Period
to 22 January 2019

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 22 January 2019 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK > England
6 months to
22 Jan 2019
Same period 2018 Same period 2017
Rank 340 326 319
Rank change year-on-year -14 -7 +74
Permanent jobs citing CISM 1,284 1,602 1,673
As % of all permanent IT jobs advertised in England 0.91% 0.99% 1.02%
As % of the Qualifications category 3.75% 4.15% 3.94%
Number of salaries quoted 925 1,243 1,323
England median annual salary £65,000 £65,000 £65,000
10th Percentile £41,250 £42,500 £41,250
90th Percentile £97,500 £96,250 £91,000
UK median annual salary £65,000 £65,000 £65,000

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
England
Permanent vacancies requiring academic qualifications or professional certifications 34,228 38,590 42,468
As % of all permanent IT jobs advertised in England 24.25% 23.76% 25.77%
Number of salaries quoted 25,231 30,198 33,918
England median annual salary £50,000 £47,500 £45,000
Median salary % change year-on-year +5.26% +5.56% -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £82,500 £80,000 £77,500
UK median annual salary £50,000 £47,500 £45,000
% change year-on-year +5.26% +5.56% -

CISM
Job Vacancy Trend in England

Job postings citing CISM as a percentage of all IT jobs advertised in England.

Job vacancy trend for CISM in England

CISM
Salary Trend in England

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM in England.

Salary trend for CISM in England

CISM
Salary Histogram in England

The salary distribution of IT jobs citing CISM in England over the 6 months to 22 January 2019.

Salary histogram for CISM in England

CISM
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the England region over the 6 months to 22 January 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London -75 536 £75,000 +3.45% 80
South East +13 253 £60,000 - 36
North of England +6 173 £55,000 - 23
Midlands +62 112 £57,500 +15.00% 18
South West +94 99 £55,000 +4.27% 15
East of England +43 92 £76,250 +27.62% 14
West Midlands +68 89 £57,500 +15.00% 13
North West -3 88 £61,250 +11.36% 15
Yorkshire +17 70 £47,500 -9.95% 7
East Midlands +19 23 £62,500 +25.00% 5
North East +8 15 £65,750 +35.57% 1
CISM
UK

For the 6 months to 22 January 2019, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for CISM.

1 1,209 (94.16%) CISSP
2 1,005 (78.27%) Information Security
3 663 (51.64%) ISO/IEC 27001
4 592 (46.11%) Cybersecurity
5 576 (44.86%) CISA
6 406 (31.62%) Risk Management
7 321 (25.00%) Finance
8 296 (23.05%) PCI DSS
9 294 (22.90%) Management Information System
10 282 (21.96%) GDPR
11 260 (20.25%) SIEM
12 240 (18.69%) CEH
13 239 (18.61%) CRISC
14 213 (16.59%) Degree
15 206 (16.04%) Firewall
16 202 (15.73%) ITIL
17 190 (14.80%) Data Protection
18 186 (14.49%) Penetration Testing
19 168 (13.08%) Security Management
20 163 (12.69%) Stakeholder Management
21 151 (11.76%) Security Architecture
22 147 (11.45%) Vulnerability Management
22 147 (11.45%) SANS
23 146 (11.37%) Linux
24 141 (10.98%) Security Operations
25 138 (10.75%) Agile Software Development
25 138 (10.75%) Windows
26 132 (10.28%) Cisco Certification
27 127 (9.89%) Information Security Management
28 119 (9.27%) Analytical Skills

