Period
to 13 December 2019

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 13 December 2019 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK > England
6 months to
13 Dec 2019
Same period 2018 Same period 2017
Rank 320 326 327
Rank change year-on-year +6 +1 -9
Permanent jobs citing CISM 1,176 1,437 1,713
As % of all permanent IT jobs advertised in England 0.96% 0.97% 1.02%
As % of the Qualifications category 4.26% 4.06% 4.24%
Number of salaries quoted 928 1,011 1,298
England median annual salary £65,000 £65,000 £64,000
Median salary % change year-on-year - +1.56% -1.54%
10th Percentile £42,500 £42,500 £42,500
90th Percentile £95,000 £96,250 £95,000
UK median annual salary £65,000 £65,000 £64,000
% change year-on-year - +1.56% -1.54%

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
England
Permanent vacancies requiring academic qualifications or professional certifications 27,620 35,429 40,422
As % of all permanent IT jobs advertised in England 22.48% 23.94% 23.96%
Number of salaries quoted 20,587 26,204 31,294
England median annual salary £50,000 £50,000 £47,500
Median salary % change year-on-year - +5.26% +5.56%
10th Percentile £27,500 £26,250 £26,250
90th Percentile £82,500 £82,500 £77,500
UK median annual salary £50,000 £50,000 £47,500
% change year-on-year - +5.26% +5.56%

CISM
Job Vacancy Trend in England

Job postings citing CISM as a percentage of all IT jobs advertised in England.

Job vacancy trend for CISM in England

CISM
Salary Trend in England

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM in England.

Salary trend for CISM in England

CISM
Salary Histogram in England

The salary distribution of IT jobs citing CISM in England over the 6 months to 13 December 2019.

Salary histogram for CISM in England

CISM
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the England region over the 6 months to 13 December 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London +25 522 £75,000 - 41
South East -3 223 £65,000 +8.33% 27
Midlands +81 171 £52,945 -7.92% 16
North of England +17 141 £55,000 - 20
West Midlands +76 130 £52,723 +0.42% 13
South West +1 75 £58,500 +1.74% 12
North West +29 72 £55,000 - 12
Yorkshire +30 60 £58,500 +23.16% 8
East of England -44 40 £65,000 -7.14% 13
East Midlands +43 39 £52,500 -8.70% 3
North East +2 7 £49,750 -19.01%
CISM
UK

For the 6 months to 13 December 2019, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for CISM.

1 1,117 (94.98%) CISSP
2 848 (72.11%) Information Security
3 660 (56.12%) Cybersecurity
4 651 (55.36%) ISO/IEC 27001
5 419 (35.63%) CISA
6 316 (26.87%) Risk Management
6 316 (26.87%) Degree
7 296 (25.17%) NIST
8 289 (24.57%) Finance
9 252 (21.43%) PCI DSS
10 248 (21.09%) GDPR
11 246 (20.92%) SIEM
12 241 (20.49%) Management Information System
13 209 (17.77%) Security Architecture
14 201 (17.09%) Firewall
15 173 (14.71%) Agile Software Development
16 169 (14.37%) CRISC
17 157 (13.35%) ITIL
18 155 (13.18%) Vulnerability Management
19 153 (13.01%) Data Protection
20 148 (12.59%) Security Operations
21 145 (12.33%) Penetration Testing
22 142 (12.07%) Stakeholder Management
23 141 (11.99%) Security Management
24 124 (10.54%) CESG Certified Professional
25 116 (9.86%) Security Cleared
26 113 (9.61%) ISMS
26 113 (9.61%) Azure
27 112 (9.52%) Information Assurance
27 112 (9.52%) TOGAF

