Period
to 22 January 2018

The following table provides summary statistics for permanent job vacancies advertised in the South East with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 22 January 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
England > South East
6 months to
22 Jan 2018
Same period 2017 Same period 2016
Rank 289 393 423
Rank change year-on-year +104 +30 +53
Permanent jobs citing CISM 294 176 231
As % of all permanent IT jobs advertised in the South East 0.95% 0.56% 0.56%
As % of the Qualifications category 3.64% 1.87% 1.83%
Number of salaries quoted 218 154 202
South East median annual salary £60,000 £60,000 £57,500
Median salary % change year-on-year - +4.35% -2.54%
10th Percentile £42,500 £50,375 £47,500
90th Percentile £91,250 £81,250 £72,500
England median annual salary £65,000 £65,000 £60,000
% change year-on-year - +8.33% +9.09%

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in the South East with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
South East
Permanent vacancies requiring academic qualifications or professional certifications 8,072 9,419 12,655
As % of all permanent IT jobs advertised in the South East 26.11% 30.01% 30.92%
Number of salaries quoted 6,468 7,519 10,264
South East median annual salary £45,000 £45,000 £45,000
10th Percentile £25,000 £25,600 £25,250
90th Percentile £67,500 £68,750 £67,500
England median annual salary £47,500 £45,000 £45,000
% change year-on-year +5.56% - -

CISM
Job Vacancy Trend in the South East

Job postings citing CISM as a percentage of all IT jobs advertised in the South East.

Job vacancy trend for CISM in the South East

CISM
Salary Trend in the South East

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM in the South East.

Salary trend for CISM in the South East

CISM
Salary Histogram in the South East

The salary distribution of IT jobs citing CISM in the South East over the 6 months to 22 January 2018.

Salary histogram for CISM in the South East

CISM
Job Locations in the South East

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the South East region over the 6 months to 22 January 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
Thames Valley +38 98 £60,000 -4.00% 16
Surrey +68 97 £55,000 -21.43% 7
Berkshire +22 64 £60,000 -7.69% 11
Hampshire -4 44 £58,000 -3.33% 1
Buckinghamshire +24 31 £62,500 +13.64% 2
Kent +14 19 £70,000 +16.67% 2
East Sussex -19 10 £53,000 -11.67% 1
West Sussex +6 8 £46,250 -17.41%
Oxfordshire -15 2 £72,500 +38.10% 3
Middlesex - 1 - -
CISM
England

For the 6 months to 22 January 2018, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads across the South East region with a requirement for CISM.

1 277 (94.22%) CISSP
2 233 (79.25%) Information Security
3 164 (55.78%) ISO/IEC 27001
4 124 (42.18%) Finance
5 114 (38.78%) CISA
6 101 (34.35%) Risk Management
7 100 (34.01%) Firewall
8 84 (28.57%) Penetration Testing
9 75 (25.51%) CRISC
10 73 (24.83%) Cybersecurity
11 70 (23.81%) Management Information System
12 67 (22.79%) Risk Assessment
12 67 (22.79%) Network Security
13 65 (22.11%) PCI DSS
14 64 (21.77%) Security Management
15 60 (20.41%) Degree
15 60 (20.41%) Information Security Management
15 60 (20.41%) Security Operations
16 55 (18.71%) GIAC
17 50 (17.01%) SIEM
18 47 (15.99%) Data Protection
19 45 (15.31%) Active Directory
20 43 (14.63%) ITIL
21 38 (12.93%) Risk Analysis
21 38 (12.93%) Analytical Skills
22 36 (12.24%) Process Improvement
22 36 (12.24%) Strategic Planning
23 32 (10.88%) Ethical Hacking
24 30 (10.20%) Agile Software Development
24 30 (10.20%) Cyber Essentials