CISM
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 28 (2.18%) ExpressionEngine
1 28 (2.18%) WordPress
2 15 (1.17%) IIS
3 14 (1.09%) SharePoint
4 10 (0.78%) Confluence
5 9 (0.70%) Apache
6 4 (0.31%) OpenStack
7 2 (0.16%) JBoss
7 2 (0.16%) Tomcat
7 2 (0.16%) WebLogic
Applications
1 13 (1.01%) Microsoft Office
2 8 (0.62%) MS Visio
3 3 (0.23%) Microsoft Excel
4 2 (0.16%) Microsoft PowerPoint
Business Applications
1 7 (0.55%) SAP GRC
2 5 (0.39%) Infor M3
3 2 (0.16%) assyst
3 2 (0.16%) SAP HR
4 1 (0.078%) Sentinel
Cloud Services
1 112 (8.72%) Microsoft Azure
2 102 (7.94%) Amazon AWS
3 51 (3.97%) SaaS
4 41 (3.19%) IaaS
5 34 (2.65%) Office 365
6 14 (1.09%) Google Cloud Platform
6 14 (1.09%) PaaS
7 4 (0.31%) GitHub
8 3 (0.23%) OneDrive
8 3 (0.23%) Yammer
9 2 (0.16%) Cloud Computing
9 2 (0.16%) Mimecast
10 1 (0.078%) Dropbox
Communications & Networking
1 206 (16.04%) Firewall
2 110 (8.57%) Network Security
3 62 (4.83%) Internet
4 58 (4.52%) Intrusion Detection
5 33 (2.57%) TCP/IP
6 28 (2.18%) VPN
7 27 (2.10%) IPsec
8 26 (2.02%) HTTP
9 22 (1.71%) DNS
10 20 (1.56%) BGP
10 20 (1.56%) Cisco Nexus
10 20 (1.56%) EIGRP
11 19 (1.48%) WAN
12 18 (1.40%) SCCP
13 14 (1.09%) LAN
14 13 (1.01%) DMZ
15 11 (0.86%) Wireless
16 9 (0.70%) Cisco IPT
16 9 (0.70%) VoIP
17 8 (0.62%) Broadband
Database & Business Intelligence
1 44 (3.43%) Big Data
2 28 (2.18%) MongoDB
3 13 (1.01%) Geospatial Data
4 10 (0.78%) DB2
4 10 (0.78%) Hadoop
4 10 (0.78%) SQL Server
5 3 (0.23%) Data Mining
6 2 (0.16%) GIS
7 1 (0.078%) BusinessObjects
Development Applications
1 14 (1.09%) JIRA
2 11 (0.86%) AppScan
3 8 (0.62%) Metasploit
4 4 (0.31%) Git (software)
5 2 (0.16%) Ant
6 1 (0.078%) Burp Suite
6 1 (0.078%) Paros
6 1 (0.078%) SonarQube
General
1 321 (25.00%) Finance
2 93 (7.24%) Banking
3 92 (7.17%) Legal
4 63 (4.91%) Retail
5 42 (3.27%) Telecoms
6 25 (1.95%) Law
6 25 (1.95%) Publishing
7 18 (1.40%) Manufacturing
7 18 (1.40%) Marketing
8 14 (1.09%) Investment Banking
9 7 (0.55%) Financial Institution
9 7 (0.55%) Games
10 5 (0.39%) Local Government
11 4 (0.31%) Electronics
11 4 (0.31%) Front Office
12 3 (0.23%) Pharmaceutical
12 3 (0.23%) Retail Banking
13 1 (0.078%) Advertising
13 1 (0.078%) Military
13 1 (0.078%) Spanish Language
Job Titles
1 315 (24.53%) Security Manager
2 253 (19.70%) Analyst
3 216 (16.82%) Security Analyst
4 190 (14.80%) Information Manager
5 183 (14.25%) Information Security Manager
6 145 (11.29%) Consultant
7 137 (10.67%) Architect
8 136 (10.59%) Security Architect
9 124 (9.66%) Security Consultant
