Period
to

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 23 May 2022 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK > England
6 months to
23 May 2022
Same period 2021 Same period 2020
Rank 524 398 332
Rank change year-on-year -126 -66 +30
Permanent jobs citing CISM 814 586 780
As % of all permanent jobs advertised in England 0.59% 0.72% 0.91%
As % of the Qualifications category 2.45% 3.48% 4.22%
Number of salaries quoted 548 473 632
10th Percentile £49,250 £42,500 £42,500
25th Percentile £57,500 £52,500 £52,500
Median annual salary (50th Percentile) £70,000 £65,000 £64,500
Median % change year-on-year +7.69% +0.78% -0.77%
75th Percentile £85,000 £80,000 £78,813
90th Percentile £100,000 £86,250 £89,000
UK median annual salary £70,000 £65,000 £63,853
% change year-on-year +7.69% +1.80% -1.77%

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
England
Permanent vacancies requiring academic qualifications or professional certifications 33,181 16,844 18,483
As % of all permanent IT jobs advertised in England 24.24% 20.66% 21.60%
Number of salaries quoted 14,887 11,297 13,908
10th Percentile £30,825 £31,250 £29,000
25th Percentile £40,750 £41,250 £37,500
Median annual salary (50th Percentile) £55,000 £55,000 £52,500
Median % change year-on-year - +4.76% +5.00%
75th Percentile £72,500 £72,500 £70,000
90th Percentile £91,500 £86,250 £85,000
UK median annual salary £55,000 £55,000 £52,500
% change year-on-year - +4.76% +5.00%

CISM
Job Vacancy Trend in England

Job postings citing CISM as a proportion of all IT jobs advertised in England.

Job vacancy trend for CISM in England

CISM
Salary Trend in England

3-month moving average salary quoted in jobs citing CISM in England.

Salary trend for CISM in England

CISM
Salary Histogram in England

Salary distribution for jobs citing CISM in England over the 6 months to 23 May 2022.

Salary histogram for CISM in England

CISM
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the England region over the 6 months to 23 May 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
London -149 435 £75,000 +8.70% 26
South East -77 130 £65,000 +11.12% 16
Midlands -31 78 £68,750 +3.77% 7
West Midlands -8 73 £68,750 +5.77% 3
South West +13 72 £65,000 +20.37% 3
North of England -102 53 £59,250 +7.73% 22
Yorkshire -30 27 £66,250 +8.16% 9
East of England -80 25 £70,000 -9.68% 1
North West -89 23 £57,000 +26.67% 12
East Midlands -27 4 £75,000 -1.64% 4
North East -42 2 £59,000 +7.27% 1
CISM
UK

For the 6 months to 23 May 2022, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for CISM.

1 766 (94.10%) CISSP
2 576 (70.76%) Information Security
3 515 (63.27%) Cybersecurity
4 453 (55.65%) ISO/IEC 27001
5 321 (39.43%) CISA
6 319 (39.19%) Finance
7 296 (36.36%) Risk Management
7 296 (36.36%) NIST
8 221 (27.15%) Degree
9 217 (26.66%) CRISC
10 201 (24.69%) Social Skills
11 177 (21.74%) Data Protection
12 172 (21.13%) Management Information System
13 165 (20.27%) Security Operations
14 162 (19.90%) AWS
15 148 (18.18%) GRC
16 144 (17.69%) GDPR
17 138 (16.95%) ISMS
18 132 (16.22%) Azure
19 121 (14.86%) Computer Science
20 111 (13.64%) SIEM
21 110 (13.51%) Security Cleared
21 110 (13.51%) Security Management
22 107 (13.14%) Security Architecture
23 106 (13.02%) ITIL
24 103 (12.65%) Stakeholder Management
25 102 (12.53%) Firewall
26 100 (12.29%) Agile
27 97 (11.92%) PCI DSS
28 94 (11.55%) Cyber Essentials

