Period
to 20 September 2018

The following table provides summary statistics for permanent job vacancies advertised in the South East with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 20 September 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
England > South East
6 months to
20 Sep 2018
Same period 2017 Same period 2016
Rank 279 324 352
Rank change year-on-year +45 +28 +122
Permanent jobs citing CISM 314 235 289
As % of all permanent IT jobs advertised in the South East 1.06% 0.81% 0.80%
As % of the Qualifications category 4.07% 2.92% 2.53%
Number of salaries quoted 240 181 223
South East median annual salary £60,000 £60,000 £65,000
Median salary % change year-on-year - -7.69% +8.33%
10th Percentile £47,375 £42,000 £46,500
90th Percentile £85,125 £76,250 £81,000
England median annual salary £65,000 £65,000 £65,000

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in the South East with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
South East
Permanent vacancies requiring academic qualifications or professional certifications 7,717 8,052 11,417
As % of all permanent IT jobs advertised in the South East 26.14% 27.75% 31.48%
Number of salaries quoted 6,008 6,523 9,256
South East median annual salary £45,000 £44,500 £45,000
Median salary % change year-on-year +1.12% -1.11% +5.88%
10th Percentile £25,000 £24,500 £25,500
90th Percentile £70,000 £68,750 £68,750
England median annual salary £50,000 £47,500 £46,500
% change year-on-year +5.26% +2.15% +3.33%

CISM
Job Vacancy Trend in the South East

Job postings citing CISM as a percentage of all IT jobs advertised in the South East.

Job vacancy trend for CISM in the South East

CISM
Salary Trend in the South East

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM in the South East.

Salary trend for CISM in the South East

CISM
Salary Histogram in the South East

The salary distribution of IT jobs citing CISM in the South East over the 6 months to 20 September 2018.

Salary histogram for CISM in the South East

CISM
Job Locations in the South East

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the South East region over the 6 months to 20 September 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
Thames Valley +80 133 £60,000 -4.00% 14
Berkshire +71 115 £60,000 +3.45% 11
Surrey 0 68 £60,000 +9.09% 11
Kent +37 39 £60,000 -14.29% 6
East Sussex -12 28 £60,000 +33.33% 2
Hampshire -28 26 £62,500 -3.85% 3
Oxfordshire +5 15 £71,250 -5.00% 1
West Sussex +7 7 £60,000 +33.33% 1
Middlesex +13 3 £47,500 -9.52%
Buckinghamshire -8 3 - - 2
CISM
England

For the 6 months to 20 September 2018, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the South East region with a requirement for CISM.

1 303 (96.50%) CISSP
2 200 (63.69%) Information Security
3 173 (55.10%) ISO/IEC 27001
4 149 (47.45%) CISA
5 108 (34.39%) Cybersecurity
6 98 (31.21%) Finance
7 87 (27.71%) Risk Management
8 84 (26.75%) CEH
9 75 (23.89%) ITIL
10 70 (22.29%) Firewall
11 65 (20.70%) Degree
12 64 (20.38%) SIEM
13 57 (18.15%) Vulnerability Management
14 56 (17.83%) PCI DSS
14 56 (17.83%) Management Information System
15 47 (14.97%) Stakeholder Management
16 46 (14.65%) Qualys
17 45 (14.33%) Security Monitoring
18 44 (14.01%) SANS
18 44 (14.01%) OWASP
19 39 (12.42%) TOGAF
19 39 (12.42%) COBIT
20 35 (11.15%) Information Assurance
21 34 (10.83%) Nessus
22 33 (10.51%) SSCP
23 32 (10.19%) Risk Assessment
23 32 (10.19%) GDPR
24 30 (9.55%) SABSA
25 29 (9.24%) Computer Science
26 28 (8.92%) Agile Software Development

