Period
to 28 January 2022

The following table provides summary statistics for permanent job vacancies advertised in the South East with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 28 January 2022 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
England > South East
6 months to
28 Jan 2022
Same period 2021 Same period 2020
Rank 301 252 268
Rank change year-on-year -49 +16 +36
Permanent jobs citing CISM 143 80 225
As % of all permanent jobs advertised in the South East 0.79% 0.79% 0.97%
As % of the Qualifications category 2.82% 3.36% 3.61%
Number of salaries quoted 80 34 179
10th Percentile £43,275 £43,925 £41,500
25th Percentile £55,000 £55,000 £52,500
Median annual salary (50th Percentile) £60,000 £60,000 £65,000
Median % change year-on-year - -7.69% +8.33%
75th Percentile £72,625 £65,000 £78,750
90th Percentile £90,125 £70,000 £84,000
England median annual salary £67,500 £65,000 £65,000
% change year-on-year +3.85% - -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in the South East with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
South East
Permanent vacancies requiring academic qualifications or professional certifications 5,078 2,379 6,234
As % of all permanent IT jobs advertised in the South East 27.99% 23.34% 26.94%
Number of salaries quoted 2,696 1,710 4,720
10th Percentile £28,750 £28,795 £27,500
25th Percentile £37,500 £38,750 £34,750
Median annual salary (50th Percentile) £52,106 £50,000 £47,500
Median % change year-on-year +4.21% +5.26% +4.97%
75th Percentile £65,000 £63,750 £63,813
90th Percentile £77,500 £75,000 £75,000
England median annual salary £55,000 £55,000 £50,000
% change year-on-year - +10.00% -

CISM
Job Vacancy Trend in the South East

Job postings citing CISM as a proportion of all IT jobs advertised in the South East.

Job vacancy trend for CISM in the South East

CISM
Salary Trend in the South East

3-month moving average salary quoted in jobs citing CISM in the South East.

Salary trend for CISM in the South East

CISM
Salary Histogram in the South East

Salary distribution for jobs citing CISM in the South East over the 6 months to 28 January 2022.

Salary histogram for CISM in the South East

CISM
Job Locations in the South East

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the South East region over the 6 months to 28 January 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
Surrey -1 73 £60,000 +9.09% 5
Hampshire -64 28 £44,000 -24.78% 4
Thames Valley -68 27 £67,750 +4.23% 8
Berkshire -47 14 £70,000 +7.69% 4
Oxfordshire - 8 £60,000 - 2
West Sussex 0 6 £65,000 +6.12%
Kent -48 6 £95,000 -9.52% 1
Buckinghamshire - 6 £105,000 - 2
East Sussex -33 2 £75,000 +20.00%
CISM
England

For the 6 months to 28 January 2022, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the South East region with a requirement for CISM.

1 142 (99.30%) CISSP
2 105 (73.43%) Information Security
3 94 (65.73%) Cybersecurity
4 93 (65.03%) Social Skills
5 70 (48.95%) ISO/IEC 27001
6 69 (48.25%) CRISC
7 64 (44.76%) Risk Management
8 60 (41.96%) CISA
9 52 (36.36%) Finance
10 49 (34.27%) Agile Software Development
11 48 (33.57%) Analytical Skills
11 48 (33.57%) GDPR
12 39 (27.27%) Regulatory Compliance
12 39 (27.27%) Continuous Improvement
13 37 (25.87%) Degree
14 34 (23.78%) Data Protection
15 33 (23.08%) NIST
16 28 (19.58%) ITIL
17 27 (18.88%) COBIT
18 26 (18.18%) Legal
18 26 (18.18%) IT Audit
19 23 (16.08%) GRC
20 22 (15.38%) Internal Audit
20 22 (15.38%) Security Architecture
20 22 (15.38%) Service Management
20 22 (15.38%) Management Information System
21 21 (14.69%) ITSM
21 21 (14.69%) Visualisation
21 21 (14.69%) Inclusion and Diversity
21 21 (14.69%) ITGC

