Period
to 29 March 2020

The following table provides summary statistics for permanent job vacancies advertised in the South East with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 29 March 2020 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
England > South East
6 months to
29 Mar 2020
Same period 2019 Same period 2018
Rank 269 307 293
Rank change year-on-year +38 -14 +90
Permanent jobs citing CISM 199 228 303
As % of all permanent jobs advertised in the South East 0.92% 0.85% 0.96%
As % of the Qualifications category 3.57% 2.93% 3.65%
Number of salaries quoted 179 155 247
Median annual salary £65,000 £60,000 £60,000
Median salary % change year-on-year +8.33% - -
10th Percentile £41,500 £41,250 £44,800
90th Percentile £82,750 £80,000 £100,000
England median annual salary £63,000 £65,000 £65,000
% change year-on-year -3.08% - -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in the South East with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
South East
Permanent vacancies requiring academic qualifications or professional certifications 5,578 7,793 8,300
As % of all permanent IT jobs advertised in the South East 25.78% 29.16% 26.40%
Number of salaries quoted 4,129 5,827 6,571
Median annual salary £50,000 £45,000 £45,000
Median salary % change year-on-year +11.11% - +4.65%
10th Percentile £27,500 £25,750 £25,625
90th Percentile £75,000 £72,500 £67,500
England median annual salary £52,190 £50,000 £48,000
% change year-on-year +4.38% +4.17% +6.67%

CISM
Job Vacancy Trend in the South East

Job postings citing CISM as a proportion of all IT jobs advertised in the South East.

Job vacancy trend for CISM in the South East

CISM
Salary Trend in the South East

3-month moving average salary quoted in jobs citing CISM in the South East.

Salary trend for CISM in the South East

CISM
Salary Histogram in the South East

Salary distribution for jobs citing CISM in the South East over the 6 months to 29 March 2020.

Salary histogram for CISM in the South East

CISM
Job Locations in the South East

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the South East region over the 6 months to 29 March 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
Thames Valley -2 65 £65,000 +8.33% 5
Surrey +35 39 £65,000 +11.35% 1
Hampshire +19 38 £57,500 -17.86% 1
Berkshire +10 32 £65,000 - 4
East Sussex +6 27 £50,000 -16.67% 1
Buckinghamshire +37 20 £70,000 +16.67% 1
West Sussex +34 15 £63,500 +41.11%
Kent +25 14 £75,000 +30.43% 4
Oxfordshire -5 13 £51,518 +3.04%
Middlesex +4 3 - -
CISM
England

For the 6 months to 29 March 2020, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the South East region with a requirement for CISM.

1 191 (95.98%) CISSP
2 144 (72.36%) Information Security
3 124 (62.31%) Cybersecurity
4 112 (56.28%) ISO/IEC 27001
5 69 (34.67%) CISA
6 67 (33.67%) Firewall
7 61 (30.65%) Degree
8 58 (29.15%) Risk Management
8 58 (29.15%) Finance
9 56 (28.14%) NIST
10 53 (26.63%) GDPR
11 48 (24.12%) Security Architecture
12 45 (22.61%) Security Operations
13 44 (22.11%) SIEM
13 44 (22.11%) Security Cleared
14 42 (21.11%) CEH
15 40 (20.10%) CRISC
15 40 (20.10%) Security Management
16 38 (19.10%) Data Protection
17 36 (18.09%) Management Information System
18 35 (17.59%) OWASP
18 35 (17.59%) TOGAF
19 34 (17.09%) SC Cleared
19 34 (17.09%) Cyber Essentials
20 33 (16.58%) Network Security
21 32 (16.08%) Threat Intelligence
21 32 (16.08%) Cyber Threat Intelligence
22 30 (15.08%) Intrusion Detection
22 30 (15.08%) PCI DSS
23 28 (14.07%) Penetration Testing