CISM
Co-occurring IT Skills in the South East by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 16 (5.10%) IIS
Applications
1 1 (0.32%) Microsoft Office
1 1 (0.32%) Microsoft Project
1 1 (0.32%) MS Visio
1 1 (0.32%) Spreadsheet
Business Applications
1 7 (2.23%) SAP GRC
2 3 (0.96%) Infor M3
Cloud Services
1 22 (7.01%) Microsoft Azure
2 21 (6.69%) Amazon AWS
3 3 (0.96%) Office 365
4 2 (0.64%) Cloud Computing
5 1 (0.32%) IaaS
5 1 (0.32%) PaaS
Communications & Networking
1 70 (22.29%) Firewall
2 27 (8.60%) Network Security
3 19 (6.05%) SCCP
4 14 (4.46%) WAN
5 12 (3.82%) Broadband
6 11 (3.50%) SSL
6 11 (3.50%) VPN
7 10 (3.18%) IPsec
8 9 (2.87%) LAN
9 8 (2.55%) Intrusion Detection
10 6 (1.91%) TCP/IP
11 4 (1.27%) Cisco Firepower
12 3 (0.96%) OpenVPN
12 3 (0.96%) SSH
13 2 (0.64%) Cisco ASA
13 2 (0.64%) Internet
13 2 (0.64%) Unified Communications
13 2 (0.64%) Wireless
14 1 (0.32%) FTP
Database & Business Intelligence
1 8 (2.55%) Big Data
2 6 (1.91%) Geospatial Data
Development Applications
1 3 (0.96%) Burp Suite
1 3 (0.96%) Metasploit
2 2 (0.64%) SonarQube
General
1 98 (31.21%) Finance
2 21 (6.69%) Legal
2 21 (6.69%) Telecoms
3 6 (1.91%) Manufacturing
3 6 (1.91%) Retail
4 4 (1.27%) Pharmaceutical
5 3 (0.96%) Banking
6 2 (0.64%) Financial Institution
6 2 (0.64%) Retail Banking
6 2 (0.64%) Spanish Language
7 1 (0.32%) Advertising
7 1 (0.32%) Electronics
7 1 (0.32%) Local Government
7 1 (0.32%) Marketing
Job Titles
1 74 (23.57%) Analyst
2 53 (16.88%) Security Manager
3 50 (15.92%) Security Analyst
4 48 (15.29%) Consultant
5 45 (14.33%) Security Consultant
6 44 (14.01%) Information Manager
7 43 (13.69%) Information Security Manager
8 35 (11.15%) Information Analyst
8 35 (11.15%) Information Security Analyst
9 29 (9.24%) Architect
9 29 (9.24%) Security Architect
9 29 (9.24%) Security Engineer
10 27 (8.60%) Security Officer
11 24 (7.64%) IT Engineer
11 24 (7.64%) IT Security Engineer
12 21 (6.69%) IT Manager
12 21 (6.69%) Senior Security Engineer
13 20 (6.37%) Risk Manager
13 20 (6.37%) Senior IT Engineer
14 17 (5.41%) Vulnerability Analyst
Libraries, Frameworks & Software Standards
1 18 (5.73%) SailPoint
2 4 (1.27%) LAMP
3 3 (0.96%) LDAP
4 1 (0.32%) HTML
4 1 (0.32%) HTML5
4 1 (0.32%) Regular Expression
4 1 (0.32%) REST
Miscellaneous
1 56 (17.83%) Management Information System
2 29 (9.24%) Computer Science
3 28 (8.92%) Analytical Skills
4 21 (6.69%) Distributed Denial-of-Service
5 18 (5.73%) Self-Motivation
6 17 (5.41%) PKI
7 16 (5.10%) Data Protection Act
8 11 (3.50%) Public Cloud
9 9 (2.87%) Security Operations Centre
10 6 (1.91%) Data Centre
11 5 (1.59%) Cyberattack
12 4 (1.27%) Cyberthreat
12 4 (1.27%) Driving Licence
12 4 (1.27%) SCADA
13 3 (0.96%) NHS
13 3 (0.96%) Private Cloud
14 2 (0.64%) Client/Server