CISM
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 5 (0.61%) MTS
2 4 (0.49%) Apache Spark
2 4 (0.49%) IIS
3 3 (0.37%) MS Exchange
4 2 (0.25%) SharePoint
5 1 (0.12%) Apache
5 1 (0.12%) Cloud Foundry
5 1 (0.12%) GemFire
5 1 (0.12%) Oracle Coherence
5 1 (0.12%) Tomcat
Applications
1 21 (2.58%) Microsoft PowerPoint
2 12 (1.47%) Microsoft Office
3 11 (1.35%) Microsoft Excel
4 2 (0.25%) Microsoft Project
4 2 (0.25%) MS Visio
Business Applications
1 13 (1.60%) Sentinel
2 3 (0.37%) assyst
3 1 (0.12%) Oracle ERP
3 1 (0.12%) SAP ERP
3 1 (0.12%) SAP GRC
Cloud Services
1 162 (19.90%) AWS
2 132 (16.22%) Azure
3 50 (6.14%) Microsoft 365
4 34 (4.18%) SaaS
5 21 (2.58%) Azure Sentinel
6 20 (2.46%) Mimecast
7 18 (2.21%) Cloud Computing
7 18 (2.21%) PaaS
8 13 (1.60%) IaaS
9 9 (1.11%) GCP
10 7 (0.86%) Amazon CloudWatch
10 7 (0.86%) Amazon EKS
10 7 (0.86%) Amazon GuardDuty
10 7 (0.86%) AWS CloudTrail
11 5 (0.61%) Azure Active Directory
12 2 (0.25%) Collibra
12 2 (0.25%) IBM Cloud
13 1 (0.12%) Azure Monitor
13 1 (0.12%) Azure Service Bus
13 1 (0.12%) Serverless
Communications & Networking
1 102 (12.53%) Firewall
2 58 (7.13%) Network Security
3 42 (5.16%) Intrusion Detection
4 27 (3.32%) WAN
5 17 (2.09%) Internet
6 16 (1.97%) SSL
7 14 (1.72%) LAN
8 13 (1.60%) Ethernet
9 11 (1.35%) Wireless
10 8 (0.98%) VPN
11 7 (0.86%) Cisco IPT
11 7 (0.86%) HTTP
11 7 (0.86%) HTTPS
12 5 (0.61%) IPsec
12 5 (0.61%) SNMP
12 5 (0.61%) TCP/IP
12 5 (0.61%) Unified Communications
13 4 (0.49%) Broadband
13 4 (0.49%) DNS
14 3 (0.37%) Kerberos
Database & Business Intelligence
1 5 (0.61%) Big Data
2 4 (0.49%) Metadata
3 3 (0.37%) SQL Server
4 2 (0.25%) MongoDB
4 2 (0.25%) MySQL
4 2 (0.25%) PostgreSQL
5 1 (0.12%) Azure SQL Database
5 1 (0.12%) Data Lake
5 1 (0.12%) Data Warehouse
5 1 (0.12%) DB2
5 1 (0.12%) Oracle Database
5 1 (0.12%) Oracle Reports
5 1 (0.12%) Tableau
Development Applications
1 14 (1.72%) Burp Suite
2 1 (0.12%) Ant
2 1 (0.12%) JIRA
2 1 (0.12%) JUnit
2 1 (0.12%) Metasploit
General
1 319 (39.19%) Finance
2 201 (24.69%) Social Skills
3 91 (11.18%) Legal
4 63 (7.74%) Analytical Skills
5 44 (5.41%) Telecoms
6 43 (5.28%) Retail
7 37 (4.55%) Law
8 35 (4.30%) Inclusion and Diversity
9 26 (3.19%) Public Sector
10 25 (3.07%) Presentation Skills
11 23 (2.83%) Marketing
12 22 (2.70%) Organisational Skills
13 21 (2.58%) Automotive
14 18 (2.21%) Games
15 13 (1.60%) Pharmaceutical
16 10 (1.23%) Banking
17 7 (0.86%) Financial Institution
17 7 (0.86%) Military
18 5 (0.61%) Influencing Skills
19 4 (0.49%) Documentation Skills