CISM
Co-occurring IT Skills in the South East by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 12 (4.08%) IIS
2 8 (2.72%) Apache
3 1 (0.34%) MS Exchange
Applications
1 2 (0.68%) MS Visio
2 1 (0.34%) Microsoft Excel
2 1 (0.34%) Microsoft Office
2 1 (0.34%) Microsoft PowerPoint
Business Applications
1 2 (0.68%) Payment Gateway
Cloud Services
1 7 (2.38%) Amazon AWS
2 5 (1.70%) Office 365
2 5 (1.70%) SaaS
3 3 (1.02%) Microsoft Azure
4 1 (0.34%) IaaS
Communications & Networking
1 100 (34.01%) Firewall
2 67 (22.79%) Network Security
3 27 (9.18%) TCP/IP
4 18 (6.12%) WAN
5 15 (5.10%) VPN
6 11 (3.74%) IPsec
6 11 (3.74%) LAN
6 11 (3.74%) SSL
7 10 (3.40%) SCCP
8 7 (2.38%) Internet
8 7 (2.38%) Intrusion Detection
8 7 (2.38%) Wireless
9 4 (1.36%) Cisco ASA
9 4 (1.36%) Cisco PIX
9 4 (1.36%) DMVPN
9 4 (1.36%) FWSM
10 3 (1.02%) Radio Access Network
11 2 (0.68%) Value-Added Service
12 1 (0.34%) Intranet
12 1 (0.34%) SMS
Database & Business Intelligence
1 8 (2.72%) MySQL
2 1 (0.34%) Big Data
Development Applications
1 5 (1.70%) Burp Suite
1 5 (1.70%) Metasploit
General
1 124 (42.18%) Finance
2 15 (5.10%) Legal
2 15 (5.10%) Telecoms
3 8 (2.72%) French Language
3 8 (2.72%) German Language
4 5 (1.70%) Manufacturing
5 4 (1.36%) Digital Economy
6 2 (0.68%) Banking
6 2 (0.68%) Law
7 1 (0.34%) Electronics
7 1 (0.34%) Financial Institution
7 1 (0.34%) Investment Banking
7 1 (0.34%) Marketing
7 1 (0.34%) Retail
7 1 (0.34%) Spanish Language
Job Titles
1 70 (23.81%) Consultant
2 65 (22.11%) Analyst
2 65 (22.11%) Security Consultant
3 64 (21.77%) Security Analyst
4 63 (21.43%) Security Manager
5 56 (19.05%) Information Security Manager
6 48 (16.33%) Information Manager
7 45 (15.31%) Information Analyst
7 45 (15.31%) Information Security Analyst
8 35 (11.90%) Information Security Consultant
9 18 (6.12%) Risk Manager
10 17 (5.78%) IT Manager
11 16 (5.44%) Architect
11 16 (5.44%) Security Architect
11 16 (5.44%) Senior Manager
12 13 (4.42%) IT Security Manager
12 13 (4.42%) Operations Team Leader
12 13 (4.42%) Security Engineer
12 13 (4.42%) Team Leader
13 10 (3.40%) Head of Security
Libraries, Frameworks & Software Standards
1 2 (0.68%) .NET
1 2 (0.68%) ASP.NET Web API
1 2 (0.68%) HTML
1 2 (0.68%) HTML5
1 2 (0.68%) JSON
1 2 (0.68%) RESTful
1 2 (0.68%) XML
2 1 (0.34%) SailPoint
Miscellaneous
1 70 (23.81%) Management Information System
2 38 (12.93%) Analytical Skills
3 27 (9.18%) Computer Science
4 20 (6.80%) Data Protection Act
5 17 (5.78%) Cyberthreat
6 13 (4.42%) Security Operations Centre
7 12 (4.08%) Data Centre
7 12 (4.08%) NHS
8 9 (3.06%) PKI
9 8 (2.72%) Cyber Kill Chain
10 6 (2.04%) Distributed Denial-of-Service
11 5 (1.70%) Cyberattack
12 3 (1.02%) Cyber Defence
12 3 (1.02%) Mobile App
12 3 (1.02%) Virtual Team
13 2 (0.68%) VAX
14 1 (0.34%) Public Cloud