14 2 (0.64%) Enterprise Software
14 2 (0.64%) Mobile Payment
14 2 (0.64%) Smartcard
Operating Systems
1 19 (6.05%) Windows
2 18 (5.73%) Linux
3 4 (1.27%) CentOS
3 4 (1.27%) Unix
4 3 (0.96%) Kali Linux
4 3 (0.96%) Windows Server
Processes & Methodologies
1 200 (63.69%) Information Security
2 108 (34.39%) Cybersecurity
3 87 (27.71%) Risk Management
4 75 (23.89%) ITIL
5 64 (20.38%) SIEM
6 57 (18.15%) Vulnerability Management
7 47 (14.97%) Stakeholder Management
8 45 (14.33%) Security Monitoring
9 44 (14.01%) OWASP
10 39 (12.42%) TOGAF
11 35 (11.15%) Information Assurance
12 32 (10.19%) Risk Assessment
13 30 (9.55%) SABSA
14 28 (8.92%) Agile Software Development
14 28 (8.92%) Data Security
15 27 (8.60%) Data Protection
15 27 (8.60%) Security Operations
16 26 (8.28%) Penetration Testing
16 26 (8.28%) Security Management
17 25 (7.96%) Stakeholder Engagement
Programming Languages
1 2 (0.64%) Perl
1 2 (0.64%) Python
Qualifications
1 303 (96.50%) CISSP
2 149 (47.45%) CISA
3 84 (26.75%) CEH
4 65 (20.70%) Degree
5 44 (14.01%) SANS
6 33 (10.51%) SSCP
7 28 (8.92%) CREST Certified
8 26 (8.28%) CESG Certified Professional
9 24 (7.64%) Cisco Certification
10 22 (7.01%) Security Cleared
11 20 (6.37%) (ISC)2 CCSP
12 19 (6.05%) GIAC
12 19 (6.05%) TOGAF Certification
13 18 (5.73%) CCSP
13 18 (5.73%) CRISC
14 17 (5.41%) Computer Science Degree
15 16 (5.10%) IISP
15 16 (5.10%) Master's Degree
16 8 (2.55%) ISO 27001 Lead Auditor
16 8 (2.55%) PCI QSA
Quality Assurance & Compliance
1 173 (55.10%) ISO/IEC 27001
2 56 (17.83%) PCI DSS
3 39 (12.42%) COBIT
4 32 (10.19%) GDPR
5 26 (8.28%) Sarbanes-Oxley
6 23 (7.32%) HMG Security Policy Framework
7 18 (5.73%) Cyber Essentials
8 7 (2.23%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 6 (1.91%) NIST 800
10 5 (1.59%) QA
11 4 (1.27%) ISAE 3402
11 4 (1.27%) ISO 22301
11 4 (1.27%) ISO 9001
12 3 (0.96%) Government Security Classifications
12 3 (0.96%) GPG13
12 3 (0.96%) RMADS
13 2 (0.64%) IASME
13 2 (0.64%) ISO 31000
13 2 (0.64%) ISO/IEC 27005
14 1 (0.32%) PSD2
System Software
1 7 (2.23%) Active Directory
2 4 (1.27%) Hyper-V
3 1 (0.32%) ProxySG
Systems Management
1 34 (10.83%) Nessus
2 18 (5.73%) QRadar
3 17 (5.41%) Core Impact
3 17 (5.41%) Nexpose
3 17 (5.41%) OpenVAS
4 2 (0.64%) OSSEC
4 2 (0.64%) Trend Micro Deep Security
5 1 (0.32%) CASB
5 1 (0.32%) CSIRT
5 1 (0.32%) Single Sign-On
Vendors
1 46 (14.65%) Qualys
2 25 (7.96%) Splunk
3 24 (7.64%) Cisco
4 21 (6.69%) ArcSight
4 21 (6.69%) Rapid7
5 19 (6.05%) SolarWinds
6 18 (5.73%) CyberArk
6 18 (5.73%) LogRhythm
7 17 (5.41%) AlienVault
7 17 (5.41%) Aveksa
7 17 (5.41%) Bomgar
8 11 (3.50%) Oracle
9 10 (3.18%) McAfee
10 9 (2.87%) Juniper
11 8 (2.55%) SAP
12 5 (1.59%) IBM
13 4 (1.27%) CheckPoint
13 4 (1.27%) Microsoft
13 4 (1.27%) Trend Micro
13 4 (1.27%) Tripwire