Job Titles
1 222 (27.27%) Security Manager
2 132 (16.22%) Analyst
3 107 (13.14%) Consultant
4 98 (12.04%) Security Analyst
5 81 (9.95%) Security Consultant
6 74 (9.09%) Architect
7 71 (8.72%) Security Architect
8 62 (7.62%) Security Officer
9 59 (7.25%) Information Manager
9 59 (7.25%) Information Security Manager
10 54 (6.63%) IT Manager
11 46 (5.65%) Information Analyst
12 45 (5.53%) Information Security Analyst
13 36 (4.42%) Cybersecurity Manager
14 35 (4.30%) Head of Security
14 35 (4.30%) IT Analyst
15 34 (4.18%) Information Security Officer
16 32 (3.93%) Cybersecurity Consultant
16 32 (3.93%) Information Officer
17 31 (3.81%) IT Security Manager
Libraries, Frameworks & Software Standards
1 11 (1.35%) EDI
2 8 (0.98%) SAML
3 7 (0.86%) Web Services
4 4 (0.49%) ModSecurity
5 3 (0.37%) Middleware
6 2 (0.25%) .NET
6 2 (0.25%) .NET Framework
6 2 (0.25%) J2EE
6 2 (0.25%) LDAP
6 2 (0.25%) REST
6 2 (0.25%) SOAP
6 2 (0.25%) XML
7 1 (0.12%) Ehcache
7 1 (0.12%) Kafka
7 1 (0.12%) OAuth
7 1 (0.12%) OpenID
7 1 (0.12%) RabbitMQ
7 1 (0.12%) RESTful
7 1 (0.12%) SailPoint
7 1 (0.12%) Spring Integration
Miscellaneous
1 172 (21.13%) Management Information System
2 65 (7.99%) Cyberthreat
3 42 (5.16%) Data Centre
4 33 (4.05%) Security Operations Centre
5 31 (3.81%) Data Protection Act
6 30 (3.69%) Self-Motivation
7 20 (2.46%) Cyberattack
8 19 (2.33%) IoT
8 19 (2.33%) Public Cloud
9 15 (1.84%) SCADA
10 13 (1.60%) Device Driver
10 13 (1.60%) Embedded Systems
10 13 (1.60%) Linux Command Line
11 12 (1.47%) Distributed Denial-of-Service
12 10 (1.23%) Cyber Kill Chain
13 9 (1.11%) Virtual Team
14 8 (0.98%) Blockchain
14 8 (0.98%) User Experience
15 7 (0.86%) CSOC
15 7 (0.86%) Hedge funds
Operating Systems
1 50 (6.14%) Windows
2 49 (6.02%) Linux
3 22 (2.70%) Unix
4 14 (1.72%) Kali Linux
5 5 (0.61%) Android
5 5 (0.61%) Apple iOS
6 3 (0.37%) AIX
6 3 (0.37%) Mac OS
6 3 (0.37%) zOS
7 2 (0.25%) Windows Server
Processes & Methodologies
1 576 (70.76%) Information Security
2 515 (63.27%) Cybersecurity
3 296 (36.36%) Risk Management
4 177 (21.74%) Data Protection
5 165 (20.27%) Security Operations
6 138 (16.95%) ISMS
7 121 (14.86%) Computer Science
8 111 (13.64%) SIEM
9 110 (13.51%) Security Management
10 107 (13.14%) Security Architecture
11 106 (13.02%) ITIL
12 103 (12.65%) Stakeholder Management
13 100 (12.29%) Agile
14 87 (10.69%) Penetration Testing
15 84 (10.32%) Information Security Management
16 83 (10.20%) Vulnerability Management
17 74 (9.09%) Business Continuity
18 71 (8.72%) Risk Assessment