Operating Systems
1 28 (9.52%) Linux
2 23 (7.82%) Windows
3 10 (3.40%) Windows Server
4 8 (2.72%) FreeBSD
5 6 (2.04%) Unix
6 5 (1.70%) Kali Linux
7 2 (0.68%) Android
7 2 (0.68%) Apple iOS
Processes & Methodologies
1 233 (79.25%) Information Security
2 101 (34.35%) Risk Management
3 84 (28.57%) Penetration Testing
4 73 (24.83%) Cybersecurity
5 67 (22.79%) Risk Assessment
6 64 (21.77%) Security Management
7 60 (20.41%) Information Security Management
7 60 (20.41%) Security Operations
8 50 (17.01%) SIEM
9 47 (15.99%) Data Protection
10 43 (14.63%) ITIL
11 38 (12.93%) Risk Analysis
12 36 (12.24%) Process Improvement
12 36 (12.24%) Strategic Planning
13 32 (10.88%) Ethical Hacking
14 30 (10.20%) Agile Software Development
15 29 (9.86%) Security Monitoring
16 25 (8.50%) Information Assurance
17 24 (8.16%) IT Governance
18 22 (7.48%) Security Architecture
Programming Languages
1 3 (1.02%) Perl
2 2 (0.68%) C
2 2 (0.68%) Java
2 2 (0.68%) PHP
2 2 (0.68%) VB.NET
3 1 (0.34%) Python
Qualifications
1 277 (94.22%) CISSP
2 114 (38.78%) CISA
3 75 (25.51%) CRISC
4 60 (20.41%) Degree
5 55 (18.71%) GIAC
6 26 (8.84%) CEH
7 23 (7.82%) Cisco Certification
8 20 (6.80%) Computer Science Degree
9 19 (6.46%) ISO 27001 Lead Auditor
10 17 (5.78%) Security Cleared
11 14 (4.76%) (ISC)2 CCSP
11 14 (4.76%) CCSP
12 12 (4.08%) CREST Certified
12 12 (4.08%) IISP
13 10 (3.40%) CCSA
13 10 (3.40%) CESG Certified Professional
13 10 (3.40%) SANS
13 10 (3.40%) SC Cleared
14 9 (3.06%) CCNA
14 9 (3.06%) Six Sigma Green Belt
Quality Assurance & Compliance
1 164 (55.78%) ISO/IEC 27001
2 65 (22.11%) PCI DSS
3 30 (10.20%) Cyber Essentials
4 28 (9.52%) GDPR
5 23 (7.82%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 14 (4.76%) ISO/IEC 27005
7 12 (4.08%) HMG Security Policy Framework
8 11 (3.74%) ISO 22301
9 9 (3.06%) ISO 31000
10 7 (2.38%) RMADS
11 6 (2.04%) NIST 800
12 4 (1.36%) QA
13 2 (0.68%) COBIT
13 2 (0.68%) Government Security Classifications
13 2 (0.68%) PA-DSS
13 2 (0.68%) PSD2
14 1 (0.34%) GPG13
14 1 (0.34%) Sarbanes-Oxley
14 1 (0.34%) SLA
System Software
1 45 (15.31%) Active Directory
2 6 (2.04%) Hyper-V
Systems Management
1 8 (2.72%) Juniper STRM
1 8 (2.72%) QRadar
1 8 (2.72%) RSA enVision
1 8 (2.72%) RSA Security Analytics
2 4 (1.36%) CSIRT
2 4 (1.36%) Nessus
2 4 (1.36%) Nmap
3 2 (0.68%) Computer Emergency Response Teams
4 1 (0.34%) Systems Management Server (SMS)
Vendors
1 23 (7.82%) Cisco
2 15 (5.10%) CheckPoint
3 8 (2.72%) IBM
3 8 (2.72%) Juniper
3 8 (2.72%) LogRhythm
3 8 (2.72%) Sun
4 7 (2.38%) Kaspersky
4 7 (2.38%) WatchGuard
5 5 (1.70%) Oracle
6 4 (1.36%) NetWitness
6 4 (1.36%) Qualys
6 4 (1.36%) Splunk
7 3 (1.02%) Microsoft
8 2 (0.68%) BT
8 2 (0.68%) Huawei
8 2 (0.68%) NEC
8 2 (0.68%) Nokia
9 1 (0.34%) Capita
9 1 (0.34%) SolarWinds
9 1 (0.34%) TOWER Software