CISM
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 69 (5.87%) IIS
2 6 (0.51%) SharePoint
3 2 (0.17%) MS Exchange
4 1 (0.085%) Elasticsearch
Applications
1 28 (2.38%) Microsoft Excel
2 24 (2.04%) Microsoft PowerPoint
3 6 (0.51%) Microsoft Office
4 1 (0.085%) MS Visio
Business Applications
1 3 (0.26%) Sparx Enterprise Architect
2 2 (0.17%) Dynamics CRM
2 2 (0.17%) Dynamics NAV
Cloud Services
1 113 (9.61%) Azure
2 101 (8.59%) AWS
3 46 (3.91%) Office 365
4 43 (3.66%) Cloud Computing
5 32 (2.72%) PaaS
6 30 (2.55%) IaaS
7 29 (2.47%) GCP
7 29 (2.47%) SaaS
8 9 (0.77%) Azure Active Directory
9 6 (0.51%) Serverless
10 3 (0.26%) G Suite
10 3 (0.26%) Mimecast
11 2 (0.17%) Dynamics 365
12 1 (0.085%) Microsoft Flow
12 1 (0.085%) Power Platform
Communications & Networking
1 201 (17.09%) Firewall
2 92 (7.82%) Network Security
3 41 (3.49%) LAN
4 39 (3.32%) Intrusion Detection
5 38 (3.23%) Internet
6 36 (3.06%) WAN
7 22 (1.87%) VPN
8 17 (1.45%) TCP/IP
9 16 (1.36%) HTTP
10 9 (0.77%) PPP
11 7 (0.60%) SAN
12 5 (0.43%) DNS
13 4 (0.34%) Kerberos
13 4 (0.34%) SSL
14 3 (0.26%) Cisco IPT
14 3 (0.26%) Wireless
15 2 (0.17%) Broadband
15 2 (0.17%) MPLS
15 2 (0.17%) SMTP
15 2 (0.17%) WLAN
Database & Business Intelligence
1 12 (1.02%) Big Data
2 5 (0.43%) SQL Server
3 4 (0.34%) Geospatial Data
4 2 (0.17%) GIS
4 2 (0.17%) Maltego
5 1 (0.085%) Power BI
5 1 (0.085%) SAP HANA
Development Applications
1 3 (0.26%) AppScan
1 3 (0.26%) Jenkins
2 2 (0.17%) Metasploit
3 1 (0.085%) JIRA
General
1 289 (24.57%) Finance
2 93 (7.91%) Retail
3 91 (7.74%) Legal
4 89 (7.57%) Public Sector
5 72 (6.12%) Law
6 60 (5.10%) Banking
7 28 (2.38%) Marketing
8 22 (1.87%) Telecoms
9 19 (1.62%) Manufacturing
10 18 (1.53%) Aerospace
11 13 (1.11%) Financial Institution
12 12 (1.02%) Investment Banking
13 10 (0.85%) Games
14 9 (0.77%) Electronics
15 8 (0.68%) Advertising
15 8 (0.68%) Billing
16 6 (0.51%) Military
17 5 (0.43%) Multimedia
18 2 (0.17%) International Banking
18 2 (0.17%) Local Government
Job Titles
1 260 (22.11%) Security Manager
2 185 (15.73%) Analyst
3 168 (14.29%) Security Analyst
4 167 (14.20%) Consultant
5 164 (13.95%) Information Manager
5 164 (13.95%) Information Security Manager
6 146 (12.41%) Security Consultant
7 126 (10.71%) Information Analyst
7 126 (10.71%) Information Security Analyst
8 118 (10.03%) Architect
9 116 (9.86%) Security Architect
10 69 (5.87%) Security Officer
11 65 (5.53%) Security Specialist
12 62 (5.27%) Security Engineer
13 60 (5.10%) Information Security Officer
14 57 (4.85%) Information Officer
15 53 (4.51%) Head of Security
16 50 (4.25%) Cybersecurity Consultant
17 49 (4.17%) Information Security Consultant
18 47 (4.00%) Senior Manager
Libraries, Frameworks & Software Standards
1 43 (3.66%) SailPoint
2 5 (0.43%) .NET
2 5 (0.43%) ModSecurity
3 4 (0.34%) SAML
3 4 (0.34%) Web Services
4 3 (0.26%) LDAP
4 3 (0.26%) Middleware
5 2 (0.17%) D3.js
5 2 (0.17%) OAuth
5 2 (0.17%) RESTful
6 1 (0.085%) .NET Framework
6 1 (0.085%) OpenID
Miscellaneous
1 241 (20.49%) Management Information System
2 70 (5.95%) Analytical Skills
3 60 (5.10%) Cyberthreat
4 45 (3.83%) Security Operations Centre
4 45 (3.83%) Self-Motivation
5 37 (3.15%) Data Protection Act
6 27 (2.30%) Cyberattack
7 21 (1.79%) Cyber Defence
8 15 (1.28%) BYOD
8 15 (1.28%) CESG
9 14 (1.19%) Distributed Denial-of-Service
9 14 (1.19%) Reinsurance
10 13 (1.11%) Data Centre
10 13 (1.11%) User Experience