CISM
Co-occurring IT Skills in the South East by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 15 (7.54%) IIS
2 5 (2.51%) SharePoint
3 1 (0.50%) MS Exchange
Applications
1 8 (4.02%) Microsoft Excel
1 8 (4.02%) Microsoft PowerPoint
2 3 (1.51%) MS Visio
3 1 (0.50%) Microsoft Office
Business Applications
1 1 (0.50%) Dynamics CRM
1 1 (0.50%) Dynamics NAV
Cloud Services
1 21 (10.55%) Azure
2 12 (6.03%) AWS
3 11 (5.53%) Office 365
4 7 (3.52%) IaaS
4 7 (3.52%) PaaS
5 6 (3.02%) Azure Active Directory
6 5 (2.51%) Power Platform
6 5 (2.51%) PowerApps
7 2 (1.01%) Cloud Computing
7 2 (1.01%) SaaS
8 1 (0.50%) Dynamics 365
Communications & Networking
1 67 (33.67%) Firewall
2 33 (16.58%) Network Security
3 30 (15.08%) Intrusion Detection
4 13 (6.53%) VPN
4 13 (6.53%) WAN
5 9 (4.52%) TCP/IP
6 8 (4.02%) Internet
7 6 (3.02%) LAN
8 5 (2.51%) DNS
9 4 (2.01%) SMTP
10 3 (1.51%) Broadband
10 3 (1.51%) Cisco ASA
10 3 (1.51%) DHCP
10 3 (1.51%) NAS
10 3 (1.51%) SAN
10 3 (1.51%) SCCP
10 3 (1.51%) SNMP
11 1 (0.50%) HTTP
11 1 (0.50%) MPLS
11 1 (0.50%) Sourcefire
Database & Business Intelligence
1 5 (2.51%) Power BI
2 3 (1.51%) Big Data
3 1 (0.50%) SQL Server
Development Applications
1 3 (1.51%) WinDbg
General
1 58 (29.15%) Finance
2 20 (10.05%) Legal
3 6 (3.02%) Retail
4 5 (2.51%) Public Sector
5 3 (1.51%) Local Government
5 3 (1.51%) Telecoms
6 2 (1.01%) Banking
6 2 (1.01%) Electronics
6 2 (1.01%) Manufacturing
6 2 (1.01%) Marketing
7 1 (0.50%) Aerospace
7 1 (0.50%) Financial Institution
7 1 (0.50%) Games
7 1 (0.50%) Law
Job Titles
1 43 (21.61%) Security Manager
2 33 (16.58%) Architect
2 33 (16.58%) Security Architect
3 31 (15.58%) Consultant
3 31 (15.58%) Security Consultant
4 25 (12.56%) Analyst
4 25 (12.56%) Security Analyst
5 21 (10.55%) IT Manager
5 21 (10.55%) IT Security Manager
6 18 (9.05%) Cybersecurity Consultant
7 17 (8.54%) Information Manager
7 17 (8.54%) Information Security Manager
8 14 (7.04%) Security Engineer
8 14 (7.04%) Security Specialist
9 12 (6.03%) Information Analyst
9 12 (6.03%) Information Security Analyst
10 8 (4.02%) Senior Architect
10 8 (4.02%) Senior Security Architect
11 7 (3.52%) Cybersecurity Specialist
11 7 (3.52%) Head of Security
Libraries, Frameworks & Software Standards
1 8 (4.02%) Middleware
2 7 (3.52%) Regular Expression
3 6 (3.02%) ModSecurity
4 2 (1.01%) Web Services
Miscellaneous
1 36 (18.09%) Management Information System
2 26 (13.07%) Data Protection Act
3 20 (10.05%) Cyberthreat
4 13 (6.53%) Analytical Skills
4 13 (6.53%) Security Operations Centre
5 8 (4.02%) Enterprise Software
6 7 (3.52%) Data Centre
6 7 (3.52%) Reinsurance
6 7 (3.52%) Self-Motivation
7 6 (3.02%) Cyber Defence
7 6 (3.02%) Distributed Denial-of-Service
8 5 (2.51%) Hybrid Cloud
8 5 (2.51%) User Experience
9 4 (2.01%) Cyberattack
9 4 (2.01%) Public Cloud