10 122 (9.50%) Information Analyst
10 122 (9.50%) Information Security Analyst
11 94 (7.32%) Head of Security
12 91 (7.09%) Security Engineer
13 83 (6.46%) Security Officer
14 63 (4.91%) Information Security Officer
14 63 (4.91%) Senior Analyst
15 62 (4.83%) Information Officer
16 56 (4.36%) Senior Security Analyst
17 55 (4.28%) Head of Information
17 55 (4.28%) IT Manager
Libraries, Frameworks & Software Standards
1 29 (2.26%) SailPoint
2 28 (2.18%) Node.js
3 21 (1.64%) .NET
4 19 (1.48%) Elastic Stack
5 15 (1.17%) Web Services
6 12 (0.93%) REST
7 10 (0.78%) LDAP
7 10 (0.78%) ModSecurity
7 10 (0.78%) SAML
8 7 (0.55%) OAuth
8 7 (0.55%) Spring
9 4 (0.31%) .NET Framework
9 4 (0.31%) ASP.NET
9 4 (0.31%) JSON
9 4 (0.31%) Protocol Buffers
9 4 (0.31%) RESTful
9 4 (0.31%) XML
10 3 (0.23%) Middleware
10 3 (0.23%) OpenID
10 3 (0.23%) SOAP
Miscellaneous
1 294 (22.90%) Management Information System
2 119 (9.27%) Analytical Skills
3 74 (5.76%) Security Operations Centre
4 60 (4.67%) Data Protection Act
5 51 (3.97%) PKI
6 43 (3.35%) Data Centre
6 43 (3.35%) Self-Motivation
7 36 (2.80%) Cyberattack
8 32 (2.49%) Distributed Denial-of-Service
9 23 (1.79%) CESG
10 21 (1.64%) Cyberthreat
11 18 (1.40%) Cyber Kill Chain
11 18 (1.40%) Public Cloud
12 13 (1.01%) Cybercrime
12 13 (1.01%) Enterprise Software
12 13 (1.01%) Fintech
12 13 (1.01%) Hybrid Cloud
13 11 (0.86%) Algorithms
13 11 (0.86%) Driving Licence
13 11 (0.86%) Smart Meter
Operating Systems
1 146 (11.37%) Linux
2 138 (10.75%) Windows
3 69 (5.37%) Unix
4 16 (1.25%) Windows Server
5 14 (1.09%) Android
5 14 (1.09%) Apple iOS
6 13 (1.01%) Red Hat Enterprise Linux
7 8 (0.62%) Debian
7 8 (0.62%) Kali Linux
8 6 (0.47%) CentOS
9 5 (0.39%) AIX
9 5 (0.39%) HPUX
9 5 (0.39%) Windows Server 2003
9 5 (0.39%) Windows Server 2008
9 5 (0.39%) Windows Server 2012
9 5 (0.39%) Windows XP
10 4 (0.31%) Mac OS
11 1 (0.078%) VMS
Processes & Methodologies
1 1,005 (78.27%) Information Security
2 592 (46.11%) Cybersecurity
3 406 (31.62%) Risk Management
4 260 (20.25%) SIEM
5 202 (15.73%) ITIL
6 190 (14.80%) Data Protection
7 186 (14.49%) Penetration Testing
8 168 (13.08%) Security Management
9 163 (12.69%) Stakeholder Management
10 151 (11.76%) Security Architecture
11 147 (11.45%) Vulnerability Management
12 141 (10.98%) Security Operations
13 138 (10.75%) Agile Software Development
14 127 (9.89%) Information Security Management
15 108 (8.41%) OWASP
16 107 (8.33%) ISMS
17 103 (8.02%) Incident Management
18 97 (7.55%) Identity Access Management
19 91 (7.09%) Problem-Solving