11 12 (1.02%) PKI
12 11 (0.94%) Enterprise Software
13 10 (0.85%) SWIFT
14 9 (0.77%) Cloud Native
14 9 (0.77%) Mobile Computing
15 8 (0.68%) Greenfield Project
Operating Systems
1 79 (6.72%) Linux
2 65 (5.53%) Windows
3 21 (1.79%) Windows Server
4 13 (1.11%) Unix
5 2 (0.17%) Android
5 2 (0.17%) Apple iOS
5 2 (0.17%) Windows 10
5 2 (0.17%) Windows Server 2012
6 1 (0.085%) Kali Linux
6 1 (0.085%) Mac OS
6 1 (0.085%) Mac OS X
6 1 (0.085%) Windows Server 2008
Processes & Methodologies
1 848 (72.11%) Information Security
2 660 (56.12%) Cybersecurity
3 316 (26.87%) Risk Management
4 246 (20.92%) SIEM
5 209 (17.77%) Security Architecture
6 173 (14.71%) Agile Software Development
7 157 (13.35%) ITIL
8 155 (13.18%) Vulnerability Management
9 153 (13.01%) Data Protection
10 148 (12.59%) Security Operations
11 145 (12.33%) Penetration Testing
12 142 (12.07%) Stakeholder Management
13 141 (11.99%) Security Management
14 113 (9.61%) ISMS
15 112 (9.52%) Information Assurance
15 112 (9.52%) TOGAF
16 109 (9.27%) Risk Assessment
17 102 (8.67%) SABSA
18 95 (8.08%) Identity Access Management
19 94 (7.99%) OWASP
Programming Languages
1 45 (3.83%) Python
2 37 (3.15%) Java
3 32 (2.72%) C++
4 19 (1.62%) C
5 11 (0.94%) PowerShell
6 6 (0.51%) PHP
7 5 (0.43%) Bash Shell
7 5 (0.43%) SQL
8 4 (0.34%) JavaScript
8 4 (0.34%) Perl
9 3 (0.26%) C#
9 3 (0.26%) Shell Script
10 2 (0.17%) Scala
11 1 (0.085%) Go
11 1 (0.085%) Objective-C
Qualifications
1 1,117 (94.98%) CISSP
2 419 (35.63%) CISA
3 316 (26.87%) Degree
4 169 (14.37%) CRISC
5 124 (10.54%) CESG Certified Professional
6 116 (9.86%) Security Cleared
7 109 (9.27%) Cisco Certification
8 102 (8.67%) CEH
9 84 (7.14%) SC Cleared
10 78 (6.63%) (ISC)2 CCSP
11 77 (6.55%) GIAC
12 68 (5.78%) IISP
13 67 (5.70%) SANS
14 48 (4.08%) SSCP
15 47 (4.00%) CompTIA Security+
15 47 (4.00%) ISO 27001 Lead Auditor
16 40 (3.40%) CREST Certified
17 39 (3.32%) ISO 27001 Lead Implementer
18 32 (2.72%) MBCS
19 28 (2.38%) CCNP
Quality Assurance & Compliance
1 651 (55.36%) ISO/IEC 27001
2 296 (25.17%) NIST
3 252 (21.43%) PCI DSS
4 248 (21.09%) GDPR
5 93 (7.91%) Cyber Essentials
6 92 (7.82%) NCSC
7 82 (6.97%) COBIT
8 59 (5.02%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 43 (3.66%) HMG Security Policy Framework
9 43 (3.66%) NIST 800
10 39 (3.32%) Sarbanes-Oxley
11 30 (2.55%) Cyber Essentials PLUS
12 27 (2.30%) SLA
13 21 (1.79%) RMADS
14 16 (1.36%) HIPAA
15 15 (1.28%) ISO 9001
15 15 (1.28%) ISO/IEC 27005
16 14 (1.19%) ISO 22301
17 11 (0.94%) FISMA
17 11 (0.94%) JSP 440
System Software
1 25 (2.13%) Active Directory
2 5 (0.43%) Virtual Machines
3 4 (0.34%) Docker
3 4 (0.34%) VMware Infrastructure
4 1 (0.085%) ACF2
4 1 (0.085%) Hyper-V
4 1 (0.085%) ProxySG
Systems Management
1 44 (3.74%) Nessus
2 24 (2.04%) SCCM
3 23 (1.96%) McAfee ePO
4 6 (0.51%) QRadar
5 5 (0.43%) CASB
5 5 (0.43%) Nmap
6 3 (0.26%) Single Sign-On
7 1 (0.085%) HP Fortify
7 1 (0.085%) Kubernetes
7 1 (0.085%) OpenVAS
7 1 (0.085%) Terraform
Vendors
1 74 (6.29%) Microsoft
2 44 (3.74%) Splunk
3 34 (2.89%) McAfee
4 30 (2.55%) Cisco
4 30 (2.55%) Palo Alto
5 26 (2.21%) LogRhythm
6 25 (2.13%) SolarWinds
7 23 (1.96%) Aveksa
8 22 (1.87%) CA
9 19 (1.62%) Forcepoint
9 19 (1.62%) Google
10 17 (1.45%) CA Agile Central
11 15 (1.28%) Apple
12 14 (1.19%) Intel
12 14 (1.19%) ServiceNow
13 13 (1.11%) Symantec
14 12 (1.02%) Qualys
15 11 (0.94%) CheckPoint
15 11 (0.94%) SAP
16 8 (0.68%) Oracle