Period
to 16 November 2019

The following table provides summary statistics for permanent job vacancies advertised in the South East with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 16 November 2019 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
England > South East
6 months to
16 Nov 2019
Same period 2018 Same period 2017
Rank 306 267 308
Rank change year-on-year -39 +41 +38
Permanent jobs citing CISM 209 306 287
As % of all permanent IT jobs advertised in the South East 0.83% 1.06% 0.94%
As % of the Qualifications category 3.06% 3.91% 3.46%
Number of salaries quoted 181 218 213
South East median annual salary £65,000 £60,000 £58,000
Median salary % change year-on-year +8.33% +3.45% -7.20%
10th Percentile £42,500 £47,500 £42,500
90th Percentile £82,500 £82,500 £77,500
England median annual salary £65,000 £65,000 £64,000
% change year-on-year - +1.56% -1.54%

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in the South East with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
South East
Permanent vacancies requiring academic qualifications or professional certifications 6,822 7,830 8,288
As % of all permanent IT jobs advertised in the South East 27.19% 27.16% 27.10%
Number of salaries quoted 5,033 6,026 6,743
South East median annual salary £47,500 £45,000 £45,000
Median salary % change year-on-year +5.56% - -
10th Percentile £26,250 £25,000 £25,000
90th Percentile £75,000 £70,000 £68,750
England median annual salary £50,000 £50,000 £47,500
% change year-on-year - +5.26% +3.26%

CISM
Job Vacancy Trend in the South East

Job postings citing CISM as a percentage of all IT jobs advertised in the South East.

Job vacancy trend for CISM in the South East

CISM
Salary Trend in the South East

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM in the South East.

Salary trend for CISM in the South East

CISM
Salary Histogram in the South East

The salary distribution of IT jobs citing CISM in the South East over the 6 months to 16 November 2019.

Salary histogram for CISM in the South East

CISM
Job Locations in the South East

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the South East region over the 6 months to 16 November 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
Thames Valley +19 95 £65,000 +4.00% 6
Surrey +46 78 £65,000 +8.33% 3
Berkshire -9 58 £65,000 +5.69% 1
Buckinghamshire +40 29 £77,500 +29.17% 3
Hampshire -5 28 £45,000 -28.00% 9
West Sussex +7 9 £62,500 +4.17% 4
Oxfordshire +13 8 £43,000 -33.85% 2
East Sussex -12 7 £60,000 - 2
Kent -24 5 £80,000 +33.33%
CISM
England

For the 6 months to 16 November 2019, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the South East region with a requirement for CISM.

1 205 (98.09%) CISSP
2 144 (68.90%) Information Security
3 132 (63.16%) ISO/IEC 27001
4 109 (52.15%) Cybersecurity
5 88 (42.11%) Security Architecture
6 83 (39.71%) NIST
7 70 (33.49%) Degree
8 59 (28.23%) GDPR
9 58 (27.75%) SIEM
9 58 (27.75%) CISA
10 56 (26.79%) TOGAF
11 54 (25.84%) SABSA
12 52 (24.88%) Management Information System
13 46 (22.01%) Finance
14 45 (21.53%) Network Security
15 42 (20.10%) Vulnerability Assessment
16 41 (19.62%) Risk Management
17 40 (19.14%) Security Management
18 39 (18.66%) OWASP
19 37 (17.70%) Risk Assessment
20 36 (17.22%) Cryptography
21 35 (16.75%) CEH
21 35 (16.75%) Identity Access Management
21 35 (16.75%) Security Operations
22 33 (15.79%) ITIL
23 32 (15.31%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
24 31 (14.83%) Zachman Framework
24 31 (14.83%) Security Cleared
25 30 (14.35%) Data Protection
25 30 (14.35%) GIAC