19 70 (8.60%) Incident Management
19 70 (8.60%) Threat Intelligence
Programming Languages
1 33 (4.05%) Python
2 25 (3.07%) C
2 25 (3.07%) PowerShell
3 17 (2.09%) SQL
4 13 (1.60%) C#
5 11 (1.35%) Bash
6 4 (0.49%) Java
7 2 (0.25%) Perl
8 1 (0.12%) Shell Script
8 1 (0.12%) VB
8 1 (0.12%) VBScript
Qualifications
1 766 (94.10%) CISSP
2 321 (39.43%) CISA
3 221 (27.15%) Degree
4 217 (26.66%) CRISC
5 110 (13.51%) Security Cleared
6 80 (9.83%) Computer Science Degree
7 78 (9.58%) Cisco Certification
8 77 (9.46%) SC Cleared
9 75 (9.21%) Master's Degree
10 68 (8.35%) CompTIA Security+
11 59 (7.25%) (ISC)2 CCSP
12 57 (7.00%) ISO 27001 Lead Auditor
13 55 (6.76%) CEH
14 51 (6.27%) CCSP
15 50 (6.14%) CESG Certified Professional
15 50 (6.14%) SANS
16 36 (4.42%) CISMP
17 34 (4.18%) GCIH
18 33 (4.05%) CASP
19 32 (3.93%) CompTIA CySA+
Quality Assurance & Compliance
1 453 (55.65%) ISO/IEC 27001
2 296 (36.36%) NIST
3 148 (18.18%) GRC
4 144 (17.69%) GDPR
5 97 (11.92%) PCI DSS
6 94 (11.55%) Cyber Essentials
7 82 (10.07%) COBIT
8 50 (6.14%) NCSC
9 47 (5.77%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 44 (5.41%) SOC 2
11 39 (4.79%) Sarbanes-Oxley
12 36 (4.42%) Cyber Essentials PLUS
13 34 (4.18%) ITGC
14 33 (4.05%) SOC 1
15 28 (3.44%) HMG Security Policy Framework
16 26 (3.19%) COSO
17 20 (2.46%) JSP 440
18 19 (2.33%) HIPAA
19 17 (2.09%) RMADS
20 16 (1.97%) QA
System Software
1 37 (4.55%) Active Directory
2 4 (0.49%) Virtual Machines
3 3 (0.37%) VMware Infrastructure
4 2 (0.25%) Firmware
5 1 (0.12%) ACF2
5 1 (0.12%) BitLocker
5 1 (0.12%) OpenAM
5 1 (0.12%) OpenIDM
5 1 (0.12%) RACF
Systems Management
1 18 (2.21%) Kubernetes
2 17 (2.09%) QRadar
3 13 (1.60%) CASB
3 13 (1.60%) RSA Archer
3 13 (1.60%) Terraform
4 10 (1.23%) WMI
5 7 (0.86%) CSIRT
6 6 (0.74%) Puppet
6 6 (0.74%) Single Sign-On
7 3 (0.37%) Active Directory Federation Services
7 3 (0.37%) EMC NetWorker
8 2 (0.25%) Computer Incident Response Team
8 2 (0.25%) EnCase
9 1 (0.12%) CA Single Sign-On
9 1 (0.12%) Kibana
9 1 (0.12%) McAfee ePO
9 1 (0.12%) Oracle Identity Management
9 1 (0.12%) SCCM
9 1 (0.12%) SCOM
9 1 (0.12%) Trend Micro Deep Security
Vendors
1 80 (9.83%) Microsoft
2 28 (3.44%) Twitter
3 16 (1.97%) Google
4 14 (1.72%) IBM
4 14 (1.72%) Splunk
5 13 (1.60%) QNX
6 10 (1.23%) Cisco
6 10 (1.23%) Palo Alto
6 10 (1.23%) ServiceNow
7 9 (1.11%) Oracle
8 7 (0.86%) CrowdStrike
8 7 (0.86%) Qualys
9 6 (0.74%) Facebook
10 5 (0.61%) CheckPoint
10 5 (0.61%) Rapid7
11 3 (0.37%) AlienVault
11 3 (0.37%) Apple
11 3 (0.37%) Kenna
11 3 (0.37%) Okta
11 3 (0.37%) VMware