP
7 4 (0.81%) Windows Server 2012
8 2 (0.41%) AIX
8 2 (0.41%) Windows Server 2008
8 2 (0.41%) Windows Server 2016
9 1 (0.20%) Android
9 1 (0.20%) Apple iOS
9 1 (0.20%) Check Point GAiA
9 1 (0.20%) Windows 7
9 1 (0.20%) Windows 8
9 1 (0.20%) Windows Server 2019
Processes & Methodologies
1 346 (70.33%) Information Security
2 275 (55.89%) Cybersecurity
3 151 (30.69%) Risk Management
4 116 (23.58%) SIEM
5 94 (19.11%) Security Management
6 89 (18.09%) Identity Access Management
7 88 (17.89%) Security Architecture
8 63 (12.80%) ITIL
9 59 (11.99%) Vulnerability Management
10 53 (10.77%) Kalman Filter
10 53 (10.77%) Penetration Testing
11 49 (9.96%) Vulnerability Assessment
12 48 (9.76%) Information Security Management
12 48 (9.76%) Security Operations
13 46 (9.35%) ISMS
14 45 (9.15%) Data Protection
15 44 (8.94%) Web Filtering
16 41 (8.33%) Information Assurance
17 39 (7.93%) Computer Science
18 38 (7.72%) Risk Assessment
Programming Languages
1 17 (3.46%) C
2 11 (2.24%) Java
3 10 (2.03%) SQL
4 7 (1.42%) PowerShell
4 7 (1.42%) Python
5 4 (0.81%) Go
6 3 (0.61%) R
7 1 (0.20%) Bash Shell
7 1 (0.20%) JavaScript
7 1 (0.20%) PHP
7 1 (0.20%) Ruby
7 1 (0.20%) VBScript
Qualifications
1 451 (91.67%) CISSP
2 163 (33.13%) CISA
3 99 (20.12%) Degree
4 63 (12.80%) CRISC
5 62 (12.60%) CESG Certified Professional
5 62 (12.60%) Cisco Certification
6 56 (11.38%) CEH
7 54 (10.98%) Security Cleared
8 49 (9.96%) SC Cleared
9 44 (8.94%) (ISC)2 CCSP
10 39 (7.93%) CCSP
11 30 (6.10%) ISO 27001 Lead Implementer
12 23 (4.67%) CompTIA Security+
12 23 (4.67%) ISO 27001 Lead Auditor
12 23 (4.67%) SSCP
13 22 (4.47%) SANS
14 20 (4.07%) CISMP
15 14 (2.85%) CCNA
15 14 (2.85%) CCNP
16 13 (2.64%) GIAC
Quality Assurance & Compliance
1 256 (52.03%) ISO/IEC 27001
2 145 (29.47%) NIST
3 110 (22.36%) GDPR
4 68 (13.82%) Cyber Essentials
5 52 (10.57%) COBIT
6 51 (10.37%) NCSC
7 46 (9.35%) PCI DSS
8 23 (4.67%) RMADS
9 21 (4.27%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 20 (4.07%) HMG Security Policy Framework
10 20 (4.07%) ITGC
11 17 (3.46%) 21 CFR Part 11
11 17 (3.46%) HIPAA
12 16 (3.25%) ISO/IEC 27005
13 15 (3.05%) ISO 31000
14 10 (2.03%) Cyber Essentials PLUS
14 10 (2.03%) JSP 440
15 8 (1.63%) Sarbanes-Oxley
16 6 (1.22%) NIST 800
17 4 (0.81%) ISO 9001
System Software
1 67 (13.62%) Active Directory
2 6 (1.22%) VMware Infrastructure
3 2 (0.41%) VMware ESXi
4 1 (0.20%) Docker
4 1 (0.20%) Hyper-V
4 1 (0.20%) XenApp
4 1 (0.20%) XenDesktop
Systems Management
1 27 (5.49%) Microsoft Intune
2 9 (1.83%) Nessus
3 5 (1.02%) CSIRT
4 4 (0.81%) QRadar
4 4 (0.81%) SCCM
4 4 (0.81%) Terraform
5 3 (0.61%) CASB
6 2 (0.41%) Kubernetes
6 2 (0.41%) SCOM
7 1 (0.20%) Ansible
7 1 (0.20%) Cisco CME
7 1 (0.20%) Cisco CUCM
7 1 (0.20%) HAProxy
7 1 (0.20%) Opscode Chef
7 1 (0.20%) Puppet
Vendors
1 78 (15.85%) Microsoft
2 35 (7.11%) VMware
3 21 (4.27%) CheckPoint
4 20 (4.07%) Cisco
5 10 (2.03%) Google
5 10 (2.03%) Palo Alto
6 9 (1.83%) Oracle
6 9 (1.83%) ServiceNow
7 7 (1.42%) Forcepoint
8 6 (1.22%) F5
8 6 (1.22%) Splunk
9 5 (1.02%) Apple
9 5 (1.02%) Barracuda Networks
9 5 (1.02%) Zscaler
10 4 (0.81%) Darktrace
10 4 (0.81%) Interwoven
10 4 (0.81%) Qualys
10 4 (0.81%) SolarWinds
11 3 (0.61%) IBM
11 3 (0.61%) Veeam