20 89 (6.93%) Project Management
Programming Languages
1 24 (1.87%) C
2 18 (1.40%) Java
3 13 (1.01%) Python
4 11 (0.86%) C++
5 10 (0.78%) C#
5 10 (0.78%) Ruby
6 9 (0.70%) Go
6 9 (0.70%) Perl
6 9 (0.70%) PHP
7 8 (0.62%) Shell Script
7 8 (0.62%) VB
8 6 (0.47%) PowerShell
9 4 (0.31%) VBScript
10 1 (0.078%) JavaScript
10 1 (0.078%) Scala
10 1 (0.078%) SQL
Qualifications
1 1,209 (94.16%) CISSP
2 576 (44.86%) CISA
3 240 (18.69%) CEH
4 239 (18.61%) CRISC
5 213 (16.59%) Degree
6 147 (11.45%) SANS
7 132 (10.28%) Cisco Certification
8 111 (8.64%) GIAC
9 104 (8.10%) SSCP
10 99 (7.71%) Security Cleared
11 78 (6.07%) (ISC)2 CCSP
12 72 (5.61%) SC Cleared
13 60 (4.67%) CESG Certified Professional
14 57 (4.44%) CCSP
15 55 (4.28%) Computer Science Degree
16 50 (3.89%) CISMP
16 50 (3.89%) CompTIA Security+
17 43 (3.35%) CCNA
18 42 (3.27%) CREST Certified
19 39 (3.04%) ISO 27001 Lead Auditor
Quality Assurance & Compliance
1 663 (51.64%) ISO/IEC 27001
2 296 (23.05%) PCI DSS
3 282 (21.96%) GDPR
4 93 (7.24%) Cyber Essentials
5 81 (6.31%) COBIT
6 44 (3.43%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 34 (2.65%) Cyber Essentials PLUS
8 30 (2.34%) ISO 22301
9 29 (2.26%) QA
10 27 (2.10%) Sarbanes-Oxley
11 22 (1.71%) ISO/IEC 27005
12 19 (1.48%) MiFID
13 18 (1.40%) HMG Security Policy Framework
13 18 (1.40%) NIST 800
14 12 (0.93%) HIPAA
15 8 (0.62%) RMADS
16 7 (0.55%) ISO 9001
17 6 (0.47%) COSO
17 6 (0.47%) ISAE 3402
17 6 (0.47%) ISO 31000
System Software
1 38 (2.96%) Active Directory
2 19 (1.48%) Snort
3 17 (1.32%) VMware Infrastructure
4 8 (0.62%) Hyper-V
5 7 (0.55%) Docker
6 5 (0.39%) vSphere
7 3 (0.23%) NDS
8 1 (0.078%) VMware NSX
Systems Management
1 47 (3.66%) Nessus
2 25 (1.95%) SCCM
3 21 (1.64%) OSSEC
4 20 (1.56%) McAfee ePO
5 17 (1.32%) Single Sign-On
6 14 (1.09%) CASB
7 13 (1.01%) CSIRT
8 12 (0.93%) HP Fortify
9 10 (0.78%) QRadar
10 9 (0.70%) RSA Archer
11 7 (0.55%) Nmap
12 6 (0.47%) Ansible
13 5 (0.39%) IBM BigFix
13 5 (0.39%) Norton AntiVirus
13 5 (0.39%) WSUS
14 4 (0.31%) Kubernetes
15 3 (0.23%) CA Single Sign-On
15 3 (0.23%) Nexpose
15 3 (0.23%) Tivoli
16 2 (0.16%) WebInspect
Vendors
1 62 (4.83%) Microsoft
2 48 (3.74%) LogRhythm
2 48 (3.74%) Splunk
3 46 (3.58%) Oracle
4 45 (3.50%) Symantec
5 44 (3.43%) Cisco
6 31 (2.41%) McAfee
7 30 (2.34%) CheckPoint
8 29 (2.26%) Palo Alto
9 28 (2.18%) VMware
10 27 (2.10%) Blue Coat
11 23 (1.79%) Qualys
12 22 (1.71%) Aveksa
12 22 (1.71%) IBM
13 20 (1.56%) Juniper
14 19 (1.48%) FireEye
15 18 (1.40%) SAP
16 14 (1.09%) ArcSight
17 11 (0.86%) Google
18 10 (0.78%) Sybase