CISM
Co-occurring IT Skills in the South East by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Cloud Services
1 15 (10.49%) Azure
2 11 (7.69%) AWS
3 7 (4.90%) Microsoft 365
4 5 (3.50%) Azure Sentinel
4 5 (3.50%) Cloud Computing
5 1 (0.70%) GCP
5 1 (0.70%) IaaS
5 1 (0.70%) PaaS
5 1 (0.70%) Sumo Logic
Communications & Networking
1 19 (13.29%) Firewall
2 5 (3.50%) Network Security
3 4 (2.80%) Intrusion Detection
3 4 (2.80%) LAN
3 4 (2.80%) WAN
3 4 (2.80%) Wireless
4 3 (2.10%) HTTP
4 3 (2.10%) HTTPS
4 3 (2.10%) Internet
4 3 (2.10%) IPsec
4 3 (2.10%) Kerberos
4 3 (2.10%) NNTP
4 3 (2.10%) SSL
4 3 (2.10%) TCP/IP
4 3 (2.10%) X.509
5 2 (1.40%) Unified Communications
6 1 (0.70%) VPN
Database & Business Intelligence
1 3 (2.10%) DB2
2 1 (0.70%) Big Data
2 1 (0.70%) Tableau
General
1 93 (65.03%) Social Skills
2 52 (36.36%) Finance
3 48 (33.57%) Analytical Skills
4 26 (18.18%) Legal
5 21 (14.69%) Inclusion and Diversity
6 4 (2.80%) Police
7 3 (2.10%) Telecoms
8 2 (1.40%) Presentation Skills
8 2 (1.40%) Public Sector
9 1 (0.70%) Billing
9 1 (0.70%) Law
9 1 (0.70%) Retail
Job Titles
1 46 (32.17%) Analyst
2 41 (28.67%) Security Analyst
3 21 (14.69%) Auditor
3 21 (14.69%) Information Analyst
3 21 (14.69%) Information Security Analyst
3 21 (14.69%) IT Auditor
4 20 (13.99%) Security Officer
5 18 (12.59%) IT Security Officer
5 18 (12.59%) Senior Analyst
6 16 (11.19%) IT Analyst
6 16 (11.19%) IT Security Analyst
7 15 (10.49%) Security Manager
8 14 (9.79%) Senior Information Analyst
8 14 (9.79%) Senior Information Security Analyst
8 14 (9.79%) Senior Security Analyst
9 12 (8.39%) Consultant
10 10 (6.99%) Architect
10 10 (6.99%) Security Architect
11 7 (4.90%) Information Assurance Analyst
11 7 (4.90%) Security Consultant
Libraries, Frameworks & Software Standards
1 3 (2.10%) LDAP
1 3 (2.10%) SAML
Miscellaneous
1 22 (15.38%) Management Information System
2 15 (10.49%) Cyberthreat
3 7 (4.90%) Self-Motivation
4 5 (3.50%) Public Cloud
5 4 (2.80%) Enterprise Software
5 4 (2.80%) Reinsurance
5 4 (2.80%) Smart Meter
6 3 (2.10%) Mainframe
6 3 (2.10%) PKI
7 2 (1.40%) Data Protection Act
7 2 (1.40%) Driving Licence
7 2 (1.40%) SWIFT
8 1 (0.70%) Cloud Native
8 1 (0.70%) Cyber Defence
8 1 (0.70%) Cyber Kill Chain
8 1 (0.70%) Cyberattack
8 1 (0.70%) Cybercrime
8 1 (0.70%) Media Streaming
8 1 (0.70%) Security Operations Centre
Operating Systems
1 3 (2.10%) AIX
1 3 (2.10%) Linux
1 3 (2.10%) Windows
1 3 (2.10%) zOS
Processes & Methodologies
1 105 (73.43%) Information Security
2 94 (65.73%) Cybersecurity
3 64 (44.76%) Risk Management
4 49 (34.27%) Agile Software Development
5 39 (27.27%) Continuous Improvement
5 39 (27.27%) Regulatory Compliance
6 34 (23.78%) Data Protection
7 28 (19.58%) ITIL
8 26 (18.18%) IT Audit
9 22 (15.38%) Internal Audit
9 22 (15.38%) Security Architecture
9 22 (15.38%) Service Management
10 21 (14.69%) ITSM
10 21 (14.69%) Visualisation
11 20 (13.99%) Decision-Making
12 19 (13.29%) DevOps
12 19 (13.29%) OWASP
13 18 (12.59%) Penetration Testing
14 17 (11.89%) Information Assurance
15 16 (11.19%) Application Security
Programming Languages
1 10 (6.99%) C
2 3 (2.10%) SQL
Qualifications
1 142 (99.30%) CISSP
2 69 (48.25%) CRISC
3 60 (41.96%) CISA
4 37 (25.87%) Degree
5 19 (13.29%) CASP
5 19 (13.29%) Cisco Certification
5 19 (13.29%) CompTIA Security+
6 16 (11.19%) (ISC)2 CCSP
7 15 (10.49%) CEH
7 15 (10.49%) Security Cleared
8 10 (6.99%) CESG Certified Professional
9 9 (6.29%) CCSP
10 8 (5.59%) ISO 27001 Lead Auditor
11 6 (4.20%) CISMP
11 6 (4.20%) DV Cleared
11 6 (4.20%) GIAC
11 6 (4.20%) SC Cleared
12 5 (3.50%) SANS
13 4 (2.80%) CREST Certified
13 4 (2.80%) Master's Degree
Quality Assurance & Compliance
1 70 (48.95%) ISO/IEC 27001
2 48 (33.57%) GDPR
3 33 (23.08%) NIST
4 27 (18.88%) COBIT
5 23 (16.08%) GRC
6 21 (14.69%) ITGC
7 16 (11.19%) IASME
8 15 (10.49%) PCI DSS
9 13 (9.09%) Cyber Essentials
10 7 (4.90%) Cyber Essentials PLUS
11 6 (4.20%) RMADS
11 6 (4.20%) SLA
12 5 (3.50%) NCSC
13 4 (2.80%) HMG Security Policy Framework
14 3 (2.10%) HIPAA
14 3 (2.10%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
14 3 (2.10%) ISO/IEC 27005
14 3 (2.10%) JSP 440
14 3 (2.10%) Sarbanes-Oxley
15 2 (1.40%) ISO 22301
System Software
1 3 (2.10%) Active Directory
1 3 (2.10%) OpenAM
1 3 (2.10%) OpenIDM
1 3 (2.10%) RACF
2 1 (0.70%) Virtual Machines
Systems Management
1 5 (3.50%) EMC NetWorker
2 3 (2.10%) CA Single Sign-On
2 3 (2.10%) Oracle Identity Management
2 3 (2.10%) Single Sign-On
3 1 (0.70%) CASB
3 1 (0.70%) Kibana
3 1 (0.70%) Kubernetes
3 1 (0.70%) Nexpose
Vendors
1 5 (3.50%) AlienVault
1 5 (3.50%) CheckPoint
1 5 (3.50%) Microsoft
1 5 (3.50%) Palo Alto
2 3 (2.10%) Apple
2 3 (2.10%) CA
2 3 (2.10%) CyberArk
2 3 (2.10%) ForgeRock
2 3 (2.10%) Oracle
3 2 (1.40%) Google