CISM
Co-occurring IT Skills in the South East by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 3 (1.44%) IIS
Applications
1 6 (2.87%) Microsoft Excel
2 1 (0.48%) Microsoft PowerPoint
Cloud Services
1 18 (8.61%) Azure
2 16 (7.66%) AWS
3 5 (2.39%) Azure Active Directory
4 4 (1.91%) Office 365
4 4 (1.91%) PaaS
5 3 (1.44%) IaaS
6 2 (0.96%) Cloud Computing
7 1 (0.48%) Mimecast
7 1 (0.48%) SaaS
Communications & Networking
1 45 (21.53%) Network Security
2 30 (14.35%) Firewall
3 15 (7.18%) LAN
3 15 (7.18%) VPN
3 15 (7.18%) WAN
4 5 (2.39%) Internet
4 5 (2.39%) Intrusion Detection
5 3 (1.44%) DNS
6 2 (0.96%) Broadband
7 1 (0.48%) HTTP
7 1 (0.48%) SAN
7 1 (0.48%) SMTP
7 1 (0.48%) Sourcefire
7 1 (0.48%) TCP/IP
Database & Business Intelligence
1 6 (2.87%) Big Data
2 4 (1.91%) Geospatial Data
General
1 46 (22.01%) Finance
2 14 (6.70%) Legal
3 8 (3.83%) Public Sector
3 8 (3.83%) Retail
4 7 (3.35%) Telecoms
5 6 (2.87%) Law
6 4 (1.91%) Banking
6 4 (1.91%) Games
7 3 (1.44%) Marketing
8 1 (0.48%) Aerospace
8 1 (0.48%) Electronics
8 1 (0.48%) Financial Institution
8 1 (0.48%) Manufacturing
Job Titles
1 56 (26.79%) Consultant
1 56 (26.79%) Security Consultant
2 38 (18.18%) Architect
2 38 (18.18%) Security Architect
3 28 (13.40%) Security Manager
4 27 (12.92%) Analyst
5 26 (12.44%) Security Analyst
6 20 (9.57%) Information Manager
6 20 (9.57%) Information Security Manager
7 18 (8.61%) Security Officer
8 17 (8.13%) Information Security Consultant
9 16 (7.66%) Information Analyst
9 16 (7.66%) Information Security Analyst
10 15 (7.18%) Cybersecurity Consultant
11 13 (6.22%) Security Specialist
12 12 (5.74%) Information Architect
12 12 (5.74%) Information Officer
12 12 (5.74%) Information Security Architect
12 12 (5.74%) Information Security Officer
13 10 (4.78%) Security Designer
Libraries, Frameworks & Software Standards
1 2 (0.96%) Web Services
2 1 (0.48%) .NET
2 1 (0.48%) OpenID
2 1 (0.48%) SAML
Miscellaneous
1 52 (24.88%) Management Information System
2 25 (11.96%) Data Protection Act
3 15 (7.18%) Analytical Skills
3 15 (7.18%) Cyberthreat
4 12 (5.74%) Self-Motivation
5 9 (4.31%) Cyberattack
5 9 (4.31%) PKI
6 7 (3.35%) Reinsurance
7 6 (2.87%) Security Operations Centre
7 6 (2.87%) User Experience
8 4 (1.91%) Enterprise Software
8 4 (1.91%) Learning Management System
8 4 (1.91%) Online Games
9 3 (1.44%) Distributed Denial-of-Service
9 3 (1.44%) Greenfield Project
10 1 (0.48%) CESG
10 1 (0.48%) Data Centre
10 1 (0.48%) Enterprise Cloud
10 1 (0.48%) Mainframe
10 1 (0.48%) Private Cloud
Operating Systems
1 14 (6.70%) Linux
1 14 (6.70%) Windows
2 1 (0.48%) Unix
2 1 (0.48%) Windows Server
Processes & Methodologies
1 144 (68.90%) Information Security
2 109 (52.15%) Cybersecurity
3 88 (42.11%) Security Architecture
4 58 (27.75%) SIEM
5 56 (26.79%) TOGAF
6 54 (25.84%) SABSA
7 42 (20.10%) Vulnerability Assessment
8 41 (19.62%) Risk Management
9 40 (19.14%) Security Management
10 39 (18.66%) OWASP
11 37 (17.70%) Risk Assessment
12 36 (17.22%) Cryptography
13 35 (16.75%) Identity Access Management
13 35 (16.75%) Security Operations
14 33 (15.79%) ITIL
15 31 (14.83%) Zachman Framework
16 30 (14.35%) Data Protection
17 27 (12.92%) IT Governance
18 26 (12.44%) Enterprise Architecture
19 25 (11.96%) SDLC
Programming Languages
1 5 (2.39%) Python
2 4 (1.91%) Java
3 3 (1.44%) C
3 3 (1.44%) C++
3 3 (1.44%) PowerShell
4 2 (0.96%) C#
4 2 (0.96%) JavaScript
4 2 (0.96%) PHP
4 2 (0.96%) Scala
5 1 (0.48%) Bash Shell
5 1 (0.48%) SQL
Qualifications
1 205 (98.09%) CISSP
2 70 (33.49%) Degree
3 58 (27.75%) CISA
4 35 (16.75%) CEH
5 31 (14.83%) Security Cleared
6 30 (14.35%) GIAC
7 26 (12.44%) CREST Certified
8 25 (11.96%) SSCP
9 23 (11.00%) CRISC
10 17 (8.13%) SC Cleared
11 12 (5.74%) Cisco Certification
12 11 (5.26%) (ISC)2 CCSP
12 11 (5.26%) SANS
13 10 (4.78%) CESG Certified Professional
14 9 (4.31%) Master's Degree
14 9 (4.31%) TOGAF Certification
15 7 (3.35%) GSEC
16 6 (2.87%) Computer Science Degree
16 6 (2.87%) ISO 27001 Lead Auditor
17 5 (2.39%) CISMP
Quality Assurance & Compliance
1 132 (63.16%) ISO/IEC 27001
2 83 (39.71%) NIST
3 59 (28.23%) GDPR
4 32 (15.31%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 25 (11.96%) PCI DSS
6 17 (8.13%) NIST 800
7 12 (5.74%) SLA
8 10 (4.78%) HMG Security Policy Framework
9 9 (4.31%) Cyber Essentials
9 9 (4.31%) NCSC
9 9 (4.31%) Sarbanes-Oxley
10 5 (2.39%) COBIT
11 4 (1.91%) PMO
12 2 (0.96%) ISO 22301
13 1 (0.48%) ISO/IEC 27005
13 1 (0.48%) RMADS
System Software
1 7 (3.35%) Active Directory
2 4 (1.91%) VMware Infrastructure
3 3 (1.44%) Hyper-V
Systems Management
1 7 (3.35%) Nessus
2 2 (0.96%) Nmap
2 2 (0.96%) QRadar
3 1 (0.48%) CASB
3 1 (0.48%) SCCM
3 1 (0.48%) Single Sign-On
Vendors
1 7 (3.35%) Qualys
2 6 (2.87%) AlienVault
3 5 (2.39%) Oracle
4 4 (1.91%) Microsoft
4 4 (1.91%) VMware
5 3 (1.44%) Rapid7
5 3 (1.44%) Splunk
6 2 (0.96%) ArcSight
6 2 (0.96%) Black Duck
6 2 (0.96%) Coverity
7 1 (0.48%) Intel
7 1 (0.48%) Kaspersky
7 1 (0.48%) Remedy
7 1 (0.48%) Salesforce.com
7 1 (0.48%) SAP
7 1 (0.48%) SolarWinds
7 1 (0.48%) Veeam