10 3 (1.51%) Driving Licence
10 3 (1.51%) Handset
10 3 (1.51%) Smart Home
10 3 (1.51%) Virtual Team
11 2 (1.01%) NHS
Operating Systems
1 23 (11.56%) Windows
2 18 (9.05%) Linux
3 4 (2.01%) Unix
3 4 (2.01%) Windows Server 2012
4 3 (1.51%) Windows Server
5 1 (0.50%) Windows 10
5 1 (0.50%) Windows Server 2016
Processes & Methodologies
1 144 (72.36%) Information Security
2 124 (62.31%) Cybersecurity
3 58 (29.15%) Risk Management
4 48 (24.12%) Security Architecture
5 45 (22.61%) Security Operations
6 44 (22.11%) SIEM
7 40 (20.10%) Security Management
8 38 (19.10%) Data Protection
9 35 (17.59%) OWASP
9 35 (17.59%) TOGAF
10 32 (16.08%) Cyber Threat Intelligence
10 32 (16.08%) Threat Intelligence
11 28 (14.07%) Incident Management
11 28 (14.07%) Penetration Testing
12 27 (13.57%) ITIL
13 26 (13.07%) Vulnerability Management
14 24 (12.06%) Information Assurance
15 23 (11.56%) SABSA
16 22 (11.06%) Risk Assessment
17 21 (10.55%) Information Security Management
Programming Languages
1 12 (6.03%) PowerShell
2 9 (4.52%) Python
3 8 (4.02%) C
3 8 (4.02%) Java
4 7 (3.52%) C#
4 7 (3.52%) Perl
4 7 (3.52%) Ruby
5 3 (1.51%) VBScript
6 1 (0.50%) SQL
Qualifications
1 191 (95.98%) CISSP
2 69 (34.67%) CISA
3 61 (30.65%) Degree
4 44 (22.11%) Security Cleared
5 42 (21.11%) CEH
6 40 (20.10%) CRISC
7 34 (17.09%) SC Cleared
8 28 (14.07%) GIAC
9 25 (12.56%) Cisco Certification
10 24 (12.06%) CESG Certified Professional
11 20 (10.05%) SANS
12 18 (9.05%) (ISC)2 CCSP
13 15 (7.54%) IISP
14 13 (6.53%) SSCP
15 11 (5.53%) CREST Certified
15 11 (5.53%) GSEC
15 11 (5.53%) OSCP
16 10 (5.03%) CISMP
17 7 (3.52%) CCNA
18 5 (2.51%) CCSP
Quality Assurance & Compliance
1 112 (56.28%) ISO/IEC 27001
2 56 (28.14%) NIST
3 53 (26.63%) GDPR
4 34 (17.09%) Cyber Essentials
5 30 (15.08%) PCI DSS
6 23 (11.56%) JSP 440
7 19 (9.55%) SLA
8 18 (9.05%) NCSC
9 16 (8.04%) RMADS
10 15 (7.54%) NIST 800
11 13 (6.53%) HMG Security Policy Framework
12 10 (5.03%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
12 10 (5.03%) Sarbanes-Oxley
13 8 (4.02%) ISO 9001
14 6 (3.02%) COBIT
15 5 (2.51%) Cyber Essentials PLUS
15 5 (2.51%) ISO 14001
16 4 (2.01%) QA
17 3 (1.51%) ISO 22301
18 1 (0.50%) ISO/IEC 27005
System Software
1 13 (6.53%) Active Directory
2 6 (3.02%) VMware Infrastructure
3 5 (2.51%) Hyper-V
Systems Management
1 9 (4.52%) Nessus
1 9 (4.52%) QRadar
2 5 (2.51%) Nmap
3 3 (1.51%) IBM Guardium
3 3 (1.51%) OSSEC
4 1 (0.50%) SCCM
Vendors
1 11 (5.53%) Microsoft
1 11 (5.53%) Qualys
2 8 (4.02%) Cisco
3 7 (3.52%) LogRhythm
3 7 (3.52%) McAfee
4 6 (3.02%) VMware
5 5 (2.51%) ArcSight
5 5 (2.51%) Splunk
6 4 (2.01%) AlienVault
6 4 (2.01%) Forcepoint
6 4 (2.01%) Symantec
7 3 (1.51%) Barracuda Networks
7 3 (1.51%) Capita
7 3 (1.51%) Centrify
7 3 (1.51%) Dell
7 3 (1.51%) HP
7 3 (1.51%) IBM
7 3 (1.51%) Palo Alto
7 3 (1.51%) Tripwire
8 2 (1.01%) F5